Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer
File: tBFqjm2pkf3PcWJue-oR_2nLqEY.cer (raw, json)
Hash identifier: XB30yNHFOgxSf+WKiohhrMEO9B/x3bpi7RiFhbv0noA=
Subject key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EFB9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 03 May 2024 08:56:43 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 142622
IP: 43.230.52.0/22
IP: 43.231.188.0/22
IP: 43.246.128.0/22
IP: 43.246.196.0/22
IP: 43.249.240.0/22
IP: 43.250.88.0/22
IP: 43.251.184.0/22
IP: 45.115.32.0/22
IP: 45.124.60.0/22
IP: 103.7.116.0/22
IP: 103.7.208.0/22
IP: 103.8.84.0/22
IP: 103.12.52.0/22
IP: 103.13.16.0/22
IP: 103.15.32.0/22
IP: 103.15.76.0/22
IP: 103.21.104.0/22
IP: 103.24.160.0/22
IP: 103.240.20.0/22
IP: 103.244.208.0/22
IP: 103.248.148.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126905 (0x1efb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 3 08:56:43 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:15:79:92:97:ec:ea:61:4f:9e:f1:f3:5b:30:
60:07:bc:52:6d:8c:0f:27:20:fc:90:20:40:89:f2:
4d:9c:56:2f:39:46:26:c6:14:29:cc:ce:93:43:99:
e7:99:b4:ec:0e:69:05:f5:ef:f5:83:21:34:c8:07:
15:18:d8:29:b8:17:38:fb:f1:35:ec:12:4e:3b:1f:
dd:a9:03:4a:0d:62:8b:cf:9b:72:66:42:40:0d:eb:
5a:8b:7c:29:05:f2:84:62:21:ab:ac:c1:4c:eb:19:
5c:6b:02:0f:f0:5e:fe:7b:eb:aa:af:96:d2:c7:82:
81:9c:95:08:78:d4:57:2f:ba:ff:52:30:77:a3:5e:
5b:6f:fe:01:53:5a:3e:1e:40:06:d7:d6:64:93:39:
4e:69:71:7c:5e:c9:69:e2:09:22:cc:0c:55:cf:79:
2c:60:14:4f:19:e0:0a:5b:22:b9:04:62:ec:b6:d7:
6c:d4:48:c7:6e:24:bf:e8:c3:9f:4a:7d:df:48:4e:
a0:bf:23:a0:96:22:de:d0:5f:17:f6:a0:bd:2c:9e:
4d:0e:b0:50:a7:e7:90:03:2b:bb:bd:50:aa:ad:ef:
0b:1b:d2:91:4a:de:ca:e5:ae:cf:2e:e6:b6:e4:27:
25:42:be:83:41:1f:70:21:c3:10:0d:b1:fa:c1:db:
df:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142622
sbgp-ipAddrBlock: critical
IPv4:
43.230.52.0/22
43.231.188.0/22
43.246.128.0/22
43.246.196.0/22
43.249.240.0/22
43.250.88.0/22
43.251.184.0/22
45.115.32.0/22
45.124.60.0/22
103.7.116.0/22
103.7.208.0/22
103.8.84.0/22
103.12.52.0/22
103.13.16.0/22
103.15.32.0/22
103.15.76.0/22
103.21.104.0/22
103.24.160.0/22
103.240.20.0/22
103.244.208.0/22
103.248.148.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:d1:57:2b:39:51:fd:47:02:13:d8:c5:7c:a2:f2:dc:b3:e7:
5c:8d:89:ba:b5:d9:75:48:3d:e1:c9:2b:37:53:26:f6:c3:bc:
