Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFjEVinBBKqnpYcoaG-NHihyqSo.cer
File: VFjEVinBBKqnpYcoaG-NHihyqSo.cer (raw, json)
Hash identifier: P+HXVSRBsJ196N0xzawlGYv1f0GlTfS3fqLDMJ3kGc4=
Subject key identifier: 54:58:C4:56:29:C1:04:AA:A7:A5:87:28:68:6F:8D:1E:28:72:A9:2A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D4B6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 28 Dec 2023 15:41:15 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 136039
IP: 43.229.124.0/22
IP: 103.80.108.0/22
IP: 2400:50c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119990 (0x1d4b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 28 15:41:15 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A9153C27/serialNumber=5458C45629C104AAA7A58728686F8D1E2872A92A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:0c:f3:42:e5:92:73:e8:d9:dc:36:14:47:e7:
c9:ca:f6:38:82:37:7f:44:4a:ae:61:ee:07:96:67:
d2:96:e8:89:2b:4b:db:fe:7a:6c:a6:bd:48:41:fc:
96:ac:2a:c4:f7:75:ae:88:b8:4a:c5:53:5d:49:25:
d7:15:6b:e8:6f:d9:eb:d6:06:3d:66:04:ab:d6:25:
5b:7c:77:8c:53:f2:05:7f:5b:6c:b6:b9:1e:51:94:
ea:f3:05:2e:2c:a7:71:c7:bd:c0:64:b6:7c:39:aa:
a3:af:d6:11:bb:ce:fc:80:97:82:3c:4b:bd:16:50:
c0:8c:3a:07:42:ff:70:24:37:bd:3d:79:7c:e3:38:
ef:94:b2:f7:5c:dd:bb:e9:c4:5f:5f:59:01:10:d2:
42:a5:1b:99:72:51:f4:06:65:7f:d9:20:04:17:6b:
20:50:34:7b:05:c6:68:4d:98:00:1f:8a:e0:cc:34:
5d:63:b3:6e:96:55:b0:28:bd:c1:0c:98:52:1a:82:
de:07:c3:b7:44:54:4a:e8:77:c5:5d:66:8d:f7:d7:
9c:0f:1f:99:b8:bf:e0:5e:02:0c:22:a2:dc:aa:c4:
8d:2f:ef:a6:8b:99:36:85:47:08:d1:24:15:7e:ef:
29:bf:3b:f4:20:91:b0:2c:36:d0:f6:8f:95:8a:12:
b6:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:58:C4:56:29:C1:04:AA:A7:A5:87:28:68:6F:8D:1E:28:72:A9:2A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136039
sbgp-ipAddrBlock: critical
IPv4:
43.229.124.0/22
103.80.108.0/22
IPv6:
2400:50c0::/32
Signature Algorithm: sha256WithRSAEncryption
b0:b0:fa:ce:d4:28:72:d4:15:81:6b:fb:5f:d9:07:f6:61:03:
12:b0:60:4c:22:f1:a3:75:ab:f2:b5:5c:34:9d:37:58:f9:be:
76:dc:73:24:76:55:f8:06:eb:47:b9:65:d4:6c:ce:c1:6b:9a:
cb:c0:8d:9f:68:a9:e7:b0:73:89:6b:1a:57:9e:b4:3b:6a:18:
65:42:74:56:59:8c:26:c9:da:d4:72:fd:cc:8c:5a:78:c8:e4:
2b:6d:76:c9:7e:64:e3:ef:fd:ef:64:dd:0a:b4:61:45:9c:a7:
9f:eb:6b:ee:ca:63:96:8a:32:6b:87:db:00:1a:22:cc:0e:3d:
05:a8:84:1e:20:c6:d5:28:7c:fb:14:5b:13:f7:82:56:0a:85:
5d:1c:e8:81:f4:a5:33:88:04:7c:11:b5:a4:b0:08:63:dc:a6:
6b:77:5d:f9:cf:06:7d:cb:2c:93:3d:9d:24:55:06:d5:cb:cc:
16:fb:ee:b8:c6:ef:a6:2f:b2:85:49:41:91:c6:df:17:f1:61:
a3:4a:1b:d6:21:b4:55:6c:9b:5e:98:62:8a:16:a8:19:5b:46:
1b:89:54:1f:cd:be:28:cb:f2:eb:d9:a1:fb:ec:10:70:85:3a:
14:be:bc:78:43:ad:1b:87:6c:a5:a5:36:33:80:40:f3:c2:a2:
58:c7:fb:3b
-----BEGIN CERTIFICATE-----
MIIGLzCCBRegAwIBAgIDAdS2MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMTIyODE1NDExNVoXDTI1MDMwMjAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNTNDMjcxMTAvBgNVBAUTKDU0NThDNDU2MjlDMTA0QUFBN0E1ODcy
ODY4NkY4RDFFMjg3MkE5MkEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDhDPNC5ZJz6NncNhRH58nK9jiCN39ESq5h7geWZ9KW6IkrS9v+emymvUhB/Jas
KsT3da6IuErFU11JJdcVa+hv2evWBj1mBKvWJVt8d4xT8gV/W2y2uR5RlOrzBS4s
p3HHvcBktnw5qqOv1hG7zvyAl4I8S70WUMCMOgdC/3AkN709eXzjOO+Usvdc3bvp
xF9fWQEQ0kKlG5lyUfQGZX/ZIAQXayBQNHsFxmhNmAAfiuDMNF1js26WVbAovcEM
mFIagt4Hw7dEVErod8VdZo3315wPH5m4v+BeAgwiotyqxI0v76aLmTaFRwjRJBV+
7ym/O/QgkbAsNtD2j5WKErYZAgMBAAGjggMkMIIDIDAdBgNVHQ4EFgQUVFjEVinB
BKqnpYcoaG+NHihyqSowHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTUzQzI3LzY1QkI0ODlDMDA0QTExRUE5ODBGMkE3Q0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1M0MyNy82NUJCNDg5QzAwNEExMUVBOTgwRjJBN0NDNEY5QUUwMi9WRmpFVmlu
QkJLcW5wWWNvYUctTkhpaHlxU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhNnMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCK+V8AwQCZ1Bs
MA0EAgACMAcDBQAkAFDAMA0GCSqGSIb3DQEBCwUAA4IBAQCwsPrO1Chy1BWBa/tf
2Qf2YQMSsGBMIvGjdavytVw0nTdY+b523HMkdlX4ButHuWXUbM7Ba5rLwI2faKnn
sHOJaxpXnrQ7ahhlQnRWWYwmydrUcv3MjFp4yOQrbXbJfmTj7/3vZN0KtGFFnKef
62vuymOWijJrh9sAGiLMDj0FqIQeIMbVKHz7FFsT94JWCoVdHOiB9KUziAR8EbWk
sAhj3KZrd135zwZ9yyyTPZ0kVQbVy8wW++64xu+mL7KFSUGRxt8X8WGjShvWIbRV
bJtemGKKFqgZW0YbiVQfzb4oy/Lr2aH77BBwhToUvrx4Q60bh2ylpTYzgEDzwqJY
x/s7
-----END CERTIFICATE-----
Generated at Thu May 9 07:42:58 2024 by rpki-client on console-ams.rpki-client.org