Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/49O0eIJzzkWSmwmYOr9ktdRNHwg.cer
File: 49O0eIJzzkWSmwmYOr9ktdRNHwg.cer (raw, json)
Hash identifier: u+Aagqwk/24eLLdoFuEvOxPSF0wpaAFQk/Flz1t46YA=
Subject key identifier: E3:D3:B4:78:82:73:CE:45:92:9B:09:98:3A:BF:64:B5:D4:4D:1F:08
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E247
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 02 Mar 2024 05:54:10 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 138536
IP: 103.132.92.0/22
IP: 180.210.160.0/19
IP: 2404:34c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 01:13:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123463 (0x1e247)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 2 05:54:10 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91FF634/serialNumber=E3D3B4788273CE45929B09983ABF64B5D44D1F08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:69:fa:59:98:4c:8f:f1:d9:89:30:7c:40:cf:
40:ee:72:01:c2:c8:2d:94:b4:86:fa:36:88:ee:e5:
18:f0:4e:9b:9d:4e:9c:29:9e:de:54:8a:58:12:81:
cd:17:f6:70:e3:99:0f:94:8a:67:c0:62:73:e8:2d:
d2:0c:ba:80:f9:65:3b:6c:ef:99:58:fd:0c:86:0f:
7a:06:72:bd:b1:55:44:9e:42:a6:8a:6a:81:cc:6b:
65:f0:3c:8f:58:8f:94:b5:0c:ae:0f:89:60:3b:47:
5d:5f:77:95:d3:d3:51:1b:f0:d4:32:e6:ab:1b:7f:
11:c2:08:4c:b1:cd:2a:05:a6:19:76:43:65:4d:c1:
1f:cd:e4:bb:b0:59:f7:a8:f6:b5:11:60:07:26:91:
12:c2:79:54:3b:c0:69:5f:fd:89:90:12:81:9e:62:
4d:99:17:16:83:6e:ed:33:84:f9:6f:40:6d:6a:a7:
f5:3d:71:0e:83:72:55:fb:01:e2:ef:7e:e8:d0:65:
00:87:c5:37:a2:04:87:82:e8:8d:5d:48:87:ba:c1:
e5:39:f1:6e:be:74:48:1e:2f:fb:65:56:37:5c:89:
12:71:57:ce:13:85:59:6f:27:e8:dc:e1:23:da:b2:
bf:35:e8:96:6c:b7:54:b4:86:32:76:4a:98:e1:89:
97:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:D3:B4:78:82:73:CE:45:92:9B:09:98:3A:BF:64:B5:D4:4D:1F:08
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138536
sbgp-ipAddrBlock: critical
IPv4:
103.132.92.0/22
180.210.160.0/19
IPv6:
2404:34c0::/32
Signature Algorithm: sha256WithRSAEncryption
5f:e4:19:72:da:13:15:e9:3c:6a:6e:d7:a9:73:db:7e:9a:ab:
fc:75:4c:58:b4:3e:a9:25:ed:7f:6f:68:09:29:97:c8:3e:d5:
63:9c:a7:0e:de:57:f6:17:47:ae:fb:be:fe:5b:81:0f:c3:4c:
de:c9:97:a0:23:fd:f8:c3:7b:8d:d2:50:62:0c:b0:b2:30:aa:
d5:82:4c:b1:90:96:4a:81:2e:45:71:7f:24:1e:29:a9:16:8d:
4c:13:48:30:b3:50:98:3c:4c:83:3f:74:d2:a1:bb:be:89:d3:
e3:e5:4c:59:94:8e:1e:78:85:29:62:98:a1:73:2e:63:20:44:
ec:84:51:c0:a0:b3:8d:3a:00:9f:6b:3f:9c:e3:4b:24:ff:b8:
e4:71:94:97:1f:24:2f:fe:d7:4a:ee:64:d4:f5:c4:9c:8a:9b:
c4:c1:1f:29:30:f7:9b:c5:02:14:52:aa:62:ae:0d:a4:77:4f:
d2:d5:d6:ad:b0:5d:bf:58:36:d5:e4:24:2e:12:06:af:5b:b4:
ee:68:dc:6f:a6:0e:7a:e6:1d:4a:52:91:af:91:1e:f8:c5:2e:
2c:93:d4:f8:9c:cf:f7:16:85:90:6f:c7:78:b2:e8:48:85:86:
6f:5c:ca:7d:3e:4a:ba:14:cc:e9:b5:d1:b2:b8:e6:a3:b3:6c:
e6:b0:49:5d
-----BEGIN CERTIFICATE-----
MIIGLzCCBRegAwIBAgIDAeJHMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDMwMjA1NTQxMFoXDTI1MDUwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRkY2MzQxMTAvBgNVBAUTKEUzRDNCNDc4ODI3M0NFNDU5MjlCMDk5
ODNBQkY2NEI1RDQ0RDFGMDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCSafpZmEyP8dmJMHxAz0DucgHCyC2UtIb6Noju5RjwTpudTpwpnt5UilgSgc0X
9nDjmQ+UimfAYnPoLdIMuoD5ZTts75lY/QyGD3oGcr2xVUSeQqaKaoHMa2XwPI9Y
j5S1DK4PiWA7R11fd5XT01Eb8NQy5qsbfxHCCEyxzSoFphl2Q2VNwR/N5LuwWfeo
9rURYAcmkRLCeVQ7wGlf/YmQEoGeYk2ZFxaDbu0zhPlvQG1qp/U9cQ6DclX7AeLv
fujQZQCHxTeiBIeC6I1dSIe6weU58W6+dEgeL/tlVjdciRJxV84ThVlvJ+jc4SPa
sr816JZst1S0hjJ2SpjhiZfPAgMBAAGjggMkMIIDIDAdBgNVHQ4EFgQU49O0eIJz
zkWSmwmYOr9ktdRNHwgwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUZGNjM0LzEzMjdBNzNFMTcyOTExRTk4REQxOEUyM0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFGRjYzNC8xMzI3QTczRTE3MjkxMUU5OEREMThFMjNDNEY5QUUwMi80OU8wZUlK
enprV1Ntd21ZT3I5a3RkUk5Id2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAh0oMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCZ4RcAwQFtNKg
MA0EAgACMAcDBQAkBDTAMA0GCSqGSIb3DQEBCwUAA4IBAQBf5Bly2hMV6Txqbtep
c9t+mqv8dUxYtD6pJe1/b2gJKZfIPtVjnKcO3lf2F0eu+77+W4EPw0zeyZegI/34
w3uN0lBiDLCyMKrVgkyxkJZKgS5FcX8kHimpFo1ME0gws1CYPEyDP3TSobu+idPj
5UxZlI4eeIUpYpihcy5jIETshFHAoLONOgCfaz+c40sk/7jkcZSXHyQv/tdK7mTU
9cScipvEwR8pMPebxQIUUqpirg2kd0/S1datsF2/WDbV5CQuEgavW7TuaNxvpg56
5h1KUpGvkR74xS4sk9T4nM/3FoWQb8d4suhIhYZvXMp9Pkq6FMzptdGyuOajs2zm
sEld
-----END CERTIFICATE-----
Generated at Wed Nov 27 02:04:38 2024 by rpki-client on console-ams.rpki-client.org