Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QTYGQKxg4soKun0XE3D-BeOJO4.cer
File: 1QTYGQKxg4soKun0XE3D-BeOJO4.cer (raw, json)
Hash identifier: 4EQK845Fe/G+qyEU+MwaicfCjRnPV7xUeRSkLoKOIxY=
Subject key identifier: D5:04:D8:19:02:B1:83:8B:28:2A:E9:F4:5C:4D:C3:F8:17:8E:24:EE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FDBF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913A74D/68A1D55AC72611EA9955E410C4F9AE02/1QTYGQKxg4soKun0XE3D-BeOJO4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913A74D/68A1D55AC72611EA9955E410C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 03 Jul 2024 14:26:43 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 131240
IP: 103.68.107.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130495 (0x1fdbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 3 14:26:43 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A913A74D/serialNumber=D504D81902B1838B282AE9F45C4DC3F8178E24EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e9:0e:47:fe:aa:3b:4c:c0:2b:a7:af:3f:17:
11:27:27:0f:97:ec:18:17:3d:fa:d1:8d:10:25:d7:
30:cb:18:e8:b1:96:b2:55:0c:90:46:92:bc:cc:1e:
ce:51:4f:67:90:48:f2:f1:c2:ce:aa:9a:f9:a6:57:
c9:12:64:e9:13:a5:13:aa:c9:e2:eb:e9:82:3d:ed:
f8:fd:09:d8:fc:3c:e3:36:08:63:1e:ea:15:bb:3d:
95:12:ed:91:fe:85:9f:5f:7e:a7:71:68:b2:f6:33:
cc:e4:fc:03:86:f3:e2:ed:d7:b8:91:cb:dd:0a:fa:
d0:6c:e5:66:78:19:ca:f8:8c:2e:7d:c4:5a:d1:8d:
1d:cc:1e:f6:24:a8:bd:d3:74:a4:c0:ad:e1:dc:c2:
6a:43:8c:85:d7:d8:6c:b6:b0:4c:6a:12:1b:28:d1:
04:7a:c5:fd:75:7f:56:96:a1:78:60:b0:ed:9d:fc:
cd:eb:ba:7d:cc:88:e9:a7:36:3c:f3:57:3f:15:a6:
7c:ee:50:83:de:7b:0d:0c:44:66:b2:03:44:b1:9e:
98:22:8b:1a:f7:89:b4:b9:ad:31:f8:3d:03:68:0f:
c3:74:ff:01:a1:43:db:a2:0d:62:28:6e:79:7b:1a:
d8:ef:7a:0c:a6:55:c1:c4:01:32:ed:86:80:51:56:
f5:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:04:D8:19:02:B1:83:8B:28:2A:E9:F4:5C:4D:C3:F8:17:8E:24:EE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913A74D/68A1D55AC72611EA9955E410C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913A74D/68A1D55AC72611EA9955E410C4F9AE02/1QTYGQKxg4soKun0XE3D-BeOJO4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
131240
sbgp-ipAddrBlock: critical
IPv4:
103.68.107.0/24
Signature Algorithm: sha256WithRSAEncryption
39:4e:64:26:14:67:cc:07:75:e4:e0:42:09:5d:cd:2e:a7:a0:
62:01:d0:41:98:d6:3a:f9:6f:0c:d0:90:f7:4d:87:83:1d:6a:
46:9c:03:f2:3f:e5:5b:b5:d0:d2:63:cd:ce:85:16:6e:d7:7d:
dc:7d:6f:86:78:7a:44:13:8f:7c:8d:13:4a:e1:da:a3:d7:9b:
c1:5b:08:a0:1d:2a:ef:cb:5d:29:9e:7b:d3:f5:13:c4:c3:a0:
3d:57:22:03:f7:df:de:8d:ae:41:e0:f9:2b:61:f0:09:f0:5c:
5b:2c:e1:69:f3:f1:dc:ad:97:38:01:fe:d9:78:5b:4a:07:ea:
8d:3b:8d:8e:ea:19:54:81:22:74:51:dd:a2:da:39:33:04:a6:
6f:aa:f2:f0:75:12:20:ab:d9:be:cf:7c:e1:c5:d7:2b:ad:19:
8c:0b:95:ca:79:72:bc:2a:f7:29:c1:61:3e:e7:e1:c4:7c:75:
6c:d3:7a:92:77:1d:80:e5:c3:ec:91:0c:a4:00:5d:45:4d:9e:
3c:f4:77:76:64:95:9d:dc:5a:69:4b:66:f8:8f:df:13:06:82:
ce:9d:e3:dc:f0:69:85:46:bd:46:67:0a:58:32:0a:20:a5:7e:
dd:d6:c8:ca:d4:83:12:b4:a8:2c:97:9e:a6:15:97:04:87:29:
a3:27:10:bc
-----BEGIN CERTIFICATE-----
MIIGGjCCBQKgAwIBAgIDAf2/MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDcwMzE0MjY0M1oXDTI1MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxM0E3NEQxMTAvBgNVBAUTKEQ1MDREODE5MDJCMTgzOEIyODJBRTlG
NDVDNERDM0Y4MTc4RTI0RUUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCd6Q5H/qo7TMArp68/FxEnJw+X7BgXPfrRjRAl1zDLGOixlrJVDJBGkrzMHs5R
T2eQSPLxws6qmvmmV8kSZOkTpROqyeLr6YI97fj9Cdj8POM2CGMe6hW7PZUS7ZH+
hZ9ffqdxaLL2M8zk/AOG8+Lt17iRy90K+tBs5WZ4Gcr4jC59xFrRjR3MHvYkqL3T
dKTAreHcwmpDjIXX2Gy2sExqEhso0QR6xf11f1aWoXhgsO2d/M3run3MiOmnNjzz
Vz8VpnzuUIPeew0MRGayA0Sxnpgiixr3ibS5rTH4PQNoD8N0/wGhQ9uiDWIobnl7
GtjvegymVcHEATLthoBRVvWXAgMBAAGjggMPMIIDCzAdBgNVHQ4EFgQU1QTYGQKx
g4soKun0XE3D+BeOJO4wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTNBNzRELzY4QTFENTVBQzcyNjExRUE5OTU1RTQxMEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEzQTc0RC82OEExRDU1QUM3MjYxMUVBOTk1NUU0MTBDNEY5QUUwMi8xUVRZR1FL
eGc0c29LdW4wWEUzRC1CZU9KTzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAgCoMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0RrMA0GCSqG
SIb3DQEBCwUAA4IBAQA5TmQmFGfMB3Xk4EIJXc0up6BiAdBBmNY6+W8M0JD3TYeD
HWpGnAPyP+VbtdDSY83OhRZu133cfW+GeHpEE498jRNK4dqj15vBWwigHSrvy10p
nnvT9RPEw6A9VyID99/eja5B4PkrYfAJ8FxbLOFp8/HcrZc4Af7ZeFtKB+qNO42O
6hlUgSJ0Ud2i2jkzBKZvqvLwdRIgq9m+z3zhxdcrrRmMC5XKeXK8KvcpwWE+5+HE
fHVs03qSdx2A5cPskQykAF1FTZ489Hd2ZJWd3FppS2b4j98TBoLOnePc8GmFRr1G
ZwpYMgogpX7d1sjK1IMStKgsl56mFZcEhymjJxC8
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:06 2024 by rpki-client on console-fra.rpki-client.org