Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1cBKCsLVKt_nBVZHjcsOHYHtENo.cer
File: 1cBKCsLVKt_nBVZHjcsOHYHtENo.cer (raw, json)
Hash identifier: O8JanbfToZEuCYFUk+MwToEAtmO2ZT/SoO8dIlJj7O4=
Subject key identifier: D5:C0:4A:0A:C2:D5:2A:DF:E7:05:56:47:8D:CB:0E:1D:81:ED:10:DA
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F03B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91284EC/EBF601FC48CF11ECA666B03EC4F9AE02/1cBKCsLVKt_nBVZHjcsOHYHtENo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91284EC/EBF601FC48CF11ECA666B03EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 07 May 2024 02:30:56 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 58909
IP: 103.24.200.0/22
IP: 124.150.136.0/24
IP: 203.215.49.0/24
IP: 2400:c6c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 11:16:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127035 (0x1f03b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 7 02:30:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91284EC/serialNumber=D5C04A0AC2D52ADFE70556478DCB0E1D81ED10DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e7:84:78:7b:01:65:f1:8a:a2:46:57:a7:8c:
8d:ca:c8:32:55:f9:6d:49:20:95:31:9f:38:f2:b4:
28:bc:46:3b:f2:ee:19:57:fc:14:75:4b:d3:f8:b6:
da:8e:04:f8:9f:20:64:54:34:c5:6a:71:d8:2e:d0:
7f:8c:24:52:1f:54:cd:a0:ee:d4:ea:4a:2d:85:f7:
0e:4c:5f:d2:28:72:b4:b5:f7:8f:76:a6:f1:ce:e5:
b0:1d:71:35:3e:3f:34:4a:a2:e0:6f:7c:55:6d:ea:
bf:8b:64:dc:fa:ba:9d:16:31:66:8f:ea:7f:62:5a:
9f:ba:65:3a:29:02:04:1d:b0:8c:d8:79:be:f2:d1:
00:b7:8b:81:67:91:f4:4e:09:fd:f5:f8:a8:8a:bc:
59:58:a8:dc:bb:da:e8:29:ad:96:6c:19:74:1f:37:
f1:93:ff:ee:c9:f7:84:5e:c2:1b:30:9f:72:ed:f9:
c3:7d:55:d8:1e:3f:ef:14:8a:74:dc:f8:7d:d8:84:
40:f0:a1:67:a8:73:c1:ab:f1:e6:0e:be:e2:45:78:
af:31:d7:ca:b4:b3:44:47:89:7d:18:62:d4:e1:45:
a6:45:9b:46:ef:02:61:a3:f9:f9:62:71:f6:34:23:
67:93:c8:0d:fe:85:54:d9:b8:4a:dc:e0:16:2e:c4:
47:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:C0:4A:0A:C2:D5:2A:DF:E7:05:56:47:8D:CB:0E:1D:81:ED:10:DA
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91284EC/EBF601FC48CF11ECA666B03EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91284EC/EBF601FC48CF11ECA666B03EC4F9AE02/1cBKCsLVKt_nBVZHjcsOHYHtENo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58909
sbgp-ipAddrBlock: critical
IPv4:
103.24.200.0/22
124.150.136.0/24
203.215.49.0/24
IPv6:
2400:c6c0::/32
Signature Algorithm: sha256WithRSAEncryption
