Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-5w6kNDNa5K-MWAyXafCbH9OWQA.cer
File: -5w6kNDNa5K-MWAyXafCbH9OWQA.cer (raw, json)
Hash identifier: B8vUvdgUsmVEtf16RMPWtkx4S6sQUmD6uQ9iROD0bdk=
Subject key identifier: FB:9C:3A:90:D0:CD:6B:92:BE:31:60:32:5D:A7:C2:6C:7F:4E:59:00
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C65F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DE1A3/8B9DBBCE689F11EDAD177667C4F9AE02/-5w6kNDNa5K-MWAyXafCbH9OWQA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DE1A3/8B9DBBCE689F11EDAD177667C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Oct 2023 04:05:15 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 150330
IP: 103.6.250.0/23
IP: 2400:aba0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 23 Apr 2024 10:38:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116319 (0x1c65f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 27 04:05:15 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A91DE1A3/serialNumber=FB9C3A90D0CD6B92BE3160325DA7C26C7F4E5900
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ca:38:0a:f5:d3:dc:8a:1f:a4:a4:fd:b8:d3:
e8:2f:8d:24:fb:30:56:fc:42:5c:bf:b0:23:79:ed:
16:53:00:8c:d3:88:fc:5f:39:dd:05:28:d5:09:b0:
c8:63:2f:f3:b0:f3:cf:f1:53:5a:00:ec:5f:df:45:
01:5f:5c:dd:d2:67:fc:44:8c:48:17:3e:96:57:10:
59:65:f7:79:9d:9f:58:cc:29:eb:04:a9:50:2c:66:
67:54:fd:06:83:df:81:28:70:e7:28:27:85:c0:d5:
d8:46:72:f4:b7:4f:0c:af:6b:f9:14:df:29:b4:e7:
8f:63:05:a6:44:0e:52:63:f9:97:10:76:09:74:92:
dd:b2:dc:c1:52:74:53:46:cc:21:19:d6:61:c7:ee:
b0:b6:0f:c2:aa:4f:34:16:b1:7b:26:16:aa:1f:e0:
1d:98:49:21:e7:46:5e:c4:cb:b2:83:62:02:45:34:
1d:e0:44:e6:a4:87:a7:63:1a:8f:bb:61:99:6b:75:
a9:13:d1:a0:f7:25:6b:02:03:4f:cf:83:76:02:06:
27:d0:94:19:6e:9e:64:da:4f:5c:84:1a:e1:b1:a3:
75:7d:c0:09:41:09:2e:46:d7:46:be:48:a0:81:2d:
a8:8d:21:33:65:12:5b:81:19:18:e0:82:10:d9:d7:
d1:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:9C:3A:90:D0:CD:6B:92:BE:31:60:32:5D:A7:C2:6C:7F:4E:59:00
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DE1A3/8B9DBBCE689F11EDAD177667C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DE1A3/8B9DBBCE689F11EDAD177667C4F9AE02/-5w6kNDNa5K-MWAyXafCbH9OWQA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150330
sbgp-ipAddrBlock: critical
IPv4:
103.6.250.0/23
IPv6:
2400:aba0::/32
Signature Algorithm: sha256WithRSAEncryption
07:cb:35:6d:01:85:cf:2f:ef:a7:67:92:5f:92:aa:24:7d:11:
56:cf:fa:08:23:2b:2b:a3:f8:72:e8:c1:2a:70:b3:c0:bf:c3:
19:5e:60:19:b7:8b:b2:2b:d2:30:f4:04:f8:23:98:11:be:70:
8f:45:b7:5c:cd:27:1a:cf:56:c6:db:a9:5a:f9:d2:16:5b:e6:
74:4c:65:b3:85:db:99:aa:90:41:3e:e7:02:f0:56:04:0e:58:
ce:72:84:62:56:49:6e:01:9a:9c:79:a7:08:a7:d0:56:e3:e1:
7a:df:68:56:c7:8a:11:48:66:64:a0:5e:ab:79:72:99:a5:5c:
49:40:87:97:1a:8a:c7:63:fe:94:6c:f6:6e:b8:8a:4e:d6:a0:
9e:46:94:d7:1a:c3:9e:fe:17:3f:85:9e:9d:6e:22:b2:96:83:
ad:05:80:e8:71:d4:00:57:c4:8b:a5:d0:18:b7:9c:5b:c8:e2:
2b:c2:a7:76:b6:49:a9:19:e8:ff:de:3a:b9:e9:5f:9f:20:d5:
f3:71:2b:04:97:f9:46:e8:cd:50:b3:f8:b3:55:36:bc:9b:de:
eb:29:48:be:6a:e0:53:de:00:d3:12:2b:74:83:7b:a1:46:dc:
c6:10:14:2d:51:41:70:20:ff:f0:31:f8:59:95:10:1c:0c:1e:
1a:86:ff:55
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAcZfMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMTAyNzA0MDUxNVoXDTI0MTIzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxREUxQTMxMTAvBgNVBAUTKEZCOUMzQTkwRDBDRDZCOTJCRTMxNjAz
MjVEQTdDMjZDN0Y0RTU5MDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDAyjgK9dPcih+kpP240+gvjST7MFb8Qly/sCN57RZTAIzTiPxfOd0FKNUJsMhj
L/Ow88/xU1oA7F/fRQFfXN3SZ/xEjEgXPpZXEFll93mdn1jMKesEqVAsZmdU/QaD
34EocOcoJ4XA1dhGcvS3Twyva/kU3ym0549jBaZEDlJj+ZcQdgl0kt2y3MFSdFNG
zCEZ1mHH7rC2D8KqTzQWsXsmFqof4B2YSSHnRl7Ey7KDYgJFNB3gROakh6djGo+7
YZlrdakT0aD3JWsCA0/Pg3YCBifQlBlunmTaT1yEGuGxo3V9wAlBCS5G10a+SKCB
LaiNITNlEluBGRjgghDZ19EjAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQU+5w6kNDN
a5K+MWAyXafCbH9OWQAwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MURFMUEzLzhCOURCQkNFNjg5RjExRURBRDE3NzY2N0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFERTFBMy84QjlEQkJDRTY4OUYxMUVEQUQxNzc2NjdDNEY5QUUwMi8tNXc2a05E
TmE1Sy1NV0F5WGFmQ2JIOU9XUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAks6MC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBZwb6MA0EAgAC
MAcDBQAkAKugMA0GCSqGSIb3DQEBCwUAA4IBAQAHyzVtAYXPL++nZ5JfkqokfRFW
z/oIIysro/hy6MEqcLPAv8MZXmAZt4uyK9Iw9AT4I5gRvnCPRbdczScaz1bG26la
+dIWW+Z0TGWzhduZqpBBPucC8FYEDljOcoRiVkluAZqceacIp9BW4+F632hWx4oR
SGZkoF6reXKZpVxJQIeXGorHY/6UbPZuuIpO1qCeRpTXGsOe/hc/hZ6dbiKyloOt
BYDocdQAV8SLpdAYt5xbyOIrwqd2tkmpGej/3jq56V+fINXzcSsEl/lG6M1Qs/iz
VTa8m97rKUi+auBT3gDTEit0g3uhRtzGEBQtUUFwIP/wMfhZlRAcDB4ahv9V
-----END CERTIFICATE-----
Generated at Tue Apr 16 12:09:28 2024 by rpki-client on console-ams.rpki-client.org