Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Q0Rg3MIqx8Vp181FkP7f8AUhUw.cer
File: 1Q0Rg3MIqx8Vp181FkP7f8AUhUw.cer (raw, json)
Hash identifier: Ax2tohtcBJXJ0XOfeNhbjJgdLPIYY5WhN8I3/aAVlbU=
Subject key identifier: D5:0D:11:83:73:08:AB:1F:15:A7:5F:35:16:43:FB:7F:C0:14:85:4C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C979
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DB916/74EC397E7D3D11EE9AF7391AC4F9AE02/1Q0Rg3MIqx8Vp181FkP7f8AUhUw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DB916/74EC397E7D3D11EE9AF7391AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 07 Nov 2023 07:15:47 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 152103
IP: 180.131.134.0/23
IP: 2001:df3:1e40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 10:14:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117113 (0x1c979)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 7 07:15:47 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91DB916/serialNumber=D50D11837308AB1F15A75F351643FB7FC014854C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:0b:dd:25:db:52:0c:97:11:be:5f:05:c0:da:
77:54:99:3f:00:11:f9:7e:60:81:38:0a:19:75:b6:
52:95:fd:bc:40:1f:16:98:ec:3f:23:bf:f0:b4:9a:
c0:bd:85:f0:89:19:00:3e:ef:12:5b:07:2e:28:1b:
48:af:5d:a5:2d:29:22:a8:c4:91:1b:80:80:65:ed:
57:2a:c9:64:e0:a3:ed:7c:6c:d3:8d:ab:2b:1e:95:
54:ed:00:d2:59:9d:de:15:dd:09:4f:81:f5:37:9d:
7c:1c:6e:63:74:25:33:38:67:5f:0e:1f:9d:a5:2e:
ce:42:ae:df:b5:1b:fa:2f:f1:87:29:6f:e8:92:bc:
df:2b:ff:9e:87:f3:92:b2:52:76:b9:d3:17:c4:eb:
03:f7:c4:5f:ed:bc:80:4e:df:16:67:cd:48:8b:a3:
8e:7d:95:75:34:33:9e:5c:75:91:8f:35:5f:32:93:
16:30:e1:20:95:57:a8:bc:d3:60:78:7b:43:4d:f0:
3d:37:0d:31:c2:62:c6:bf:3e:0a:6e:fb:7b:8d:4d:
47:2d:c0:2d:ed:1a:04:55:a8:83:7d:82:80:32:04:
65:69:7a:2d:3c:62:23:e2:46:99:87:49:c8:48:67:
f8:84:a7:4d:11:33:5d:66:b1:4a:75:d9:ce:61:d7:
b9:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:0D:11:83:73:08:AB:1F:15:A7:5F:35:16:43:FB:7F:C0:14:85:4C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DB916/74EC397E7D3D11EE9AF7391AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DB916/74EC397E7D3D11EE9AF7391AC4F9AE02/1Q0Rg3MIqx8Vp181FkP7f8AUhUw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152103
sbgp-ipAddrBlock: critical
IPv4:
180.131.134.0/23
IPv6:
2001:df3:1e40::/48
Signature Algorithm: sha256WithRSAEncryption
88:14:0a:4f:c8:53:5b:ba:e6:82:8e:6f:00:34:28:42:72:b1:
21:36:ab:56:1d:c3:54:17:45:bd:16:5a:74:95:2e:2b:46:51:
f0:00:9f:fa:eb:c3:c5:08:88:4e:b1:9f:af:3e:ce:2f:bd:da:
a0:e0:a6:96:fc:ab:9a:a8:90:ff:aa:8d:62:c3:2b:84:e1:28:
07:a3:2d:eb:fa:3b:83:f4:6e:8a:46:9c:28:19:f8:c5:fd:55:
ba:24:b1:9f:86:65:b6:04:e6:6e:e8:ed:c6:81:dc:92:c1:74:
b7:00:5f:a0:33:c6:e9:f0:bf:7f:b1:ca:16:87:6b:ff:ed:5e:
0a:f8:c6:aa:69:29:a6:97:9b:ca:18:36:2c:be:fc:95:45:dd:
73:33:6c:5b:44:c9:56:5b:bd:39:b0:36:e7:a5:ad:dd:56:5d:
ed:1f:29:fe:e0:d2:54:ce:35:c3:9b:67:4d:06:4d:53:fe:ab:
db:11:e7:b1:f6:d0:a6:15:d7:57:e8:2a:d3:c6:92:ec:2a:43:
cc:ec:0a:23:d2:f6:47:6e:ad:ab:e3:6d:e9:96:6a:da:dc:7e:
16:3f:c1:b8:7b:2f:84:b6:77:27:7e:c7:06:9f:2e:e4:60:aa:
32:03:21:45:36:01:13:10:b0:ec:9d:dd:71:90:96:8f:58:9b:
af:42:4f:e2
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAcl5MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMTEwNzA3MTU0N1oXDTI1MDEzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxREI5MTYxMTAvBgNVBAUTKEQ1MEQxMTgzNzMwOEFCMUYxNUE3NUYz
NTE2NDNGQjdGQzAxNDg1NEMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC6C90l21IMlxG+XwXA2ndUmT8AEfl+YIE4Chl1tlKV/bxAHxaY7D8jv/C0msC9
hfCJGQA+7xJbBy4oG0ivXaUtKSKoxJEbgIBl7VcqyWTgo+18bNONqyselVTtANJZ
nd4V3QlPgfU3nXwcbmN0JTM4Z18OH52lLs5Crt+1G/ov8Ycpb+iSvN8r/56H85Ky
Una50xfE6wP3xF/tvIBO3xZnzUiLo459lXU0M55cdZGPNV8ykxYw4SCVV6i802B4
e0NN8D03DTHCYsa/Pgpu+3uNTUctwC3tGgRVqIN9goAyBGVpei08YiPiRpmHSchI
Z/iEp00RM11msUp12c5h17nHAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQU1Q0Rg3MI
qx8Vp181FkP7f8AUhUwwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MURCOTE2Lzc0RUMzOTdFN0QzRDExRUU5QUY3MzkxQUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFEQjkxNi83NEVDMzk3RTdEM0QxMUVFOUFGNzM5MUFDNEY5QUUwMi8xUTBSZzNN
SXF4OFZwMTgxRmtQN2Y4QVVoVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAlInMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBtIOGMA8EAgAC
MAkDBwAgAQ3zHkAwDQYJKoZIhvcNAQELBQADggEBAIgUCk/IU1u65oKObwA0KEJy
sSE2q1Ydw1QXRb0WWnSVLitGUfAAn/rrw8UIiE6xn68+zi+92qDgppb8q5qokP+q
jWLDK4ThKAejLev6O4P0bopGnCgZ+MX9VboksZ+GZbYE5m7o7caB3JLBdLcAX6Az
xunwv3+xyhaHa//tXgr4xqppKaaXm8oYNiy+/JVF3XMzbFtEyVZbvTmwNuelrd1W
Xe0fKf7g0lTONcObZ00GTVP+q9sR57H20KYV11foKtPGkuwqQ8zsCiPS9kduravj
bemWatrcfhY/wbh7L4S2dyd+xwafLuRgqjIDIUU2ARMQsOyd3XGQlo9Ym69CT+I=
-----END CERTIFICATE-----
Generated at Thu May 2 11:34:55 2024 by rpki-client on console-fra.rpki-client.org