Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer
File: 1O0zil4gh9gu9ML2RZm0ERJy5eA.cer (raw, json)
Hash identifier: j09GuPKzMbGXu8py3hkmBvYRqAlIbsxDyPScRnZ9DtU=
Subject key identifier: D4:ED:33:8A:5E:20:87:D8:2E:F4:C2:F6:45:99:B4:11:12:72:E5:E0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021B1B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 13 Nov 2024 13:56:12 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 141420
IP: 103.158.226.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138011 (0x21b1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 13 13:56:12 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A914ECA4/serialNumber=D4ED338A5E2087D82EF4C2F64599B4111272E5E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:2a:50:fa:6b:23:14:59:dd:d5:9d:dc:ee:73:
54:fd:51:70:69:dd:85:3b:24:64:21:5e:ae:8d:7f:
30:d9:91:ea:bd:92:92:b8:b4:48:10:f2:6b:9c:ba:
0d:04:92:be:6c:48:82:5e:cb:9c:33:56:6d:a8:32:
b1:f6:da:ec:ed:f8:61:ad:89:8b:67:af:aa:98:f3:
da:27:cb:4b:63:9f:8c:1d:cc:e7:99:51:b9:f0:06:
e6:e4:0b:c4:d5:44:71:48:05:03:da:f1:cb:61:fa:
47:8d:63:02:a8:90:c1:b5:d6:84:7e:42:89:0a:a7:
4e:e0:dc:e4:9f:9c:a2:2a:7b:93:64:72:4a:f3:39:
5e:51:6a:0f:56:b8:fc:27:bd:a2:91:ff:c6:bb:16:
9f:40:63:a6:7e:ef:61:8e:a3:2d:2e:ec:27:f3:3e:
e2:31:2b:43:3a:20:82:53:d4:65:3c:0c:24:5d:03:
c4:44:89:0b:eb:e5:7d:16:44:63:46:ea:a7:ba:29:
3c:70:6a:be:55:6a:2a:18:00:3c:e2:42:6c:99:12:
45:e5:4a:e7:48:da:21:27:87:38:cf:01:c4:fc:02:
c8:d9:76:88:f5:21:db:41:56:a7:31:e9:28:1c:68:
25:50:03:fb:37:29:dd:fc:bd:ef:59:75:cd:45:dc:
7d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:ED:33:8A:5E:20:87:D8:2E:F4:C2:F6:45:99:B4:11:12:72:E5:E0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141420
sbgp-ipAddrBlock: critical
IPv4:
103.158.226.0/23
Signature Algorithm: sha256WithRSAEncryption
5e:5d:39:8c:4b:4f:b2:4a:24:19:12:02:05:19:8f:d6:17:4c:
84:50:74:bb:27:36:16:61:97:f1:89:50:28:84:63:7f:1f:2a:
0b:81:61:2d:51:ab:92:f9:4c:ac:28:4e:17:87:98:99:17:84:
25:18:d9:81:c9:9c:1e:c4:a9:c1:8a:78:5e:91:c2:ce:09:b3:
2f:f9:02:1b:18:99:9a:d3:df:e2:92:48:48:39:56:49:79:6f:
8e:90:1f:67:68:e2:ab:8e:07:be:ea:28:1c:6a:2c:90:7d:35:
b8:e9:fb:c3:a7:cf:64:93:d1:ea:39:e9:63:30:e2:cb:31:28:
a2:30:8e:c3:aa:1a:66:3c:3c:5f:f9:88:d2:23:4f:1f:00:b5:
09:97:dd:79:90:f9:e0:8d:3a:8b:24:f2:7a:05:f4:e9:e4:59:
17:c2:90:86:f6:a8:c1:bd:3b:79:78:6d:3a:a7:25:59:8b:73:
75:8c:4b:c6:2f:39:d4:90:46:e8:df:7d:4b:3e:df:1f:8a:34:
0f:bd:1c:be:1d:54:3c:cc:65:7b:79:b4:3c:32:dc:1b:27:30:
ab:93:bb:7f:00:12:b1:8a:bb:23:98:8a:13:65:0a:8c:65:45:
e3:ec:4c:8b:e0:ff:03:d8:90:11:55:49:0d:a2:a3:ae:f4:a9:
b6:51:81:15
-----BEGIN CERTIFICATE-----
MIIGGjCCBQKgAwIBAgIDAhsbMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTExMzEzNTYxMloXDTI1MTIzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNEVDQTQxMTAvBgNVBAUTKEQ0RUQzMzhBNUUyMDg3RDgyRUY0QzJG
NjQ1OTlCNDExMTI3MkU1RTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDVKlD6ayMUWd3Vndzuc1T9UXBp3YU7JGQhXq6NfzDZkeq9kpK4tEgQ8mucug0E
kr5sSIJey5wzVm2oMrH22uzt+GGtiYtnr6qY89ony0tjn4wdzOeZUbnwBubkC8TV
RHFIBQPa8cth+keNYwKokMG11oR+QokKp07g3OSfnKIqe5NkckrzOV5Rag9WuPwn
vaKR/8a7Fp9AY6Z+72GOoy0u7CfzPuIxK0M6IIJT1GU8DCRdA8REiQvr5X0WRGNG
6qe6KTxwar5VaioYADziQmyZEkXlSudI2iEnhzjPAcT8AsjZdoj1IdtBVqcx6Sgc
aCVQA/s3Kd38ve9Zdc1F3H33AgMBAAGjggMPMIIDCzAdBgNVHQ4EFgQU1O0zil4g
h9gu9ML2RZm0ERJy5eAwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTRFQ0E0LzdBRTlGRUQ2M0E3QjExRUJCNzg2OUMyNEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE0RUNBNC83QUU5RkVENjNBN0IxMUVCQjc4NjlDMjRDNEY5QUUwMi8xTzB6aWw0
Z2g5Z3U5TUwyUlptMEVSSnk1ZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAihsMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ57iMA0GCSqG
SIb3DQEBCwUAA4IBAQBeXTmMS0+ySiQZEgIFGY/WF0yEUHS7JzYWYZfxiVAohGN/
HyoLgWEtUauS+UysKE4Xh5iZF4QlGNmByZwexKnBinhekcLOCbMv+QIbGJma09/i
kkhIOVZJeW+OkB9naOKrjge+6igcaiyQfTW46fvDp89kk9HqOeljMOLLMSiiMI7D
qhpmPDxf+YjSI08fALUJl915kPngjTqLJPJ6BfTp5FkXwpCG9qjBvTt5eG06pyVZ
i3N1jEvGLznUkEbo331LPt8fijQPvRy+HVQ8zGV7ebQ8MtwbJzCrk7t/ABKxirsj
mIoTZQqMZUXj7EyL4P8D2JARVUkNoqOu9Km2UYEV
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:05 2024 by rpki-client on console-fra.rpki-client.org