Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer
File: 2CKi28iCNPgPcORngrLU2c0_m9w.cer (raw, json)
Hash identifier: 37Sym+SIa0Jb7TkInE6LjrPQwESjQkH+GWIPre8uc2k=
Subject key identifier: D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CE95
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 01 Dec 2023 04:49:50 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 138021
IP: 103.120.20.0/22
IP: 2403:4dc0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 13:35:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118421 (0x1ce95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 1 04:49:50 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A9176B32/serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:31:40:c1:c9:ed:e8:5b:69:13:3c:2b:00:97:
16:8a:c7:34:d1:9d:03:b1:91:84:b4:f8:70:9e:aa:
6a:42:60:9f:88:21:40:5a:6f:b0:54:37:c4:ec:93:
c0:d8:eb:e0:03:3c:bf:84:9a:af:6c:77:4c:f9:0e:
98:b4:72:6f:ca:43:92:f8:b0:a4:69:05:ad:c3:46:
f2:3e:a4:b5:03:76:15:af:d7:5f:cb:cb:2d:c0:28:
a6:ee:a3:f6:34:32:dc:1c:ea:30:d3:66:95:f6:74:
68:77:3e:38:27:98:ce:28:2f:65:88:50:15:50:f8:
29:bb:7a:b2:c5:35:df:e5:b9:61:98:16:43:00:40:
b2:8a:0b:7e:33:c0:34:92:21:1c:8a:c6:fa:07:3f:
27:b2:f2:33:09:0d:67:07:9f:32:14:69:7e:3a:bb:
3f:bb:33:b5:60:bc:7f:16:03:54:79:18:67:60:6e:
f3:61:0a:56:a5:05:27:06:e2:46:df:4b:a6:16:94:
04:9a:46:54:88:85:3b:04:d6:04:79:0a:dc:f9:47:
c7:cd:a2:bf:fe:20:34:f9:04:14:3c:7d:6a:96:46:
c9:21:b8:07:81:ef:f4:77:00:33:0b:5b:39:d4:9a:
c2:fb:c9:f0:96:f6:c7:83:d0:51:fc:10:7e:c1:ef:
c7:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138021
sbgp-ipAddrBlock: critical
IPv4:
103.120.20.0/22
IPv6:
2403:4dc0::/32
Signature Algorithm: sha256WithRSAEncryption
87:31:38:4a:7f:a8:25:0f:8f:a1:06:9f:1e:7f:fa:85:24:a6:
ad:5f:e2:17:65:40:11:a5:f1:45:f0:54:0f:8d:8e:3d:21:e6:
8a:8f:0b:c9:fc:37:80:c7:06:dd:cf:06:cd:79:01:25:5b:bf:
9d:d5:10:32:01:95:89:dc:42:07:c3:73:cf:ae:bb:6c:2d:cd:
00:24:e7:7f:b4:4a:ba:1d:5f:cd:30:bd:43:f2:4b:84:82:58:
32:0a:42:bb:ee:2c:54:5d:28:df:c9:3c:69:49:5f:f6:4e:a4:
02:e3:c2:7f:93:ee:b8:2f:f4:0e:d7:7f:73:f5:a0:43:2c:7b:
70:bf:b8:04:80:8e:05:83:92:65:c4:19:14:aa:0d:95:da:a7:
19:96:60:fd:0d:b7:d5:08:6a:cb:ed:ed:eb:28:cc:fe:f3:0c:
b5:cb:cc:57:83:7d:7f:7e:ad:ba:97:01:84:ae:e4:6d:3b:b6:
0a:af:9b:ae:58:d7:d6:9e:3f:56:d2:a0:be:eb:93:f3:ac:b8:
66:1b:62:a9:7b:87:a3:ae:03:3a:09:49:1e:ae:74:0c:bc:73:
9a:ed:0a:d8:85:4e:1c:a6:09:6e:cd:31:fb:f5:2d:f2:e2:1f:
ea:d4:be:94:37:37:9f:20:91:60:89:aa:d8:93:76:23:1e:16:
04:75:e1:ee
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAc6VMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMTIwMTA0NDk1MFoXDTI0MTAzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNzZCMzIxMTAvBgNVBAUTKEQ4MjJBMkRCQzg4MjM0RjgwRjcwRTQ2
NzgyQjJENEQ5Q0QzRjlCREMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDSMUDBye3oW2kTPCsAlxaKxzTRnQOxkYS0+HCeqmpCYJ+IIUBab7BUN8Tsk8DY
6+ADPL+Emq9sd0z5Dpi0cm/KQ5L4sKRpBa3DRvI+pLUDdhWv11/Lyy3AKKbuo/Y0
Mtwc6jDTZpX2dGh3PjgnmM4oL2WIUBVQ+Cm7erLFNd/luWGYFkMAQLKKC34zwDSS
IRyKxvoHPyey8jMJDWcHnzIUaX46uz+7M7VgvH8WA1R5GGdgbvNhClalBScG4kbf
S6YWlASaRlSIhTsE1gR5Ctz5R8fNor/+IDT5BBQ8fWqWRskhuAeB7/R3ADMLWznU
msL7yfCW9seD0FH8EH7B78fzAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQU2CKi28iC
NPgPcORngrLU2c0/m9wwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTc2QjMyLzczODc5NjE4MkYzODExRUQ5RTdFMDI3REM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE3NkIzMi83Mzg3OTYxODJGMzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhp
Q05QZ1BjT1JuZ3JMVTJjMF9tOXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhslMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZ3gUMA0EAgAC
MAcDBQAkA03AMA0GCSqGSIb3DQEBCwUAA4IBAQCHMThKf6glD4+hBp8ef/qFJKat
X+IXZUARpfFF8FQPjY49IeaKjwvJ/DeAxwbdzwbNeQElW7+d1RAyAZWJ3EIHw3PP
rrtsLc0AJOd/tEq6HV/NML1D8kuEglgyCkK77ixUXSjfyTxpSV/2TqQC48J/k+64
L/QO139z9aBDLHtwv7gEgI4Fg5JlxBkUqg2V2qcZlmD9DbfVCGrL7e3rKMz+8wy1
y8xXg31/fq26lwGEruRtO7YKr5uuWNfWnj9W0qC+65PzrLhmG2Kpe4ejrgM6CUke
rnQMvHOa7QrYhU4cpgluzTH79S3y4h/q1L6UNzefIJFgiarYk3YjHhYEdeHu
-----END CERTIFICATE-----
Generated at Thu Apr 25 14:22:36 2024 by rpki-client on console-fra.rpki-client.org