Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer
File: keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer (raw, json)
Hash identifier: olGcQIV5HYHbM3c25pJbkJOBSAlMuOKjCm2Aq83dcWc=
Subject key identifier: 91:E6:79:72:1E:D1:E0:92:7E:BB:7E:46:1C:80:58:0D:23:93:59:2A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D274
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 17 Dec 2023 01:51:53 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 147307
IP: 103.174.188.0/23
IP: 2001:df7:d180::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119412 (0x1d274)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 17 01:51:53 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A911ACAC/serialNumber=91E679721ED1E0927EBB7E461C80580D2393592A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a5:c2:e7:59:59:a1:72:20:ec:26:01:c2:69:
d6:27:03:05:3d:d6:ea:bd:28:e9:bb:c1:26:c2:99:
68:ed:d2:1c:be:fa:b0:94:6d:8a:52:79:16:80:78:
d7:ca:a8:21:dd:e7:c3:9e:05:d8:c1:ba:d6:09:29:
fc:15:06:b9:e3:bf:21:5b:7f:4a:03:b6:71:bc:42:
0a:1c:46:89:08:54:91:ad:2a:3b:72:89:65:f4:10:
30:50:29:46:72:b0:62:00:c3:06:14:26:f7:7b:cf:
06:c4:bb:31:b0:52:58:72:81:2a:f2:f3:8a:b7:0d:
73:70:b9:69:db:94:4e:68:37:99:54:bf:95:7c:2f:
9b:ee:60:f4:1f:d5:32:81:29:6c:8d:39:b4:7b:53:
e7:3b:04:99:d5:b7:de:67:66:46:fa:3e:4c:39:53:
88:4a:a8:60:5a:8d:8b:d0:1c:a9:c6:e9:da:bb:62:
51:b5:8d:83:25:74:3f:51:66:d7:5d:54:f0:aa:c3:
77:d5:ed:14:b8:08:95:60:1b:8e:a8:fb:fa:88:12:
25:29:39:30:39:5a:95:c7:64:34:73:4c:c7:dd:b9:
58:79:99:bf:9b:5b:f2:ac:2b:fa:cc:7c:24:29:4e:
27:5e:08:8c:c5:1a:17:18:4a:65:2e:71:1f:cf:67:
fa:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:E6:79:72:1E:D1:E0:92:7E:BB:7E:46:1C:80:58:0D:23:93:59:2A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
147307
sbgp-ipAddrBlock: critical
IPv4:
103.174.188.0/23
IPv6:
2001:df7:d180::/48
Signature Algorithm: sha256WithRSAEncryption
19:e0:b5:d0:05:07:39:20:24:7d:28:f6:3b:17:a4:87:f3:16:
d4:e3:b7:53:e8:28:70:ac:87:b7:2e:3e:fc:71:6f:d7:77:51:
8a:e2:9e:6e:45:28:49:2b:c8:7b:f7:f7:7a:d5:50:bf:27:a3:
fa:8f:09:15:68:e2:67:bb:54:9e:22:d6:96:33:f2:4b:31:0c:
ce:34:b3:0c:37:a5:d1:be:e8:4a:ca:76:34:30:ab:49:1e:24:
a9:46:0f:c1:7e:4f:36:93:be:07:70:94:ef:cb:a0:57:b1:61:
18:fd:cf:96:1c:b2:9b:98:eb:f1:dd:0b:ec:a3:54:c3:b3:5e:
ac:7c:0a:56:58:2b:25:1c:f1:22:1a:ec:8b:82:de:a2:e1:d6:
bd:79:7e:01:2e:0b:76:70:d5:a4:9c:3a:db:fc:c0:14:eb:23:
25:0c:85:5f:5e:1b:3a:94:ff:9b:10:d3:d8:23:86:96:c9:10:
e9:6a:f3:4a:1d:28:58:96:bf:57:42:ed:8a:5d:35:c9:33:4e:
fe:73:e4:d6:f2:bc:96:fe:30:5f:fc:c6:b7:cc:4c:32:46:59:
32:81:c6:11:f9:c9:11:1c:99:00:3b:26:19:d0:7b:43:8c:18:
e6:d2:f0:45:9c:25:9e:73:cb:d7:89:b4:74:d7:fc:ad:06:8b:
b7:91:08:30
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAdJ0MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMTIxNzAxNTE1M1oXDTI1MDEzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMUFDQUMxMTAvBgNVBAUTKDkxRTY3OTcyMUVEMUUwOTI3RUJCN0U0
NjFDODA1ODBEMjM5MzU5MkEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC1pcLnWVmhciDsJgHCadYnAwU91uq9KOm7wSbCmWjt0hy++rCUbYpSeRaAeNfK
qCHd58OeBdjButYJKfwVBrnjvyFbf0oDtnG8QgocRokIVJGtKjtyiWX0EDBQKUZy
sGIAwwYUJvd7zwbEuzGwUlhygSry84q3DXNwuWnblE5oN5lUv5V8L5vuYPQf1TKB
KWyNObR7U+c7BJnVt95nZkb6Pkw5U4hKqGBajYvQHKnG6dq7YlG1jYMldD9RZtdd
VPCqw3fV7RS4CJVgG46o+/qIEiUpOTA5WpXHZDRzTMfduVh5mb+bW/KsK/rMfCQp
TideCIzFGhcYSmUucR/PZ/oTAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUkeZ5ch7R
4JJ+u35GHIBYDSOTWSowHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTFBQ0FDL0IzQkRBNTY0MzFEMzExRUM4RDNCQkYzMEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTExQUNBQy9CM0JEQTU2NDMxRDMxMUVDOEQzQkJGMzBDNEY5QUUwMi9rZVo1Y2g3
UjRKSi11MzVHSElCWURTT1RXU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAj9rMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ668MA8EAgAC
MAkDBwAgAQ330YAwDQYJKoZIhvcNAQELBQADggEBABngtdAFBzkgJH0o9jsXpIfz
FtTjt1PoKHCsh7cuPvxxb9d3UYrinm5FKEkryHv393rVUL8no/qPCRVo4me7VJ4i
1pYz8ksxDM40sww3pdG+6ErKdjQwq0keJKlGD8F+TzaTvgdwlO/LoFexYRj9z5Yc
spuY6/HdC+yjVMOzXqx8ClZYKyUc8SIa7IuC3qLh1r15fgEuC3Zw1aScOtv8wBTr
IyUMhV9eGzqU/5sQ09gjhpbJEOlq80odKFiWv1dC7YpdNckzTv5z5NbyvJb+MF/8
xrfMTDJGWTKBxhH5yREcmQA7JhnQe0OMGObS8EWcJZ5zy9eJtHTX/K0Gi7eRCDA=
-----END CERTIFICATE-----
Generated at Thu May 9 15:21:28 2024 by rpki-client on console-fra.rpki-client.org