Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer
File: ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer (raw, json)
Hash identifier: NV9GrzKYcudxmPgHh8jkqItSPXWOtgwmYKy5tOBVtkI=
Subject key identifier: A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E423
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 12 Mar 2024 21:44:54 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 138633
IP: 103.135.98.0/23
IP: 2404:79c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123939 (0x1e423)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 12 21:44:54 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91F8AC4/serialNumber=A337633E35919940BD729D912F3663158C267C36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e2:7c:77:6a:78:9f:be:f1:d6:52:21:75:3d:
5a:4e:23:e7:e7:d1:63:c1:13:da:81:2b:61:77:3b:
d0:ab:dc:72:11:31:24:f1:c3:1b:cf:f8:be:5e:b1:
69:e1:ee:a9:b6:40:5c:33:c0:a3:89:a5:73:29:0a:
a2:06:f2:75:2d:f0:77:ca:c3:f5:73:c4:2a:af:04:
b3:62:67:e7:12:86:f9:ab:f3:79:a4:a8:28:43:22:
30:b7:6c:12:2e:48:67:54:a8:62:f9:3f:61:22:5f:
89:2a:3a:5f:2a:80:b7:d8:f3:9c:c0:d1:73:f5:ef:
89:60:b7:5f:6e:b2:fa:fe:85:61:0a:d5:c9:e8:9c:
d3:c8:1d:a1:ac:b9:1d:4a:71:cb:79:bb:f0:d6:af:
36:a3:2f:3a:27:61:e8:df:25:0c:7c:69:14:1f:b6:
87:99:f4:50:d4:ec:56:c6:f9:b4:4a:e0:83:84:00:
8a:a6:7f:f7:17:2e:7b:09:a2:54:fb:d7:64:9d:5e:
9c:0c:61:f2:6c:c5:6b:f7:dd:7e:66:52:5f:9d:ee:
98:43:00:86:f7:83:78:1e:2f:1c:0d:33:39:87:ea:
c7:c9:8e:c3:01:53:32:aa:71:4b:ed:bf:59:10:e0:
8a:50:c0:34:8f:f8:09:81:cb:15:fd:11:94:5a:bc:
78:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138633
sbgp-ipAddrBlock: critical
IPv4:
103.135.98.0/23
IPv6:
2404:79c0::/32
Signature Algorithm: sha256WithRSAEncryption
00:ee:8c:9c:fc:21:79:df:4b:48:4c:3d:12:28:00:24:43:6c:
ae:3d:55:47:00:75:54:d5:d1:84:58:29:6f:b8:a0:fb:76:a6:
a4:9b:80:66:d7:ca:21:20:5a:40:1a:48:ec:99:2b:68:b2:c3:
af:46:60:20:58:bb:7f:7b:99:57:e9:86:1c:57:0a:3b:78:be:
83:e6:00:15:4b:55:4c:d5:b2:62:e5:5c:cf:bf:31:c2:4e:f3:
53:46:12:e2:5a:ac:c1:7e:29:bb:79:5c:de:4a:19:58:1c:35:
9c:bf:45:0a:56:92:4f:62:7f:10:4e:0c:60:8f:ac:44:7b:27:
d7:c7:ed:d8:74:6f:c3:81:18:3d:93:0e:6f:83:5d:5f:d3:98:
aa:21:6d:75:a2:71:86:2a:81:2a:92:24:dc:a5:e5:01:70:9e:
ac:8a:af:78:e4:09:54:8e:ee:51:f7:ff:a6:58:f7:0f:b3:5d:
c3:65:2d:b8:79:83:b6:4b:87:57:07:f3:26:19:20:43:80:3f:
07:6f:85:a2:4a:15:bd:49:5a:7a:12:e6:60:c9:b6:ea:d2:19:
05:04:6c:d6:99:67:61:f9:99:09:95:23:e4:e5:01:17:56:e0:
11:7c:ba:2c:78:8a:f5:a7:b4:1c:27:64:0a:e3:b8:42:30:5c:
0d:54:4f:09
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAeQjMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDMxMjIxNDQ1NFoXDTI1MDUwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRjhBQzQxMTAvBgNVBAUTKEEzMzc2MzNFMzU5MTk5NDBCRDcyOUQ5
MTJGMzY2MzE1OEMyNjdDMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC74nx3anifvvHWUiF1PVpOI+fn0WPBE9qBK2F3O9Cr3HIRMSTxwxvP+L5esWnh
7qm2QFwzwKOJpXMpCqIG8nUt8HfKw/VzxCqvBLNiZ+cShvmr83mkqChDIjC3bBIu
SGdUqGL5P2EiX4kqOl8qgLfY85zA0XP174lgt19usvr+hWEK1cnonNPIHaGsuR1K
cct5u/DWrzajLzonYejfJQx8aRQftoeZ9FDU7FbG+bRK4IOEAIqmf/cXLnsJolT7
12SdXpwMYfJsxWv33X5mUl+d7phDAIb3g3geLxwNMzmH6sfJjsMBUzKqcUvtv1kQ
4IpQwDSP+AmByxX9EZRavHgRAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUozdjPjWR
mUC9cp2RLzZjFYwmfDYwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUY4QUM0L0M4RkUxNzRDNTc3NTExRUQ4MUYxM0I2RkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFGOEFDNC9DOEZFMTc0QzU3NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpX
Um1VQzljcDJSTHpaakZZd21mRFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAh2JMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBZ4diMA0EAgAC
MAcDBQAkBHnAMA0GCSqGSIb3DQEBCwUAA4IBAQAA7oyc/CF530tITD0SKAAkQ2yu
PVVHAHVU1dGEWClvuKD7dqakm4Bm18ohIFpAGkjsmStossOvRmAgWLt/e5lX6YYc
Vwo7eL6D5gAVS1VM1bJi5VzPvzHCTvNTRhLiWqzBfim7eVzeShlYHDWcv0UKVpJP
Yn8QTgxgj6xEeyfXx+3YdG/DgRg9kw5vg11f05iqIW11onGGKoEqkiTcpeUBcJ6s
iq945AlUju5R9/+mWPcPs13DZS24eYO2S4dXB/MmGSBDgD8Hb4WiShW9SVp6EuZg
ybbq0hkFBGzWmWdh+ZkJlSPk5QEXVuARfLoseIr1p7QcJ2QK47hCMFwNVE8J
-----END CERTIFICATE-----
Generated at Thu May 9 14:24:38 2024 by rpki-client on console-fra.rpki-client.org