Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yGKAiFiS3bSQ2a8Kwd0thu-bO-U.cer
File: yGKAiFiS3bSQ2a8Kwd0thu-bO-U.cer (raw, json)
Hash identifier: ARmkxQAX4iJ15hXW1MdYQL3/y//rZmmc3V7pjMeJ7LQ=
Subject key identifier: C8:62:80:88:58:92:DD:B4:90:D9:AF:0A:C1:DD:2D:86:EF:9B:3B:E5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E849
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9177BBE/4659591C02A411ED87D29C87C4F9AE02/yGKAiFiS3bSQ2a8Kwd0thu-bO-U.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9177BBE/4659591C02A411ED87D29C87C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 01 Apr 2024 17:56:50 +0000
Certificate not after: Thu 01 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 64060
IP: 103.18.248.0/22
IP: 2001:df7:2c00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125001 (0x1e849)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 1 17:56:50 2024 GMT
Not After : Aug 1 00:00:00 2024 GMT
Subject: CN=A9177BBE/serialNumber=C86280885892DDB490D9AF0AC1DD2D86EF9B3BE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:2d:75:8b:75:b0:47:39:6d:81:a9:99:53:32:
03:3f:22:ee:9f:17:0b:06:81:89:a4:fb:cd:3a:8d:
65:6b:33:45:43:da:c5:15:76:db:c6:a4:2a:ae:62:
2d:98:de:6e:32:9e:2b:8f:ca:84:c7:d7:28:26:1b:
e1:a2:3e:77:5f:f3:82:3a:d1:c8:a6:dd:a5:ff:74:
ec:ce:c6:03:48:08:28:ff:ad:8e:a7:fa:bf:3b:bb:
fb:0d:b7:03:93:d1:d2:a0:44:d3:c9:72:80:a0:90:
1e:7e:8b:6f:17:6e:93:8c:2d:db:b4:3c:0b:93:51:
c9:bf:41:9b:fc:80:f2:75:96:ff:96:ce:33:44:e7:
5a:cb:ef:a4:6c:34:86:e0:43:a7:a0:97:84:8d:b0:
f4:d9:98:42:48:44:74:f8:1a:09:4e:c4:93:ca:f4:
20:fe:79:18:03:10:c3:59:ce:64:e0:d9:5a:46:23:
10:ea:96:a1:a2:62:f3:41:ba:df:1f:75:43:c1:77:
e8:ae:59:61:18:2b:8e:c2:93:ef:24:84:e4:11:67:
d4:6a:01:85:e1:27:87:4c:04:d5:0b:8a:b4:77:34:
1c:80:17:e7:fc:03:54:3c:64:e3:cb:92:0f:5f:de:
cf:b4:40:a6:37:08:15:35:25:54:71:ef:e0:df:91:
3f:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:62:80:88:58:92:DD:B4:90:D9:AF:0A:C1:DD:2D:86:EF:9B:3B:E5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9177BBE/4659591C02A411ED87D29C87C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9177BBE/4659591C02A411ED87D29C87C4F9AE02/yGKAiFiS3bSQ2a8Kwd0thu-bO-U.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
64060
sbgp-ipAddrBlock: critical
IPv4:
103.18.248.0/22
IPv6:
2001:df7:2c00::/48
Signature Algorithm: sha256WithRSAEncryption
13:13:83:bc:32:cd:8c:df:b3:d1:15:2d:94:28:97:a0:69:cf:
c7:3e:1f:6e:5b:be:14:20:dd:91:cb:2a:8b:ff:ae:bd:ce:19:
ee:05:e3:6b:3e:5d:35:97:7b:0c:d1:86:77:f4:ad:97:05:58:
8f:dc:71:22:ce:62:72:c5:28:d6:6b:98:2b:35:ff:59:16:af:
60:40:36:c0:e2:4a:b0:7e:8e:21:bd:12:4e:77:fe:86:5c:99:
4b:c8:b8:c7:a0:43:d0:30:38:2a:14:c8:72:c7:61:14:32:8b:
7f:00:7a:8f:3b:41:bf:31:e0:88:d3:d7:f1:46:90:a3:ca:8c:
f9:4a:35:9d:e5:31:46:29:d9:0e:8c:bd:c7:12:fd:6b:ae:32:
a3:44:2e:b2:de:42:b8:be:94:7c:f9:d9:4d:03:e7:62:aa:a6:
39:df:18:b4:77:8a:90:9f:f1:d3:c1:61:97:50:a1:88:ff:88:
3b:43:6b:e0:11:06:81:3c:a0:29:57:3a:b0:5f:a4:99:1a:32:
ab:66:4c:75:b4:49:13:66:fd:c5:da:91:c7:5e:83:75:68:e2:
39:88:1c:c1:11:af:5d:f7:f5:a7:68:2b:ab:c3:7b:79:2a:74:
e2:8f:08:37:01:4d:4c:5e:5f:d4:3a:0e:a0:1d:8b:1f:f3:e0:
33:5b:1d:b5
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAehJMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDQwMTE3NTY1MFoXDTI0MDgwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNzdCQkUxMTAvBgNVBAUTKEM4NjI4MDg4NTg5MkREQjQ5MEQ5QUYw
QUMxREQyRDg2RUY5QjNCRTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCkLXWLdbBHOW2BqZlTMgM/Iu6fFwsGgYmk+806jWVrM0VD2sUVdtvGpCquYi2Y
3m4yniuPyoTH1ygmG+GiPndf84I60cim3aX/dOzOxgNICCj/rY6n+r87u/sNtwOT
0dKgRNPJcoCgkB5+i28XbpOMLdu0PAuTUcm/QZv8gPJ1lv+WzjNE51rL76RsNIbg
Q6egl4SNsPTZmEJIRHT4GglOxJPK9CD+eRgDEMNZzmTg2VpGIxDqlqGiYvNBut8f
dUPBd+iuWWEYK47Ck+8khOQRZ9RqAYXhJ4dMBNULirR3NByAF+f8A1Q8ZOPLkg9f
3s+0QKY3CBU1JVRx7+DfkT/hAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUyGKAiFiS
3bSQ2a8Kwd0thu+bO+UwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTc3QkJFLzQ2NTk1OTFDMDJBNDExRUQ4N0QyOUM4N0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE3N0JCRS80NjU5NTkxQzAyQTQxMUVEODdEMjlDODdDNEY5QUUwMi95R0tBaUZp
UzNiU1EyYThLd2QwdGh1LWJPLVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAPo8MDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQCZxL4MA8EAgAC
MAkDBwAgAQ33LAAwDQYJKoZIhvcNAQELBQADggEBABMTg7wyzYzfs9EVLZQol6Bp
z8c+H25bvhQg3ZHLKov/rr3OGe4F42s+XTWXewzRhnf0rZcFWI/ccSLOYnLFKNZr
mCs1/1kWr2BANsDiSrB+jiG9Ek53/oZcmUvIuMegQ9AwOCoUyHLHYRQyi38Aeo87
Qb8x4IjT1/FGkKPKjPlKNZ3lMUYp2Q6MvccS/WuuMqNELrLeQri+lHz52U0D52Kq
pjnfGLR3ipCf8dPBYZdQoYj/iDtDa+ARBoE8oClXOrBfpJkaMqtmTHW0SRNm/cXa
kcdeg3Vo4jmIHMERr1339adoK6vDe3kqdOKPCDcBTUxeX9Q6DqAdix/z4DNbHbU=
-----END CERTIFICATE-----
Generated at Thu May 9 07:43:24 2024 by rpki-client on console-ams.rpki-client.org