Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Teu44SIr4OPyOu23UkXg-XuHx00.cer
File: Teu44SIr4OPyOu23UkXg-XuHx00.cer (raw, json)
Hash identifier: TSugBpIvO8jUpgmTOAdm1jduPxvHoOwzQhPxE4O8IH0=
Subject key identifier: 4D:EB:B8:E1:22:2B:E0:E3:F2:3A:ED:B7:52:45:E0:F9:7B:87:C7:4D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E9CF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/Teu44SIr4OPyOu23UkXg-XuHx00.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 04 Apr 2024 14:43:49 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 23703
AS: 139829
IP: 202.78.16.0/20
IP: 2405:d980::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125391 (0x1e9cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 4 14:43:49 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A915DA76/serialNumber=4DEBB8E1222BE0E3F23AEDB75245E0F97B87C74D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:52:b8:ac:88:7e:0b:f0:e9:13:8c:45:38:6e:
5e:38:71:c4:70:50:6d:a5:98:be:b3:1e:32:80:60:
17:8a:f4:ab:16:d4:0c:af:82:63:ff:01:be:a3:1d:
7b:30:02:33:63:d4:f1:e1:b1:c8:2f:0a:3d:81:1e:
17:52:ed:90:95:62:bb:fd:9b:46:91:7c:f8:40:e2:
db:11:1e:7e:62:79:1e:ea:29:98:c2:ab:f6:52:86:
77:3a:9c:15:30:31:44:d2:bd:22:db:04:c3:57:d6:
1b:38:c4:89:02:27:a8:70:af:d5:fa:1d:d9:16:35:
89:c8:ee:07:d7:38:d4:f4:2d:5c:9c:b3:9a:cd:e9:
de:99:8e:f1:d5:e3:83:20:94:a5:5c:df:ce:e8:4a:
6a:18:fc:c2:37:a0:d0:2b:cf:c7:cc:98:5d:e4:ca:
01:47:dc:77:c1:a0:34:a2:63:40:89:2a:ec:bf:c8:
88:0b:86:a7:47:c8:8b:cc:77:c4:03:a0:90:d3:88:
6c:ee:76:77:cf:42:cd:d9:a1:40:e6:25:39:09:73:
cb:c9:08:5c:f8:58:11:33:70:07:09:f3:5d:85:ff:
96:4a:45:e2:c8:52:d2:55:2c:81:16:c1:77:60:32:
b2:e5:11:c8:9f:66:e5:fa:d8:74:be:a8:92:c6:3a:
43:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:EB:B8:E1:22:2B:E0:E3:F2:3A:ED:B7:52:45:E0:F9:7B:87:C7:4D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915DA76/AABA34981D8B11E2AA756AE608B02CD2/Teu44SIr4OPyOu23UkXg-XuHx00.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
23703
139829
sbgp-ipAddrBlock: critical
IPv4:
202.78.16.0/20
IPv6:
2405:d980::/32
Signature Algorithm: sha256WithRSAEncryption
13:24:76:4b:02:99:4a:83:6d:98:0f:2e:97:cd:4c:b6:e0:e5:
27:27:dc:db:e0:f3:97:3c:4f:b5:7a:8f:43:b5:a0:76:30:93:
b7:29:c0:d1:80:84:ca:af:fe:c1:bd:c6:74:0a:05:9b:91:da:
2b:9f:a0:0a:e7:9b:9f:42:a1:53:07:51:e7:e2:05:f2:63:43:
2a:d4:44:83:77:d0:b7:d3:20:99:35:d8:93:85:c3:76:ab:64:
1c:76:3a:28:fd:0c:27:32:cf:45:ab:6e:07:db:5e:6b:c5:66:
3b:0f:26:cc:1c:33:32:14:b9:d1:3a:19:a8:d3:e7:4a:f4:30:
7e:b3:d4:b6:14:c4:0a:d0:1b:98:c4:7f:30:9d:b6:46:65:ce:
bc:fe:b9:03:2d:8c:74:36:ac:56:d6:69:94:4f:4d:72:c0:4d:
d7:69:94:97:4c:0a:84:70:8b:20:d4:e8:a6:b4:f3:1d:fd:4f:
f7:76:ea:f2:44:ea:6b:f6:31:2c:8d:a0:43:f3:cd:bf:4c:a7:
9c:49:22:3f:08:9a:bb:ec:f8:e0:e1:6a:96:79:e1:f5:c1:38:
ca:32:97:2c:19:fa:02:f6:44:a1:c2:98:ff:ac:96:7b:14:91:
94:6e:40:63:41:31:df:c6:1e:73:8b:71:67:74:f5:fc:53:ae:
1b:f3:66:0d
-----BEGIN CERTIFICATE-----
MIIGLTCCBRWgAwIBAgIDAenPMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDQwNDE0NDM0OVoXDTI1MDUyODAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNURBNzYxMTAvBgNVBAUTKDRERUJCOEUxMjIyQkUwRTNGMjNBRURC
NzUyNDVFMEY5N0I4N0M3NEQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCjUrisiH4L8OkTjEU4bl44ccRwUG2lmL6zHjKAYBeK9KsW1AyvgmP/Ab6jHXsw
AjNj1PHhscgvCj2BHhdS7ZCVYrv9m0aRfPhA4tsRHn5ieR7qKZjCq/ZShnc6nBUw
MUTSvSLbBMNX1hs4xIkCJ6hwr9X6HdkWNYnI7gfXONT0LVycs5rN6d6ZjvHV44Mg
lKVc387oSmoY/MI3oNArz8fMmF3kygFH3HfBoDSiY0CJKuy/yIgLhqdHyIvMd8QD
oJDTiGzudnfPQs3ZoUDmJTkJc8vJCFz4WBEzcAcJ812F/5ZKReLIUtJVLIEWwXdg
MrLlEcifZuX62HS+qJLGOkMlAgMBAAGjggMiMIIDHjAdBgNVHQ4EFgQUTeu44SIr
4OPyOu23UkXg+XuHx00wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTVEQTc2L0FBQkEzNDk4MUQ4QjExRTJBQTc1NkFFNjA4QjAyQ0QyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1REE3Ni9BQUJBMzQ5ODFEOEIxMUUyQUE3NTZBRTYwOEIwMkNEMi9UZXU0NFNJ
cjRPUHlPdTIzVWtYZy1YdUh4MDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQgBAf8EDzAN
oAswCQICXJcCAwIiNTAuBggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEBMpOEDAN
BAIAAjAHAwUAJAXZgDANBgkqhkiG9w0BAQsFAAOCAQEAEyR2SwKZSoNtmA8ul81M
tuDlJyfc2+DzlzxPtXqPQ7WgdjCTtynA0YCEyq/+wb3GdAoFm5HaK5+gCuebn0Kh
UwdR5+IF8mNDKtREg3fQt9MgmTXYk4XDdqtkHHY6KP0MJzLPRatuB9tea8VmOw8m
zBwzMhS50ToZqNPnSvQwfrPUthTECtAbmMR/MJ22RmXOvP65Ay2MdDasVtZplE9N
csBN12mUl0wKhHCLINToprTzHf1P93bq8kTqa/YxLI2gQ/PNv0ynnEkiPwiau+z4
4OFqlnnh9cE4yjKXLBn6AvZEocKY/6yWexSRlG5AY0Ex38Yec4txZ3T1/FOuG/Nm
DQ==
-----END CERTIFICATE-----
Generated at Thu May 9 10:10:43 2024 by rpki-client on console-ams.rpki-client.org