Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer
File: 1iOjklgIuuhMJxThaoeEBOBgSNE.cer (raw, json)
Hash identifier: hpu6zEq75nQQ1ErVVnKj12RMapmpL/mlAzQnAb6yypw=
Subject key identifier: D6:23:A3:92:58:08:BA:E8:4C:27:14:E1:6A:87:84:04:E0:60:48:D1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020FA6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 26 Sep 2024 12:55:11 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 136428
IP: 103.172.14.0/23
IP: 2001:df7:5b80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135078 (0x20fa6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 26 12:55:11 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A912A1E7/serialNumber=D623A3925808BAE84C2714E16A878404E06048D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:70:e2:64:26:03:32:47:fc:05:2c:d4:9a:05:
7d:d3:aa:28:30:98:f5:26:ab:00:27:86:c8:82:b7:
74:b0:8c:a8:5e:2d:3e:fe:f8:70:5e:ba:b7:dc:6f:
76:bc:59:7b:63:fc:42:8f:f7:a8:ef:d3:96:e7:3f:
a7:8d:4f:cd:56:2a:99:44:c0:d2:4a:78:d3:1e:49:
63:64:b1:8d:62:4a:ca:db:b3:0e:ac:0e:9b:26:19:
6d:ee:08:e6:57:ab:c7:cb:3e:b1:2c:4c:ee:ea:ad:
c8:52:9d:c5:3a:91:93:31:ca:c6:8e:bf:0c:37:53:
f8:7b:0a:7c:ea:60:f1:dd:1e:35:44:95:b9:c4:83:
e4:93:50:ec:0d:95:a4:52:d3:ad:ca:0b:b9:4d:38:
8a:52:89:f0:81:0d:42:48:ce:fb:5f:07:0e:c4:8b:
39:9e:39:6e:54:cb:12:84:0b:81:40:86:18:b8:b4:
05:24:7e:f0:6a:de:aa:19:a9:f2:0f:c5:4d:6f:cd:
c0:07:38:da:be:5d:e2:52:98:94:d1:2f:3b:e7:71:
32:76:a7:c6:7d:f0:9e:4a:fe:6d:9c:f7:b4:86:7b:
2b:93:3a:a0:21:94:c9:be:ec:3a:b3:a2:b0:ff:38:
6c:8c:b2:3e:96:a5:97:9a:e7:2c:c3:f2:4f:95:b5:
e0:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:23:A3:92:58:08:BA:E8:4C:27:14:E1:6A:87:84:04:E0:60:48:D1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136428
sbgp-ipAddrBlock: critical
IPv4:
103.172.14.0/23
IPv6:
2001:df7:5b80::/48
Signature Algorithm: sha256WithRSAEncryption
8f:7e:42:63:c7:61:a2:e4:e6:e3:61:f6:f0:d9:5a:3c:b7:b1:
cd:d3:1b:4c:b7:4b:ff:55:13:27:b8:60:68:c2:5c:83:40:4a:
5b:01:71:0c:96:52:ad:44:41:6f:f8:13:82:89:2b:00:15:2c:
a8:fb:39:5a:d6:8f:de:2a:69:6e:db:85:fb:d2:8c:47:30:b9:
d5:c9:4b:08:c7:d3:6a:b6:7a:ea:3b:46:65:2b:14:a3:1a:57:
a9:9d:3b:8f:0b:7e:ef:c5:00:10:ec:a8:f7:dc:e5:45:9e:1f:
78:15:7d:16:23:be:1e:bf:72:5b:c9:6f:1c:9f:86:76:50:70:
0b:a8:4a:ce:87:98:37:26:81:00:0b:77:6a:65:47:41:92:bf:
25:b4:d7:30:93:c7:57:bf:fe:43:64:5a:48:7b:99:9c:09:24:
b5:e3:c8:09:2d:79:d5:93:26:e4:0d:96:6a:be:84:d1:b6:9b:
75:71:ea:a1:ba:40:06:d9:d5:2f:59:93:e7:24:38:05:2c:63:
f3:83:03:fb:61:8a:30:00:20:bf:cd:29:c6:ad:be:18:bc:d3:
87:ac:b6:37:68:b2:73:d1:4b:0f:e2:34:ae:c6:10:75:17:58:
81:bc:0c:84:81:8f:51:4f:42:b5:7d:50:92:c7:8c:5e:25:87:
51:79:bf:00
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAg+mMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDkyNjEyNTUxMVoXDTI1MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMkExRTcxMTAvBgNVBAUTKEQ2MjNBMzkyNTgwOEJBRTg0QzI3MTRF
MTZBODc4NDA0RTA2MDQ4RDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDJcOJkJgMyR/wFLNSaBX3TqigwmPUmqwAnhsiCt3SwjKheLT7++HBeurfcb3a8
WXtj/EKP96jv05bnP6eNT81WKplEwNJKeNMeSWNksY1iSsrbsw6sDpsmGW3uCOZX
q8fLPrEsTO7qrchSncU6kZMxysaOvww3U/h7CnzqYPHdHjVElbnEg+STUOwNlaRS
063KC7lNOIpSifCBDUJIzvtfBw7EizmeOW5UyxKEC4FAhhi4tAUkfvBq3qoZqfIP
xU1vzcAHONq+XeJSmJTRLzvncTJ2p8Z98J5K/m2c97SGeyuTOqAhlMm+7DqzorD/
OGyMsj6WpZea5yzD8k+VteABAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQU1iOjklgI
uuhMJxThaoeEBOBgSNEwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTJBMUU3LzEwRkFCRUQyMDI1NTExRUM4RUQyNDA4NUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEyQTFFNy8xMEZBQkVEMjAyNTUxMUVDOEVEMjQwODVDNEY5QUUwMi8xaU9qa2xn
SXV1aE1KeFRoYW9lRUJPQmdTTkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhTsMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ6wOMA8EAgAC
MAkDBwAgAQ33W4AwDQYJKoZIhvcNAQELBQADggEBAI9+QmPHYaLk5uNh9vDZWjy3
sc3TG0y3S/9VEye4YGjCXINASlsBcQyWUq1EQW/4E4KJKwAVLKj7OVrWj94qaW7b
hfvSjEcwudXJSwjH02q2euo7RmUrFKMaV6mdO48Lfu/FABDsqPfc5UWeH3gVfRYj
vh6/clvJbxyfhnZQcAuoSs6HmDcmgQALd2plR0GSvyW01zCTx1e//kNkWkh7mZwJ
JLXjyAktedWTJuQNlmq+hNG2m3Vx6qG6QAbZ1S9Zk+ckOAUsY/ODA/thijAAIL/N
Kcatvhi804estjdosnPRSw/iNK7GEHUXWIG8DISBj1FPQrV9UJLHjF4lh1F5vwA=
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:06 2024 by rpki-client on console-fra.rpki-client.org