Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer
File: 3Y89lj-o0fItV_Tfspq9cNJVjjc.cer (raw, json)
Hash identifier: 4mMOJslDJvMZR674ZLoyTM/VqFcw/YzRFvjUa8/feNw=
Subject key identifier: DD:8F:3D:96:3F:A8:D1:F2:2D:57:F4:DF:B2:9A:BD:70:D2:55:8E:37
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FDEA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 03 Jul 2024 23:14:39 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 149985
IP: 103.190.34.0/23
IP: 2001:df0:e340::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130538 (0x1fdea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 3 23:14:39 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91D506C/serialNumber=DD8F3D963FA8D1F22D57F4DFB29ABD70D2558E37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:07:35:ed:91:42:64:73:35:48:91:93:3e:d1:
a8:b4:54:1c:96:b2:b3:46:9a:8c:a3:35:57:d1:00:
3b:04:82:d0:00:a2:81:ad:95:0b:3a:e4:3b:9f:3c:
50:53:e9:e0:10:f9:5f:c8:78:68:e5:0e:7f:7c:fa:
ef:4a:35:86:00:7a:cc:03:e0:b3:20:3b:32:05:be:
44:09:d4:4d:c2:8b:53:b6:37:3b:b2:36:2e:47:fc:
f6:b1:ac:10:5c:10:34:c6:7c:c8:da:17:0f:ff:16:
8d:1f:dc:8a:75:71:7c:ad:08:6f:f5:aa:73:1e:c4:
05:9b:83:32:6e:b7:70:4b:45:6d:f9:53:ea:ea:f3:
cb:f3:41:0b:16:e0:03:86:ac:10:18:91:2f:61:f9:
fc:f1:ed:b5:e8:9a:4f:e7:d7:9d:25:a7:70:4b:bb:
5a:d7:9c:72:83:4a:35:6e:10:07:61:63:16:1d:41:
a1:68:0a:bc:f4:69:77:6c:7e:f6:38:fe:f4:89:79:
9d:89:7f:42:28:31:81:5e:28:c0:f7:f8:a9:f7:68:
80:6d:f6:31:a8:e8:70:5b:25:8b:2f:9f:9a:29:2f:
7e:a1:e5:28:28:80:71:7d:05:fb:54:c9:45:95:de:
91:5a:3a:c3:75:84:ca:93:66:14:ac:83:e3:ad:6f:
5a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:8F:3D:96:3F:A8:D1:F2:2D:57:F4:DF:B2:9A:BD:70:D2:55:8E:37
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149985
sbgp-ipAddrBlock: critical
IPv4:
103.190.34.0/23
IPv6:
2001:df0:e340::/48
Signature Algorithm: sha256WithRSAEncryption
11:e9:f2:94:4a:8a:5e:ce:98:11:32:4f:17:58:dd:6c:c3:a9:
67:e5:58:93:c7:d7:02:10:76:fb:e6:ee:95:07:f5:d1:d4:92:
60:72:7b:c1:3f:e1:f2:f2:a9:d7:9f:d0:09:dc:f3:32:72:ff:
bd:26:53:0e:15:3f:71:7e:61:ab:73:bc:8d:04:a7:24:ee:e8:
77:25:db:ea:a0:0b:59:fe:04:5f:a1:24:1f:d6:56:58:75:5b:
8b:e9:2d:2f:a6:9c:9d:6e:28:15:55:5b:98:a3:53:4c:ab:37:
69:6e:f3:ef:47:30:35:b5:32:78:0f:b3:58:c0:7c:69:99:e4:
52:d1:67:fc:f1:9a:f5:5b:1d:d4:12:50:25:1b:01:68:88:4c:
5f:f2:de:00:dc:7c:a4:a4:05:2e:78:b7:a9:46:dc:e3:61:db:
be:f7:ef:68:e0:35:e2:b0:e0:21:b2:67:a7:d3:7e:fb:68:d0:
21:b5:7b:ea:63:dd:ad:cd:32:43:94:79:c0:8f:cf:da:3e:8b:
36:52:03:23:28:48:84:25:a1:bf:a9:ea:23:73:10:9b:36:4b:
b9:f8:53:bc:7b:96:e1:7f:6b:22:d6:15:a7:a3:84:3f:99:a9:
b6:4c:79:f9:6d:34:79:51:82:93:fc:92:e5:99:99:10:4d:d5:
a3:f4:7a:97
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAf3qMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDcwMzIzMTQzOVoXDTI1MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRDUwNkMxMTAvBgNVBAUTKEREOEYzRDk2M0ZBOEQxRjIyRDU3RjRE
RkIyOUFCRDcwRDI1NThFMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCqBzXtkUJkczVIkZM+0ai0VByWsrNGmoyjNVfRADsEgtAAooGtlQs65DufPFBT
6eAQ+V/IeGjlDn98+u9KNYYAeswD4LMgOzIFvkQJ1E3Ci1O2NzuyNi5H/PaxrBBc
EDTGfMjaFw//Fo0f3Ip1cXytCG/1qnMexAWbgzJut3BLRW35U+rq88vzQQsW4AOG
rBAYkS9h+fzx7bXomk/n150lp3BLu1rXnHKDSjVuEAdhYxYdQaFoCrz0aXdsfvY4
/vSJeZ2Jf0IoMYFeKMD3+Kn3aIBt9jGo6HBbJYsvn5opL36h5SgogHF9BftUyUWV
3pFaOsN1hMqTZhSsg+Otb1pHAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQU3Y89lj+o
0fItV/Tfspq9cNJVjjcwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUQ1MDZDLzQ2NjE4QjFDRjQ2RTExRUM4QzYwNzAwRkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFENTA2Qy80NjYxOEIxQ0Y0NkUxMUVDOEM2MDcwMEZDNEY5QUUwMi8zWTg5bGot
bzBmSXRWX1Rmc3BxOWNOSlZqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAknhMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ74iMA8EAgAC
MAkDBwAgAQ3w40AwDQYJKoZIhvcNAQELBQADggEBABHp8pRKil7OmBEyTxdY3WzD
qWflWJPH1wIQdvvm7pUH9dHUkmBye8E/4fLyqdef0Anc8zJy/70mUw4VP3F+Yatz
vI0EpyTu6Hcl2+qgC1n+BF+hJB/WVlh1W4vpLS+mnJ1uKBVVW5ijU0yrN2lu8+9H
MDW1MngPs1jAfGmZ5FLRZ/zxmvVbHdQSUCUbAWiITF/y3gDcfKSkBS54t6lG3ONh
277372jgNeKw4CGyZ6fTfvto0CG1e+pj3a3NMkOUecCPz9o+izZSAyMoSIQlob+p
6iNzEJs2S7n4U7x7luF/ayLWFaejhD+ZqbZMefltNHlRgpP8kuWZmRBN1aP0epc=
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:07 2024 by rpki-client on console-fra.rpki-client.org