Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-unC9P4gRTvpL8qxgsCVgcgTLfE.cer
File: -unC9P4gRTvpL8qxgsCVgcgTLfE.cer (raw, json)
Hash identifier: P21w89iN81vdc/B3JV1NJuZ2Lv3kVhhxr267+bTmpp0=
Subject key identifier: FA:E9:C2:F4:FE:20:45:3B:E9:2F:CA:B1:82:C0:95:81:C8:13:2D:F1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E1A1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919103F/F8B4BCDCF06611ECA54C3742C4F9AE02/-unC9P4gRTvpL8qxgsCVgcgTLfE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919103F/F8B4BCDCF06611ECA54C3742C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 01 Mar 2024 00:13:36 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 140646
AS: 152600 -- 152603
IP: 103.189.212.0/23
IP: 2400:88e0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 02:50:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123297 (0x1e1a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 1 00:13:36 2024 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A919103F/serialNumber=FAE9C2F4FE20453BE92FCAB182C09581C8132DF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:22:fa:9c:af:40:f9:ae:21:70:4b:9c:1b:2e:
ed:6a:8a:dd:42:54:b9:95:cd:07:e3:7f:f3:4e:bd:
94:ea:da:ef:53:5c:5e:5f:7f:21:20:0d:84:b2:37:
c4:b6:62:43:99:d6:a0:90:0a:3d:ce:a4:81:04:7c:
fe:87:15:b5:11:33:16:6e:cd:dd:e0:28:65:23:a1:
d6:5f:c4:13:30:b6:dc:16:3e:15:14:85:a4:db:6f:
8f:dd:45:9b:2d:70:e8:62:17:50:de:cb:b2:c5:5e:
00:34:34:13:7d:2a:05:8e:e9:eb:d0:c2:be:b6:a0:
24:28:85:b2:e0:42:0f:6d:37:be:b0:6b:0e:99:e0:
ad:8e:4a:fb:e2:25:17:7a:43:8d:02:28:2b:cb:55:
9c:aa:3c:fc:b4:a3:a9:a8:fc:c3:c1:15:d2:c7:93:
76:05:00:f6:ae:a0:6c:b5:e4:bb:6d:fe:cc:65:51:
87:d3:6a:6b:0a:6a:e2:da:b9:a2:95:05:e0:39:24:
d3:af:34:3b:41:45:8d:30:86:30:78:4e:77:35:c1:
f5:b9:80:5c:18:74:a7:45:f4:42:98:0f:b7:dc:57:
c6:ed:b3:e7:7f:54:58:1c:21:c9:2a:3b:e5:58:56:
cc:75:fb:5e:32:3b:2b:75:ff:fe:20:d6:d5:93:92:
26:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:E9:C2:F4:FE:20:45:3B:E9:2F:CA:B1:82:C0:95:81:C8:13:2D:F1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919103F/F8B4BCDCF06611ECA54C3742C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919103F/F8B4BCDCF06611ECA54C3742C4F9AE02/-unC9P4gRTvpL8qxgsCVgcgTLfE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140646
152600-152603
sbgp-ipAddrBlock: critical
IPv4:
103.189.212.0/23
IPv6:
2400:88e0::/32
Signature Algorithm: sha256WithRSAEncryption
