Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCSWwSsdqlhOQrNDNM8XIBI2snw.cer
File: kCSWwSsdqlhOQrNDNM8XIBI2snw.cer (raw, json)
Hash identifier: l9893j8qvAU7KQR3onU9i+MCpKU9r0gyBEMhv9dheGA=
Subject key identifier: 90:24:96:C1:2B:1D:AA:58:4E:42:B3:43:34:CF:17:20:12:36:B2:7C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D83E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912346E/85C43FFEA06211EB859E7653C4F9AE02/kCSWwSsdqlhOQrNDNM8XIBI2snw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912346E/85C43FFEA06211EB859E7653C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 13 Jan 2024 12:53:04 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 134804
IP: 103.13.132.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120894 (0x1d83e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 13 12:53:04 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A912346E/serialNumber=902496C12B1DAA584E42B34334CF17201236B27C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:35:6c:70:e0:7e:dd:8e:13:ae:c2:cb:0f:55:
96:71:72:62:b7:a0:91:d6:31:83:d7:ef:12:ea:83:
b3:fd:63:86:a7:8f:a3:e5:21:60:16:8d:25:19:52:
6a:b0:79:5e:5f:4d:ee:01:4f:b1:50:8c:90:0c:e8:
1c:7a:dd:65:00:39:29:48:17:66:cf:80:08:4e:f7:
5f:4d:6e:d9:bd:4a:cc:73:64:3b:87:99:1f:e8:d6:
ff:3e:fb:c8:d7:23:c9:68:40:19:13:d5:22:d7:ca:
e3:92:39:be:7a:72:f2:25:b4:fc:c7:79:89:4b:f0:
5f:d8:e6:28:c6:ca:1f:79:ba:73:16:9e:81:d3:5e:
52:ba:e5:1e:8c:c7:57:3b:e9:a8:f8:93:ee:18:77:
f1:fa:10:f3:3f:0e:43:6d:ed:9c:1f:10:37:08:5b:
08:fc:bd:fe:e7:ce:68:71:b1:69:cd:79:0f:0f:56:
84:8a:ba:e0:72:ca:76:2e:ee:2c:72:00:d5:d0:80:
e0:02:26:fe:54:42:9b:d7:28:26:8e:68:d8:fe:a6:
24:25:66:4c:4f:eb:59:f1:9a:73:d1:2d:83:8c:db:
36:53:66:fb:f3:91:8e:2b:8c:83:9f:9f:ca:4c:65:
6c:64:7e:4a:58:36:d8:16:bc:c3:42:c3:85:33:86:
90:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:24:96:C1:2B:1D:AA:58:4E:42:B3:43:34:CF:17:20:12:36:B2:7C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912346E/85C43FFEA06211EB859E7653C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912346E/85C43FFEA06211EB859E7653C4F9AE02/kCSWwSsdqlhOQrNDNM8XIBI2snw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134804
sbgp-ipAddrBlock: critical
IPv4:
103.13.132.0/23
Signature Algorithm: sha256WithRSAEncryption
97:04:e0:8d:52:ee:cd:08:4b:88:4b:18:29:49:c3:61:13:d8:
22:e3:4f:d1:0a:52:3e:2f:f7:45:80:5f:8a:a2:95:b9:3f:96:
ee:6b:4c:12:67:b5:b7:81:b9:1b:17:10:01:0e:31:4d:ee:08:
e8:37:aa:11:a6:64:73:fc:53:7f:06:1f:1e:7e:15:da:01:c7:
1c:11:16:2d:5e:21:02:55:11:97:25:15:74:ea:cf:fe:8f:1d:
1b:c8:22:7a:7b:fc:0d:14:6a:95:8a:01:d4:09:bc:7d:d9:73:
50:08:8a:2b:4d:45:37:d8:da:91:0e:bb:33:89:2b:05:b3:37:
d0:f0:8a:e5:49:0f:09:98:29:af:f0:8a:50:ef:f8:e1:2e:69:
eb:ba:9b:95:67:a1:e0:86:3c:42:0b:d0:0b:39:05:36:65:50:
8a:f6:a6:68:0a:65:b5:9c:13:a4:63:39:5d:b5:b7:4e:b5:43:
29:81:81:4e:81:9f:74:ac:6a:72:a9:6a:c2:9d:d0:60:70:25:
82:f3:11:58:88:c3:aa:ee:fe:1e:59:01:72:a4:b7:ae:a2:41:
4b:36:39:d5:c7:06:3f:2c:93:f2:f6:84:10:a7:45:0b:39:68:
c6:6e:a3:7e:1a:56:4c:59:10:47:2d:92:95:23:36:df:47:b7:
f7:48:1d:99
-----BEGIN CERTIFICATE-----
MIIGGjCCBQKgAwIBAgIDAdg+MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDExMzEyNTMwNFoXDTI1MDMwMjAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMjM0NkUxMTAvBgNVBAUTKDkwMjQ5NkMxMkIxREFBNTg0RTQyQjM0
MzM0Q0YxNzIwMTIzNkIyN0MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCiNWxw4H7djhOuwssPVZZxcmK3oJHWMYPX7xLqg7P9Y4anj6PlIWAWjSUZUmqw
eV5fTe4BT7FQjJAM6Bx63WUAOSlIF2bPgAhO919Nbtm9SsxzZDuHmR/o1v8++8jX
I8loQBkT1SLXyuOSOb56cvIltPzHeYlL8F/Y5ijGyh95unMWnoHTXlK65R6Mx1c7
6aj4k+4Yd/H6EPM/DkNt7ZwfEDcIWwj8vf7nzmhxsWnNeQ8PVoSKuuByynYu7ixy
ANXQgOACJv5UQpvXKCaOaNj+piQlZkxP61nxmnPRLYOM2zZTZvvzkY4rjIOfn8pM
ZWxkfkpYNtgWvMNCw4UzhpA7AgMBAAGjggMPMIIDCzAdBgNVHQ4EFgQUkCSWwSsd
qlhOQrNDNM8XIBI2snwwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTIzNDZFLzg1QzQzRkZFQTA2MjExRUI4NTlFNzY1M0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEyMzQ2RS84NUM0M0ZGRUEwNjIxMUVCODU5RTc2NTNDNEY5QUUwMi9rQ1NXd1Nz
ZHFsaE9Rck5ETk04WElCSTJzbncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAg6UMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZw2EMA0GCSqG
SIb3DQEBCwUAA4IBAQCXBOCNUu7NCEuISxgpScNhE9gi40/RClI+L/dFgF+KopW5
P5bua0wSZ7W3gbkbFxABDjFN7gjoN6oRpmRz/FN/Bh8efhXaAcccERYtXiECVRGX
JRV06s/+jx0byCJ6e/wNFGqVigHUCbx92XNQCIorTUU32NqRDrsziSsFszfQ8Irl
SQ8JmCmv8IpQ7/jhLmnrupuVZ6HghjxCC9ALOQU2ZVCK9qZoCmW1nBOkYzldtbdO
tUMpgYFOgZ90rGpyqWrCndBgcCWC8xFYiMOq7v4eWQFypLeuokFLNjnVxwY/LJPy
9oQQp0ULOWjGbqN+GlZMWRBHLZKVIzbfR7f3SB2Z
-----END CERTIFICATE-----
Generated at Thu May 9 07:43:15 2024 by rpki-client on console-fra.rpki-client.org