Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ABRvI3aYMky7gd2mrhnvvqNQvY.cer
File: 1ABRvI3aYMky7gd2mrhnvvqNQvY.cer (raw, json)
Hash identifier: mfcl0KPr662RfyDVpHPzShbyFX/fqgnlRZ5IdN9/f50=
Subject key identifier: D4:00:51:BC:8D:DA:60:C9:32:EE:07:76:9A:B8:67:BE:FA:8D:42:F6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01AFF2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D3F8E/6C4089BA216C11EEB28BF24CC4F9AE02/1ABRvI3aYMky7gd2mrhnvvqNQvY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D3F8E/6C4089BA216C11EEB28BF24CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 13 Jul 2023 11:00:12 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 151614
IP: 103.238.114.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 05:14:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110578 (0x1aff2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 13 11:00:12 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91D3F8E/serialNumber=D40051BC8DDA60C932EE07769AB867BEFA8D42F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:89:c0:ce:8b:2a:d6:2e:6e:27:d0:f4:35:04:
3a:0d:10:3b:4a:e2:b4:5f:b0:6a:ba:08:f7:b3:36:
3d:7f:16:ec:7b:d3:ea:75:be:91:1c:df:2a:7f:c3:
23:bf:35:49:a9:9e:e0:d8:9b:dd:05:4c:e3:d3:0e:
23:61:d3:21:73:7d:04:ab:b2:1f:ab:27:33:d8:6d:
3d:69:0b:1f:1f:ef:14:f6:8e:a9:ac:e4:27:fd:d1:
94:7d:93:5b:f9:41:ee:e0:ad:f4:2e:97:0f:83:18:
ee:8a:b7:5b:2b:d3:71:6c:d0:41:37:67:e9:89:3f:
a6:c7:48:77:52:f5:b0:75:c8:a7:74:1e:84:0b:82:
00:50:53:51:26:8d:e8:2a:fc:79:ad:c4:10:e6:ac:
00:1d:bd:1f:3c:70:89:22:11:c0:5e:e9:ff:4b:98:
7d:c3:89:fb:0c:60:1d:18:3e:ab:6a:a6:d1:94:ed:
bf:28:86:fd:ea:8e:49:db:af:0e:d3:3e:c7:93:07:
7a:98:a4:be:99:fd:6c:83:e1:16:41:7d:1d:e8:b6:
c7:56:5e:9a:f2:71:fd:e9:4b:a0:ca:e9:7e:8d:6f:
7a:67:70:22:3f:89:29:db:a7:01:f8:9d:ed:09:ab:
b7:a6:1f:7a:0c:23:60:85:ea:56:89:9b:fb:9d:91:
de:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:00:51:BC:8D:DA:60:C9:32:EE:07:76:9A:B8:67:BE:FA:8D:42:F6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D3F8E/6C4089BA216C11EEB28BF24CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D3F8E/6C4089BA216C11EEB28BF24CC4F9AE02/1ABRvI3aYMky7gd2mrhnvvqNQvY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151614
sbgp-ipAddrBlock: critical
IPv4:
103.238.114.0/23
Signature Algorithm: sha256WithRSAEncryption
3c:4d:52:7b:0c:d0:a2:da:9b:26:d1:ff:86:1d:40:e3:fc:41:
c2:07:22:4c:c4:0b:fd:59:11:53:09:8e:c9:98:66:79:06:cb:
a7:95:e2:d2:e0:d4:25:64:88:93:27:0f:36:2e:b8:b3:a4:a2:
2a:9d:ba:ff:f5:46:e4:aa:19:0e:7d:40:13:de:19:75:51:0b:
bf:65:ab:58:71:f9:3d:6b:af:9f:94:e3:61:c9:22:eb:86:77:
ba:7b:4f:c8:95:1e:72:26:f1:2c:50:94:4c:8a:43:89:da:78:
2c:b1:4d:ed:69:be:4c:bb:bc:9e:ce:b4:c2:18:b4:04:10:e4:
c7:e1:f0:00:fa:bf:2d:f5:a2:db:24:fe:59:86:e4:a9:c8:7a:
7f:a8:9c:eb:22:40:e1:7c:0f:16:d2:45:3f:44:2c:db:d7:e2:
fd:72:b3:dd:34:75:c8:00:e4:f0:52:62:5d:95:0b:8f:ab:a3:
02:d0:5f:c5:09:dd:bc:6b:21:78:be:6b:c1:f7:b7:5a:ee:33:
97:bc:36:ff:0b:c0:36:58:0c:64:66:e7:00:4d:3b:db:fa:e7:
ac:25:ed:5a:e2:77:a6:61:20:ed:a2:40:07:44:4e:36:6c:2c:
88:7b:0a:a3:1e:c9:5b:8d:50:ea:99:21:e2:0a:85:1d:3d:ba:
ff:ff:0f:97
-----BEGIN CERTIFICATE-----
MIIGGjCCBQKgAwIBAgIDAa/yMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDcxMzExMDAxMloXDTI0MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRDNGOEUxMTAvBgNVBAUTKEQ0MDA1MUJDOEREQTYwQzkzMkVFMDc3
NjlBQjg2N0JFRkE4RDQyRjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDIicDOiyrWLm4n0PQ1BDoNEDtK4rRfsGq6CPezNj1/Fux70+p1vpEc3yp/wyO/
NUmpnuDYm90FTOPTDiNh0yFzfQSrsh+rJzPYbT1pCx8f7xT2jqms5Cf90ZR9k1v5
Qe7grfQulw+DGO6Kt1sr03Fs0EE3Z+mJP6bHSHdS9bB1yKd0HoQLggBQU1Emjegq
/HmtxBDmrAAdvR88cIkiEcBe6f9LmH3DifsMYB0YPqtqptGU7b8ohv3qjknbrw7T
PseTB3qYpL6Z/WyD4RZBfR3otsdWXprycf3pS6DK6X6Nb3pncCI/iSnbpwH4ne0J
q7emH3oMI2CF6laJm/udkd6PAgMBAAGjggMPMIIDCzAdBgNVHQ4EFgQU1ABRvI3a
YMky7gd2mrhnvvqNQvYwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUQzRjhFLzZDNDA4OUJBMjE2QzExRUVCMjhCRjI0Q0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFEM0Y4RS82QzQwODlCQTIxNkMxMUVFQjI4QkYyNENDNEY5QUUwMi8xQUJSdkkz
YVlNa3k3Z2QybXJobnZ2cU5RdlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAlA+MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ+5yMA0GCSqG
SIb3DQEBCwUAA4IBAQA8TVJ7DNCi2psm0f+GHUDj/EHCByJMxAv9WRFTCY7JmGZ5
BsunleLS4NQlZIiTJw82LrizpKIqnbr/9UbkqhkOfUAT3hl1UQu/ZatYcfk9a6+f
lONhySLrhne6e0/IlR5yJvEsUJRMikOJ2ngssU3tab5Mu7yezrTCGLQEEOTH4fAA
+r8t9aLbJP5ZhuSpyHp/qJzrIkDhfA8W0kU/RCzb1+L9crPdNHXIAOTwUmJdlQuP
q6MC0F/FCd28ayF4vmvB97da7jOXvDb/C8A2WAxkZucATTvb+uesJe1a4nemYSDt
okAHRE42bCyIewqjHslbjVDqmSHiCoUdPbr//w+X
-----END CERTIFICATE-----
Generated at Thu May 2 05:58:09 2024 by rpki-client on console-ams.rpki-client.org