9e:60:fe:b4:2a:fe:f0:7e:83:a6:27:c7:17:91:b1:2e:40:19:
cc:7a:08:2a:b1:86:90:dc:2d:81:41:48:6a:54:a6:ac:1a:f9:
59:93:8a:c3:b6:aa:cf:a0:4b:59:ea:40:f2:2e:ee:6c:30:1a:
ea:86:e5:12:73:1c:52:dc:d2:34:75:57:88:53:dc:c2:65:fb:
1a:06:f1:78:3f:49:a7:f6:fb:8f:c0:e8:f6:84:82:42:b1:be:
47:c0:e9:c0:f1:a3:b7:2d:17:4e:53:95:32:97:97:ee:26:3a:
5b:e6:c7:6f:3a:39:8c:5d:4a:a6:97:e3:67:63:99:9d:c8:e7:
5b:c3:52:5d:9f:e3:37:49:bb:48:9f:ee:52:eb:2f:8e:bf:61:
09:36:4a:39:c2:dd:21:b7:17:85:55:c0:4f:5c:aa:bd:f9:e7:
2d:84:b9:87:ba:63:39:24:b7:bd:fc:36:a2:e6:8d:0e:6b:e7:
50:59:05:8c:c7:75:aa:ff:09:04:19:7a:7c:a5:80:52:48:a3:
1e:9a:b1:40:1f:ac:47:b6:62:5f:70:41:30:97:5e:ee:07:86:
ba:63:a7:02:10:7f:06:09:ae:bf:e5:18:f9:a3:ce:da:71:e1:
75:cc:b9:44:23:2c:eb:2d:95:43:98:63:d6:41:d2:84:48:16:
a1:a1:cb:af
-----BEGIN CERTIFICATE-----
MIIGNTCCBR2gAwIBAgIDAeGhMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDMwMTAwMTMzNloXDTI0MDgzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxOTEwM0YxMTAvBgNVBAUTKEZBRTlDMkY0RkUyMDQ1M0JFOTJGQ0FC
MTgyQzA5NTgxQzgxMzJERjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDiIvqcr0D5riFwS5wbLu1qit1CVLmVzQfjf/NOvZTq2u9TXF5ffyEgDYSyN8S2
YkOZ1qCQCj3OpIEEfP6HFbURMxZuzd3gKGUjodZfxBMwttwWPhUUhaTbb4/dRZst
cOhiF1Dey7LFXgA0NBN9KgWO6evQwr62oCQohbLgQg9tN76waw6Z4K2OSvviJRd6
Q40CKCvLVZyqPPy0o6mo/MPBFdLHk3YFAPauoGy15Ltt/sxlUYfTamsKauLauaKV
BeA5JNOvNDtBRY0whjB4Tnc1wfW5gFwYdKdF9EKYD7fcV8bts+d/VFgcIckqO+VY
Vsx1+14yOyt1//4g1tWTkiZ7AgMBAAGjggMqMIIDJjAdBgNVHQ4EFgQU+unC9P4g
RTvpL8qxgsCVgcgTLfEwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTkxMDNGL0Y4QjRCQ0RDRjA2NjExRUNBNTRDMzc0MkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE5MTAzRi9GOEI0QkNEQ0YwNjYxMUVDQTU0QzM3NDJDNEY5QUUwMi8tdW5DOVA0
Z1JUdnBMOHF4Z3NDVmdjZ1RMZkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJgYIKwYBBQUHAQgBAf8EFzAV
oBMwEQIDAiVmMAoCAwJUGAIDAlQbMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAG
AwQBZ73UMA0EAgACMAcDBQAkAIjgMA0GCSqGSIb3DQEBCwUAA4IBAQCeYP60Kv7w
foOmJ8cXkbEuQBnMeggqsYaQ3C2BQUhqVKasGvlZk4rDtqrPoEtZ6kDyLu5sMBrq
huUScxxS3NI0dVeIU9zCZfsaBvF4P0mn9vuPwOj2hIJCsb5HwOnA8aO3LRdOU5Uy
l5fuJjpb5sdvOjmMXUqml+NnY5mdyOdbw1Jdn+M3SbtIn+5S6y+Ov2EJNko5wt0h
txeFVcBPXKq9+ecthLmHumM5JLe9/Dai5o0Oa+dQWQWMx3Wq/wkEGXp8pYBSSKMe
mrFAH6xHtmJfcEEwl17uB4a6Y6cCEH8GCa6/5Rj5o87aceF1zLlEIyzrLZVDmGPW
QdKESBahocuv
-----END CERTIFICATE-----
Generated at Fri Apr 26 03:51:17 2024 by rpki-client on console-ams.rpki-client.org