Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer
File: XK9B9ks3Umh5jipdqgwUAADNdHM.cer (raw, json)
Hash identifier: vkngSnvPqPs12cl51VcMmR5bQYp7vo6sh0q6kkjPZs8=
Subject key identifier: 5C:AF:41:F6:4B:37:52:68:79:8E:2A:5D:AA:0C:14:00:00:CD:74:73
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B715
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 15 Aug 2023 21:37:29 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 137972
IP: 103.146.24.0/24
IP: 2001:df5:d700::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112405 (0x1b715)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 15 21:37:29 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91ED73E/serialNumber=5CAF41F64B375268798E2A5DAA0C140000CD7473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:12:03:8e:e5:e4:1b:d1:7e:19:85:4e:36:82:
ff:b3:13:8a:f3:27:95:22:20:57:06:d7:a7:6b:a8:
94:10:2d:4d:1c:da:68:ae:a1:1f:3d:90:60:9d:cd:
76:10:84:82:ae:31:f0:00:a4:f6:b0:e1:8e:d5:ef:
31:4c:73:f4:fe:d5:1e:13:17:fe:bc:6b:e0:0f:cf:
e8:49:4f:7b:c6:86:11:d1:84:83:e7:20:ce:a7:c0:
c0:05:76:60:0f:f6:11:fc:bf:a9:80:a7:da:30:36:
19:c8:d0:a0:28:03:ed:59:eb:48:83:52:36:b0:4c:
3d:8e:be:14:25:50:e4:30:74:ba:6c:19:bc:c0:59:
fe:56:a9:3b:6e:d7:97:3f:26:8a:71:0a:46:2c:8e:
93:09:9d:a4:36:16:eb:5c:5b:3b:69:b2:d0:80:af:
81:14:c6:b5:5b:ab:a7:9f:88:d5:22:ce:3f:5d:27:
b0:44:47:45:32:92:cd:a6:a1:c3:d5:44:35:ef:07:
87:a6:4f:68:e5:4f:9c:4d:50:29:91:80:a4:cf:4f:
9a:8e:4d:eb:04:2b:ea:ef:4f:09:35:40:3c:22:72:
82:f5:cd:d3:63:52:f9:33:2b:82:4e:d8:f6:bd:c5:
57:0c:3a:05:63:e3:fb:84:fe:6b:dd:e3:e9:f1:c0:
52:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:AF:41:F6:4B:37:52:68:79:8E:2A:5D:AA:0C:14:00:00:CD:74:73
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137972
sbgp-ipAddrBlock: critical
IPv4:
103.146.24.0/24
IPv6:
2001:df5:d700::/48
Signature Algorithm: sha256WithRSAEncryption
77:b0:ba:3f:f9:75:f6:f8:99:a1:72:6c:6b:92:76:1d:20:2f:
97:2d:da:7d:2c:4c:58:9d:71:f3:c7:ea:7b:7f:37:70:6a:89:
f8:0b:60:11:70:b9:4e:f7:9f:d8:74:b7:ae:a4:1d:64:9e:cd:
89:d4:c9:fb:a0:db:3c:4a:87:eb:b5:96:a6:bf:83:4b:c1:ce:
7c:f9:9c:6b:38:07:d9:a5:41:46:4a:8c:7a:73:18:50:fc:ed:
af:6a:31:7e:95:d1:d1:90:46:a5:7c:de:e5:5f:93:2f:b1:ef:
75:3b:99:69:fa:e6:9a:80:30:b8:a9:03:46:21:e3:7f:a8:24:
8e:d6:40:2f:3b:2c:17:d0:9e:47:cb:8c:6b:50:6d:f5:f5:a7:
86:20:49:da:52:76:f0:c9:e6:4c:67:d0:bf:e8:22:01:01:27:
97:6a:cd:9e:4a:24:81:ae:f2:9a:da:2f:68:3b:81:c7:67:b5:
e8:2d:c1:3d:b7:4c:15:af:35:92:de:19:c4:e9:03:00:61:80:
d8:24:92:27:01:11:2e:24:aa:c1:25:de:55:7b:89:a3:07:1e:
9b:5f:09:4b:f4:f2:0c:a8:fa:df:4c:b0:4b:3d:ad:1f:b6:93:
31:3b:e5:28:7e:ca:99:88:69:e1:1b:63:cd:50:b3:4d:d7:d3:
d8:a9:75:36
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAbcVMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDgxNTIxMzcyOVoXDTI0MTAzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRUQ3M0UxMTAvBgNVBAUTKDVDQUY0MUY2NEIzNzUyNjg3OThFMkE1
REFBMEMxNDAwMDBDRDc0NzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDMEgOO5eQb0X4ZhU42gv+zE4rzJ5UiIFcG16drqJQQLU0c2miuoR89kGCdzXYQ
hIKuMfAApPaw4Y7V7zFMc/T+1R4TF/68a+APz+hJT3vGhhHRhIPnIM6nwMAFdmAP
9hH8v6mAp9owNhnI0KAoA+1Z60iDUjawTD2OvhQlUOQwdLpsGbzAWf5WqTtu15c/
JopxCkYsjpMJnaQ2FutcWztpstCAr4EUxrVbq6efiNUizj9dJ7BER0Uyks2mocPV
RDXvB4emT2jlT5xNUCmRgKTPT5qOTesEK+rvTwk1QDwicoL1zdNjUvkzK4JO2Pa9
xVcMOgVj4/uE/mvd4+nxwFLVAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUXK9B9ks3
Umh5jipdqgwUAADNdHMwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUVENzNFLzAxQjgyMTBBODk4OTExRThCOThCRUMzQUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFFRDczRS8wMUI4MjEwQTg5ODkxMUU4Qjk4QkVDM0FDNEY5QUUwMi9YSzlCOWtz
M1VtaDVqaXBkcWd3VUFBRE5kSE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhr0MDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAZ5IYMA8EAgAC
MAkDBwAgAQ311wAwDQYJKoZIhvcNAQELBQADggEBAHewuj/5dfb4maFybGuSdh0g
L5ct2n0sTFidcfPH6nt/N3BqifgLYBFwuU73n9h0t66kHWSezYnUyfug2zxKh+u1
lqa/g0vBznz5nGs4B9mlQUZKjHpzGFD87a9qMX6V0dGQRqV83uVfky+x73U7mWn6
5pqAMLipA0Yh43+oJI7WQC87LBfQnkfLjGtQbfX1p4YgSdpSdvDJ5kxn0L/oIgEB
J5dqzZ5KJIGu8praL2g7gcdntegtwT23TBWvNZLeGcTpAwBhgNgkkicBES4kqsEl
3lV7iaMHHptfCUv08gyo+t9MsEs9rR+2kzE75Sh+ypmIaeEbY81Qs03X09ipdTY=
-----END CERTIFICATE-----
Generated at Thu May 9 10:24:22 2024 by rpki-client on console-fra.rpki-client.org