1f:ac:83:ba:50:15:98:2a:b8:10:e1:96:e7:65:3a:3d:06:b5:
1b:19:48:26:d0:58:87:7c:29:ef:0a:65:f6:58:70:d9:fe:53:
c1:43:a6:78:33:ff:f9:57:bd:fa:ff:07:7d:c2:b4:ee:4f:bb:
e2:29:81:53:6d:7c:58:24:19:44:e2:3a:87:55:e5:0e:ed:0b:
63:06:49:74:ce:6e:ff:d4:fe:37:6b:92:fa:61:91:a8:5c:67:
b2:00:41:bd:4f:d0:23:d4:25:78:90:0e:44:ef:ef:92:eb:4e:
f8:85:86:a6:7b:29:f4:c9:0e:5a:4a:01:67:fc:34:50:db:50:
d3:c3:ba:e7:27:de:2d:a9:ca:29:5e:0a:5d:f1:cd:a0:cc:85:
7f:9b:37:2b:0c:ba:64:fc:34:c6:7f:68:c0:a8:c0:2a:64:2a:
44:e0:e0:69:73:53:63:4a:8c:79:8e:fc:a4:55:ee:ab:03:ca:
43:7b:ac:c5:30:0e:fa:ba:45:d6:e5:d5:62:e9:31:70:bd:28:
30:6c:84:37:44:39:91:c8:90:2e:e6:38:98:38:37:11:ad:29:
31:cc:0c:59
-----BEGIN CERTIFICATE-----
MIIGljCCBX6gAwIBAgIDAe+5MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDUwMzA4NTY0M1oXDTI1MDUyODAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2
RTdCRUExMUZGNjlDQkE4NDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDlFXmSl+zqYU+e8fNbMGAHvFJtjA8nIPyQIECJ8k2cVi85RibGFCnMzpNDmeeZ
tOwOaQX17/WDITTIBxUY2Cm4Fzj78TXsEk47H92pA0oNYovPm3JmQkAN61qLfCkF
8oRiIauswUzrGVxrAg/wXv5766qvltLHgoGclQh41Fcvuv9SMHejXltv/gFTWj4e
QAbX1mSTOU5pcXxeyWniCSLMDFXPeSxgFE8Z4ApbIrkEYuy212zUSMduJL/ow59K
fd9ITqC/I6CWIt7QXxf2oL0snk0OsFCn55ADK7u9UKqt7wsb0pFK3srlrs8u5rbk
JyVCvoNBH3AhwxANsfrB299zAgMBAAGjggOLMIIDhzAdBgNVHQ4EFgQUtBFqjm2p
kf3PcWJue+oR/2nLqEYwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUE0NDAyL0ZEQkZEMDIwM0Q5NjExRUE4RUEwNzAyRkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFBNDQwMi9GREJGRDAyMDNEOTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0y
cGtmM1BjV0p1ZS1vUl8ybkxxRVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAi0eMIGaBggrBgEFBQcBBwEB/wSBijCBhzCBhAQCAAEwfgMEAivmNAME
AivnvAMEAiv2gAMEAiv2xAMEAiv58AMEAiv6WAMEAiv7uAMEAi1zIAMEAi18PAME
AmcHdAMEAmcH0AMEAmcIVAMEAmcMNAMEAmcNEAMEAmcPIAMEAmcPTAMEAmcVaAME
AmcYoAMEAmfwFAMEAmf00AMEAmf4lDANBgkqhkiG9w0BAQsFAAOCAQEATdFXKzlR
/UcCE9jFfKLy3LPnXI2JurXZdUg94ckrN1Mm9sO8H6yDulAVmCq4EOGW52U6PQa1
GxlIJtBYh3wp7wpl9lhw2f5TwUOmeDP/+Ve9+v8HfcK07k+74imBU218WCQZROI6
h1XlDu0LYwZJdM5u/9T+N2uS+mGRqFxnsgBBvU/QI9QleJAORO/vkutO+IWGpnsp
9MkOWkoBZ/w0UNtQ08O65yfeLanKKV4KXfHNoMyFf5s3Kwy6ZPw0xn9owKjAKmQq
RODgaXNTY0qMeY78pFXuqwPKQ3usxTAO+rpF1uXVYukxcL0oMGyEN0Q5kciQLuY4
mDg3Ea0pMcwMWQ==
-----END CERTIFICATE-----
Generated at Thu May 9 07:43:19 2024 by rpki-client on console-ams.rpki-client.org