Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vDC4pL3Rzij3svmZNC9Rzh_bhuY.cer
File: vDC4pL3Rzij3svmZNC9Rzh_bhuY.cer (raw, json)
Hash identifier: Qwu+UvgNj/XHxcDuOAXD5vfuhFvJSXnptjG7ewmndrs=
Subject key identifier: BC:30:B8:A4:BD:D1:CE:28:F7:B2:F9:99:34:2F:51:CE:1F:DB:86:E6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E666
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9184569/FE899D5E086411EAB7D4EC82C4F9AE02/vDC4pL3Rzij3svmZNC9Rzh_bhuY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9184569/FE899D5E086411EAB7D4EC82C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 25 Mar 2024 17:28:38 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 138614
IP: 103.134.168.0/22
IP: 2404:67c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124518 (0x1e666)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 25 17:28:38 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A9184569/serialNumber=BC30B8A4BDD1CE28F7B2F999342F51CE1FDB86E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:cc:40:8c:e5:e5:12:cc:4d:db:b3:0f:cd:70:
bb:d1:82:eb:1a:7d:2d:16:4c:4a:84:c9:cb:ee:b0:
b9:7f:3a:8a:c9:e7:1d:c7:60:33:10:16:fd:15:1d:
52:be:35:de:6b:03:05:29:b4:ad:b9:d1:3d:db:ea:
01:51:f2:ca:dc:0b:40:2d:be:fb:a7:09:9f:d1:17:
85:48:ca:06:16:93:41:39:62:74:b1:7c:77:d7:86:
9f:5d:de:8a:19:99:f1:2d:e4:a3:d7:ed:7d:98:c5:
4d:10:25:56:50:5c:55:0d:e9:9e:ff:df:77:3c:8d:
63:0b:a0:29:83:1a:cd:08:60:ca:c8:4b:22:4e:74:
d5:9f:22:99:a5:a1:e5:53:c5:d1:3a:a7:59:eb:ea:
ff:ce:2d:a7:fc:54:da:b1:22:1c:54:ff:10:10:b6:
ec:0d:0a:ff:f1:20:82:45:68:16:32:97:21:b8:29:
22:95:eb:a9:20:44:fd:3e:30:e7:45:88:45:52:16:
70:02:92:10:a5:34:06:6e:d9:29:14:cc:bc:c9:9b:
09:fb:3a:94:7b:ea:df:ef:db:de:88:39:34:e8:9d:
5a:05:ee:6d:e0:21:34:4b:52:ea:7f:38:ed:1f:44:
bb:86:03:78:37:7b:5c:f7:76:f0:6d:96:52:2f:dc:
c0:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:30:B8:A4:BD:D1:CE:28:F7:B2:F9:99:34:2F:51:CE:1F:DB:86:E6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9184569/FE899D5E086411EAB7D4EC82C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9184569/FE899D5E086411EAB7D4EC82C4F9AE02/vDC4pL3Rzij3svmZNC9Rzh_bhuY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138614
sbgp-ipAddrBlock: critical
IPv4:
103.134.168.0/22
IPv6:
2404:67c0::/32
Signature Algorithm: sha256WithRSAEncryption
94:b7:e5:49:01:c0:6c:c8:3b:dc:80:b4:3c:f9:84:22:2c:d2:
28:4b:36:95:12:a4:0a:05:7d:11:e9:d5:e1:df:9c:80:42:f3:
44:74:82:d3:f6:57:51:4e:33:9c:38:ab:a3:e0:65:fc:25:b9:
cf:4f:8e:6a:bc:93:14:61:ce:09:82:4f:38:60:c3:09:f1:f8:
42:50:bf:84:a6:71:74:d6:d3:b3:cf:08:e8:33:64:03:69:a8:
ba:35:a2:d3:27:ef:af:fe:a8:2b:48:71:09:7e:f2:a1:73:09:
03:15:3b:86:0e:94:e5:66:c8:7f:ea:bd:8c:d0:91:6b:73:94:
ac:80:7e:bc:3e:56:55:b9:e9:a5:c3:48:cd:07:1e:06:b0:06:
26:b1:95:2c:7b:32:eb:f9:b1:97:f7:d8:77:d0:92:47:f0:04:
0a:76:d6:c9:b9:07:21:e2:cf:00:a5:d1:6b:14:6a:e7:99:95:
e0:78:e6:9d:ef:1c:4a:27:a0:d0:96:a4:0a:18:22:d2:4e:96:
f2:a5:4b:53:f1:31:94:05:09:b6:1a:01:33:f3:11:94:74:b6:
69:66:42:bb:32:ba:86:fa:27:48:71:f2:3c:ac:6e:04:71:54:
24:ee:b2:13:49:b3:16:e4:09:5e:e2:38:70:b8:6d:e4:e9:1d:
b9:3e:68:f4
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAeZmMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDMyNTE3MjgzOFoXDTI1MDUyODAwMDAwMFowRjERMA8G
A1UEAxMIQTkxODQ1NjkxMTAvBgNVBAUTKEJDMzBCOEE0QkREMUNFMjhGN0IyRjk5
OTM0MkY1MUNFMUZEQjg2RTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDGzECM5eUSzE3bsw/NcLvRgusafS0WTEqEycvusLl/OorJ5x3HYDMQFv0VHVK+
Nd5rAwUptK250T3b6gFR8srcC0AtvvunCZ/RF4VIygYWk0E5YnSxfHfXhp9d3ooZ
mfEt5KPX7X2YxU0QJVZQXFUN6Z7/33c8jWMLoCmDGs0IYMrISyJOdNWfIpmloeVT
xdE6p1nr6v/OLaf8VNqxIhxU/xAQtuwNCv/xIIJFaBYylyG4KSKV66kgRP0+MOdF
iEVSFnACkhClNAZu2SkUzLzJmwn7OpR76t/v296IOTTonVoF7m3gITRLUup/OO0f
RLuGA3g3e1z3dvBtllIv3MCvAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUvDC4pL3R
zij3svmZNC9Rzh/bhuYwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTg0NTY5L0ZFODk5RDVFMDg2NDExRUFCN0Q0RUM4MkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE4NDU2OS9GRTg5OUQ1RTA4NjQxMUVBQjdENEVDODJDNEY5QUUwMi92REM0cEwz
UnppajNzdm1aTkM5UnpoX2JodVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAh12MC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZ4aoMA0EAgAC
MAcDBQAkBGfAMA0GCSqGSIb3DQEBCwUAA4IBAQCUt+VJAcBsyDvcgLQ8+YQiLNIo
SzaVEqQKBX0R6dXh35yAQvNEdILT9ldRTjOcOKuj4GX8JbnPT45qvJMUYc4Jgk84
YMMJ8fhCUL+EpnF01tOzzwjoM2QDaai6NaLTJ++v/qgrSHEJfvKhcwkDFTuGDpTl
Zsh/6r2M0JFrc5SsgH68PlZVuemlw0jNBx4GsAYmsZUsezLr+bGX99h30JJH8AQK
dtbJuQch4s8ApdFrFGrnmZXgeOad7xxKJ6DQlqQKGCLSTpbypUtT8TGUBQm2GgEz
8xGUdLZpZkK7MrqG+idIcfI8rG4EcVQk7rITSbMW5Ale4jhwuG3k6R25Pmj0
-----END CERTIFICATE-----
Generated at Thu May 9 07:43:27 2024 by rpki-client on console-fra.rpki-client.org