Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer
File: UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer (raw, json)
Hash identifier: +UFqDCCCCuqZlLMYBQdE7bCwFqO65fHj7ENryHKU3dM=
Subject key identifier: 52:B2:19:95:42:9C:44:F8:A7:F4:EC:99:E5:30:40:87:0D:6D:38:5B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E765
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 30 Mar 2024 18:11:52 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 138684
IP: 103.136.132.0/22
IP: 2404:93c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124773 (0x1e765)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 30 18:11:52 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A91A459D/serialNumber=52B21995429C44F8A7F4EC99E53040870D6D385B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f4:48:11:be:c8:25:16:70:11:38:ba:0f:ff:
54:39:ab:9f:6e:a5:aa:0f:6b:0f:72:30:7e:c6:ad:
f7:e5:51:8f:e4:cb:14:12:7b:8e:ab:e7:8c:5b:7e:
c7:85:b9:5c:cb:5e:08:e3:00:b7:36:22:72:11:36:
94:50:95:f7:60:e9:78:0c:e2:93:80:69:b3:9f:df:
3d:38:6d:79:0f:07:51:41:a0:86:03:27:5c:94:69:
35:af:61:1a:96:d1:b8:93:b1:5d:23:64:5e:02:13:
06:98:75:ae:f4:32:ef:f7:81:c6:27:9b:fb:4b:e3:
74:e9:be:aa:d7:a1:1d:73:14:18:31:4c:4a:6a:80:
5a:41:fc:93:67:93:b9:04:89:7c:27:cb:df:a0:3a:
00:2b:91:1e:2a:c5:24:fe:cd:e2:b9:96:91:ac:50:
08:46:18:5c:d9:c3:f6:a5:cd:94:24:6e:3a:22:cb:
96:69:88:61:3c:77:d4:6b:ec:c5:a5:44:dd:05:d2:
a6:76:80:d1:48:76:53:f5:03:0f:12:82:b6:87:0f:
f7:ac:38:45:68:6a:1b:11:05:82:c1:1c:89:e2:4e:
6c:08:c8:a7:c7:e2:2a:db:fc:d3:aa:b8:06:77:4f:
d9:26:b0:e6:18:c0:f5:0c:11:b6:b5:32:52:5a:9e:
de:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:B2:19:95:42:9C:44:F8:A7:F4:EC:99:E5:30:40:87:0D:6D:38:5B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138684
sbgp-ipAddrBlock: critical
IPv4:
103.136.132.0/22
IPv6:
2404:93c0::/32
Signature Algorithm: sha256WithRSAEncryption
87:ef:28:60:c8:49:07:e8:59:51:9c:aa:d4:ce:81:47:9a:bb:
d9:9f:2f:5b:d8:b7:a5:50:c7:4e:50:7e:16:7f:96:ba:7d:cb:
a8:d7:42:67:04:f5:6d:89:b9:43:6d:a6:c9:1c:b9:12:56:9e:
4a:dd:9e:a0:09:a2:53:a6:91:5f:1f:6d:8a:45:1c:17:44:19:
59:7b:8e:1f:ed:0f:1f:e5:cd:5f:ee:8f:aa:cc:4a:d0:4e:cd:
a4:bb:32:82:cd:b6:43:f0:99:8a:f9:fb:e5:95:a4:1d:da:23:
53:3e:ca:0b:ee:0f:28:bd:b5:9e:3d:04:99:59:2f:53:2c:74:
cb:59:0d:29:b4:4d:44:17:42:44:72:82:6e:22:db:5d:1e:b4:
b7:1d:91:43:9b:fc:95:84:9a:d5:1d:01:12:01:e0:04:af:d7:
d4:3d:85:81:7f:0d:8c:fa:6f:b6:61:4f:b7:07:2e:a5:54:d7:
e8:0b:96:a0:06:f0:5a:a8:01:cb:48:3a:7e:66:05:39:95:19:
a6:58:7e:50:6a:05:8f:61:a3:a7:05:38:17:29:e0:e1:4f:ce:
14:4e:6f:91:c0:5a:b4:be:36:5d:ae:ac:df:ee:96:39:3d:59:
d3:2a:f5:0f:37:6d:ea:da:dc:f0:06:06:71:09:61:8e:b1:c6:
e8:70:18:10
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAedlMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDMzMDE4MTE1MloXDTI1MDUyODAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQTQ1OUQxMTAvBgNVBAUTKDUyQjIxOTk1NDI5QzQ0RjhBN0Y0RUM5
OUU1MzA0MDg3MEQ2RDM4NUIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDN9EgRvsglFnAROLoP/1Q5q59upaoPaw9yMH7GrfflUY/kyxQSe46r54xbfseF
uVzLXgjjALc2InIRNpRQlfdg6XgM4pOAabOf3z04bXkPB1FBoIYDJ1yUaTWvYRqW
0biTsV0jZF4CEwaYda70Mu/3gcYnm/tL43TpvqrXoR1zFBgxTEpqgFpB/JNnk7kE
iXwny9+gOgArkR4qxST+zeK5lpGsUAhGGFzZw/alzZQkbjoiy5ZpiGE8d9Rr7MWl
RN0F0qZ2gNFIdlP1Aw8SgraHD/esOEVoahsRBYLBHIniTmwIyKfH4irb/NOquAZ3
T9kmsOYYwPUMEba1MlJant7nAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUUrIZlUKc
RPin9OyZ5TBAhw1tOFswHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUE0NTlELzVGQUI5NzJFN0VGNjExRUFBOTc5QTMyREM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFBNDU5RC81RkFCOTcyRTdFRjYxMUVBQTk3OUEzMkRDNEY5QUUwMi9VcklabFVL
Y1JQaW45T3laNVRCQWh3MXRPRnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAh28MC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZ4iEMA0EAgAC
MAcDBQAkBJPAMA0GCSqGSIb3DQEBCwUAA4IBAQCH7yhgyEkH6FlRnKrUzoFHmrvZ
ny9b2LelUMdOUH4Wf5a6fcuo10JnBPVtiblDbabJHLkSVp5K3Z6gCaJTppFfH22K
RRwXRBlZe44f7Q8f5c1f7o+qzErQTs2kuzKCzbZD8JmK+fvllaQd2iNTPsoL7g8o
vbWePQSZWS9TLHTLWQ0ptE1EF0JEcoJuIttdHrS3HZFDm/yVhJrVHQESAeAEr9fU
PYWBfw2M+m+2YU+3By6lVNfoC5agBvBaqAHLSDp+ZgU5lRmmWH5QagWPYaOnBTgX
KeDhT84UTm+RwFq0vjZdrqzf7pY5PVnTKvUPN23q2tzwBgZxCWGOscbocBgQ
-----END CERTIFICATE-----
Generated at Thu May 9 17:48:20 2024 by rpki-client on console-ams.rpki-client.org