Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer
File: yq3LrMUbKkZS3XMHTygsM00BAnc.cer (raw, json)
Hash identifier: 7Tm0KBwYrSjUltCzznH/uyG690EwFNl70nhvcxhc2Gw=
Subject key identifier: CA:AD:CB:AC:C5:1B:2A:46:52:DD:73:07:4F:28:2C:33:4D:01:02:77
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CBB0
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 19 Nov 2023 18:50:42 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: IP: 103.144.142.0/24
IP: 2001:df1:c580::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117680 (0x1cbb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 19 18:50:42 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91DCCB3/serialNumber=CAADCBACC51B2A4652DD73074F282C334D010277
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:1c:79:72:78:6e:4f:a8:82:2f:8e:bc:f7:93:
a1:df:14:b4:30:7e:32:af:45:1a:e3:66:aa:8d:19:
9e:f2:0e:75:05:62:14:a1:f5:b0:b5:e6:f4:d7:3d:
f3:40:b6:a4:41:8b:a1:f5:f3:e8:8f:18:ec:17:5a:
9d:ef:99:a2:95:dc:e9:b6:17:08:49:88:16:8c:10:
6d:3e:b0:9a:78:c3:1d:a6:ad:f8:bb:40:a0:1c:4e:
e3:e6:0c:45:ca:c9:5b:20:1a:ac:c0:27:59:67:30:
64:2d:70:03:68:07:aa:cb:e8:77:37:07:62:c0:ad:
90:ff:d6:95:1f:e6:00:70:39:17:79:f1:01:50:b7:
58:31:20:4d:93:65:27:40:86:f8:be:2c:60:7c:48:
80:e6:1f:ec:0b:e1:db:48:65:6b:da:f1:2b:60:f4:
ac:de:b8:b3:cc:fa:80:5d:35:03:1c:41:dd:a3:b5:
3d:28:d2:6e:0b:d7:cd:ed:16:71:8e:f8:b1:2d:10:
98:2b:07:ea:56:35:6c:b4:7d:a3:dc:4e:6b:e2:57:
bc:39:c5:4c:bb:dd:ed:cb:19:29:25:94:35:84:68:
dd:3c:a4:06:fa:62:0b:4b:50:d8:b9:71:08:81:86:
8c:1d:95:5c:f5:26:53:c7:a5:e7:98:0a:7f:63:d0:
1a:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:AD:CB:AC:C5:1B:2A:46:52:DD:73:07:4F:28:2C:33:4D:01:02:77
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.144.142.0/24
IPv6:
2001:df1:c580::/48
Signature Algorithm: sha256WithRSAEncryption
6c:10:e8:8a:8c:5a:4e:f4:02:76:2a:e4:33:cd:f5:16:7f:e2:
bd:be:60:96:3b:49:f1:5b:8f:4d:6a:96:64:db:0d:d3:26:a1:
f3:e2:fc:ee:a4:ee:29:ba:1a:bd:e2:17:95:fc:03:d3:2b:94:
d7:a2:ce:2d:89:3f:ea:47:82:73:e5:45:cb:41:b6:1d:b2:7d:
bb:66:db:be:f8:a8:c3:bd:67:60:98:98:4b:bc:2f:d5:4b:20:
72:f1:f5:73:b2:af:7a:45:5c:fd:a0:1e:da:95:9e:ea:e3:ab:
88:d0:c2:4b:78:c7:15:34:17:2a:ec:3c:ea:fe:48:fb:dc:eb:
e9:30:5d:cd:f5:cf:55:7f:86:91:e6:68:1f:9c:98:4d:90:ed:
9a:3a:88:69:18:d3:5e:d2:f1:20:82:45:dd:1f:27:21:61:5a:
df:df:c4:44:e5:1e:ac:0f:ca:6e:7f:50:21:61:03:a2:fc:28:
93:35:f1:83:17:12:85:df:c4:f3:b2:5a:23:1b:6c:c5:17:22:
c3:3f:01:e3:87:d7:1a:4f:25:1d:d2:53:9e:c5:97:1c:26:ff:
1b:94:b3:41:3d:50:f6:07:b4:16:ab:00:49:66:10:5e:82:15:
f2:f5:61:6a:00:7e:43:60:0b:e3:7d:21:d4:c3:f6:09:d9:e7:
74:ba:8f:a3
-----BEGIN CERTIFICATE-----
MIIGDzCCBPegAwIBAgIDAcuwMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMTExOTE4NTA0MloXDTI1MDEzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRENDQjMxMTAvBgNVBAUTKENBQURDQkFDQzUxQjJBNDY1MkRENzMw
NzRGMjgyQzMzNEQwMTAyNzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDDHHlyeG5PqIIvjrz3k6HfFLQwfjKvRRrjZqqNGZ7yDnUFYhSh9bC15vTXPfNA
tqRBi6H18+iPGOwXWp3vmaKV3Om2FwhJiBaMEG0+sJp4wx2mrfi7QKAcTuPmDEXK
yVsgGqzAJ1lnMGQtcANoB6rL6Hc3B2LArZD/1pUf5gBwORd58QFQt1gxIE2TZSdA
hvi+LGB8SIDmH+wL4dtIZWva8Stg9KzeuLPM+oBdNQMcQd2jtT0o0m4L183tFnGO
+LEtEJgrB+pWNWy0faPcTmviV7w5xUy73e3LGSkllDWEaN08pAb6YgtLUNi5cQiB
howdlVz1JlPHpeeYCn9j0Bq5AgMBAAGjggMEMIIDADAdBgNVHQ4EFgQUyq3LrMUb
KkZS3XMHTygsM00BAncwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MURDQ0IzLzQxRkQ2MDE2ODk1QzExRUE4OTBDNjM0M0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFEQ0NCMy80MUZENjAxNjg5NUMxMUVBODkwQzYzNDNDNEY5QUUwMi95cTNMck1V
YktrWlMzWE1IVHlnc00wMEJBbmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8EITAf
MAwEAgABMAYDBABnkI4wDwQCAAIwCQMHACABDfHFgDANBgkqhkiG9w0BAQsFAAOC
AQEAbBDoioxaTvQCdirkM831Fn/ivb5gljtJ8VuPTWqWZNsN0yah8+L87qTuKboa
veIXlfwD0yuU16LOLYk/6keCc+VFy0G2HbJ9u2bbvviow71nYJiYS7wv1UsgcvH1
c7KvekVc/aAe2pWe6uOriNDCS3jHFTQXKuw86v5I+9zr6TBdzfXPVX+GkeZoH5yY
TZDtmjqIaRjTXtLxIIJF3R8nIWFa39/EROUerA/Kbn9QIWEDovwokzXxgxcShd/E
87JaIxtsxRciwz8B44fXGk8lHdJTnsWXHCb/G5SzQT1Q9ge0FqsASWYQXoIV8vVh
agB+Q2AL430h1MP2CdnndLqPow==
-----END CERTIFICATE-----
Generated at Thu May 9 10:11:06 2024 by rpki-client on console-ams.rpki-client.org