78:1c:f9:31:65:be:06:ac:37:ae:8f:e0:ae:34:3a:d3:0f:99:
4d:4e:97:6c:b9:ca:22:8f:f1:88:0d:c8:bf:c1:6a:6c:78:74:
ad:51:d9:a0:3c:4a:15:2b:62:45:30:6b:53:02:b7:81:ad:d0:
79:3e:32:4f:09:21:24:5b:8e:9f:55:72:eb:58:18:7b:f4:07:
44:10:fc:eb:fe:f7:77:f4:de:1e:a0:f0:2e:62:bf:4d:72:82:
50:1e:9e:7d:2a:41:d8:aa:4d:9b:6b:a9:19:6d:e0:e7:10:ce:
b5:58:92:42:ad:bf:5e:3f:46:3c:80:23:5a:c9:86:dc:c8:a8:
32:20:e5:34:78:ac:06:b4:4a:e3:2b:dc:98:5d:7e:5c:fc:ae:
ec:0e:eb:aa:2e:77:75:b9:64:f6:a8:50:d8:8d:14:35:5e:9c:
e4:da:b2:31:78:ad:11:5e:9e:bb:26:87:6c:e0:5f:fc:f4:9e:
88:b5:46:c5:a7:84:57:d4:2f:0d:ae:b6:bb:cf:04:c4:d3:0a:
9a:f5:84:ef:6a:53:89:87:3d:0e:27:51:93:ca:87:e6:f1:de:
4f:de:a4:5f:e4:a5:25:42:19:cb:8f:c3:18:1e:69:59:ac:7f:
53:81:14:52:a6:bd:79:fb:c4:c4:4d:f7:49:d3:09:55:2e:16:
f1:11:2d:1a
-----BEGIN CERTIFICATE-----
MIIGNTCCBR2gAwIBAgIDAfA7MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDUwNzAyMzA1NloXDTI1MDcwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMjg0RUMxMTAvBgNVBAUTKEQ1QzA0QTBBQzJENTJBREZFNzA1NTY0
NzhEQ0IwRTFEODFFRDEwREEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCg54R4ewFl8YqiRlenjI3KyDJV+W1JIJUxnzjytCi8Rjvy7hlX/BR1S9P4ttqO
BPifIGRUNMVqcdgu0H+MJFIfVM2g7tTqSi2F9w5MX9IocrS19492pvHO5bAdcTU+
PzRKouBvfFVt6r+LZNz6up0WMWaP6n9iWp+6ZTopAgQdsIzYeb7y0QC3i4FnkfRO
Cf31+KiKvFlYqNy72ugprZZsGXQfN/GT/+7J94Rewhswn3Lt+cN9VdgeP+8UinTc
+H3YhEDwoWeoc8Gr8eYOvuJFeK8x18q0s0RHiX0YYtThRaZFm0bvAmGj+flicfY0
I2eTyA3+hVTZuErc4BYuxEcDAgMBAAGjggMqMIIDJjAdBgNVHQ4EFgQU1cBKCsLV
Kt/nBVZHjcsOHYHtENowHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTI4NEVDL0VCRjYwMUZDNDhDRjExRUNBNjY2QjAzRUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEyODRFQy9FQkY2MDFGQzQ4Q0YxMUVDQTY2NkIwM0VDNEY5QUUwMi8xY0JLQ3NM
Vkt0X25CVlpIamNzT0hZSHRFTm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAOYdMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQCZxjIAwQAfJaI
AwQAy9cxMA0EAgACMAcDBQAkAMbAMA0GCSqGSIb3DQEBCwUAA4IBAQB4HPkxZb4G
rDeuj+CuNDrTD5lNTpdsucoij/GIDci/wWpseHStUdmgPEoVK2JFMGtTAreBrdB5
PjJPCSEkW46fVXLrWBh79AdEEPzr/vd39N4eoPAuYr9NcoJQHp59KkHYqk2ba6kZ
beDnEM61WJJCrb9eP0Y8gCNayYbcyKgyIOU0eKwGtErjK9yYXX5c/K7sDuuqLnd1
uWT2qFDYjRQ1Xpzk2rIxeK0RXp67Jods4F/89J6ItUbFp4RX1C8Nrra7zwTE0wqa
9YTvalOJhz0OJ1GTyofm8d5P3qRf5KUlQhnLj8MYHmlZrH9TgRRSpr15+8TETfdJ
0wlVLhbxES0a
-----END CERTIFICATE-----
Generated at Sat Nov 23 12:37:09 2024 by rpki-client on console-ams.rpki-client.org