Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer
File: 4QZLtgGhMQh2G1RXofcVJMSky84.cer (raw, json)
Hash identifier: Q9e8jv5oZ7ks9Klkz41/9S0Qq13I7IjJd/WPuX+4D5U=
Subject key identifier: E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C493
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 17 Oct 2023 14:36:43 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 136979
IP: 103.101.36.0/22
IP: 2001:df2:8b00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 06:07:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115859 (0x1c493)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 17 14:36:43 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A914B57F/serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:0b:33:cf:d8:3f:ad:76:80:b2:f1:d0:3b:85:
0a:87:e6:50:13:5d:e8:5b:ca:2e:2a:a7:6b:23:62:
90:30:2a:d9:0b:ea:c9:7a:38:ac:54:ec:24:45:cc:
d3:15:6b:45:7d:40:f9:1b:04:8e:30:72:25:90:6d:
21:55:e7:42:cc:79:d0:92:59:7e:6b:b1:6f:4f:a7:
ff:4a:36:03:d1:6c:40:c0:c9:4c:dc:c9:f7:e5:ed:
ed:5c:2d:f3:f6:88:e1:32:fd:02:33:6e:37:b3:28:
f6:a2:76:b5:90:9c:8a:9c:a4:d8:51:f0:a8:cd:04:
27:df:82:fe:11:8f:57:a7:0e:1d:46:68:ea:31:eb:
43:15:2f:c2:cf:5e:91:05:85:e4:f3:b7:ce:be:76:
c1:4b:eb:a1:2e:94:a0:a1:94:94:da:8e:96:0a:79:
4d:d7:5a:0b:85:25:bd:22:45:5f:12:83:f8:34:56:
f6:d0:5a:81:ea:85:ac:7b:ee:ea:a2:f8:1e:ce:b9:
59:25:76:46:df:21:9a:35:57:4b:22:68:a0:f5:e2:
3c:51:e7:c8:31:b8:71:14:5d:a0:74:5e:47:9f:46:
6a:eb:73:d0:6d:99:a5:f6:a8:81:d6:c8:e1:ec:24:
8c:4e:d3:f2:19:9b:4c:2a:a9:d8:32:be:f1:e9:43:
a4:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136979
sbgp-ipAddrBlock: critical
IPv4:
103.101.36.0/22
IPv6:
2001:df2:8b00::/48
Signature Algorithm: sha256WithRSAEncryption
a8:67:33:cd:b2:8c:89:ad:5a:2f:47:f8:44:16:b0:a2:4f:e5:
c0:8e:18:bc:cf:c4:dd:a2:06:00:fb:5e:2e:9d:f0:72:00:e0:
4d:c3:9b:e3:a4:00:ab:74:d2:03:94:2f:95:b7:58:42:0d:ac:
16:17:91:a6:b7:90:0a:ad:71:a7:27:3a:d0:9f:e2:97:46:39:
7c:d0:0c:da:a5:e3:7c:ef:8a:f7:60:81:4c:9a:20:f0:80:c1:
8c:a5:03:68:89:8a:9e:dd:91:41:26:93:a8:46:30:c3:26:b9:
d7:d9:8a:a7:f2:ba:05:ae:57:18:c0:e9:7c:b7:dd:78:8e:d6:
2b:42:a6:29:8f:ef:06:66:85:8e:55:c3:b5:9c:0b:b2:ea:83:
51:6f:8e:14:04:3a:7e:be:6e:d6:23:10:cf:f4:3c:2b:5c:ff:
d0:22:a6:51:b0:13:14:38:ac:4d:3b:1d:63:59:74:ec:1e:21:
c2:34:ee:07:67:bc:ea:4e:6a:13:a6:10:0f:b0:62:77:e8:8e:
30:f6:1d:29:3f:95:1e:3b:0f:73:a7:d0:50:ae:ce:3e:0c:40:
05:74:e3:5c:1f:89:d4:73:fd:9b:81:84:58:4f:db:0e:4b:97:
7c:51:a7:5b:8b:94:19:49:fa:21:85:fa:82:5d:7a:fc:86:8c:
e5:e9:58:4b
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAcSTMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMTAxNzE0MzY0M1oXDTI0MTIzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNEI1N0YxMTAvBgNVBAUTKEUxMDY0QkI2MDFBMTMxMDg3NjFCNTQ1
N0ExRjcxNTI0QzRBNENCQ0UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC7CzPP2D+tdoCy8dA7hQqH5lATXehbyi4qp2sjYpAwKtkL6sl6OKxU7CRFzNMV
a0V9QPkbBI4wciWQbSFV50LMedCSWX5rsW9Pp/9KNgPRbEDAyUzcyffl7e1cLfP2
iOEy/QIzbjezKPaidrWQnIqcpNhR8KjNBCffgv4Rj1enDh1GaOox60MVL8LPXpEF
heTzt86+dsFL66EulKChlJTajpYKeU3XWguFJb0iRV8Sg/g0VvbQWoHqhax77uqi
+B7OuVkldkbfIZo1V0siaKD14jxR58gxuHEUXaB0XkefRmrrc9BtmaX2qIHWyOHs
JIxO0/IZm0wqqdgyvvHpQ6Q1AgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQU4QZLtgGh
MQh2G1RXofcVJMSky84wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTRCNTdGL0IyNDU3RDZBNEU1OTExRUE5RUU5RTIwREM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE0QjU3Ri9CMjQ1N0Q2QTRFNTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdH
aE1RaDJHMVJYb2ZjVkpNU2t5ODQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhcTMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQCZ2UkMA8EAgAC
MAkDBwAgAQ3yiwAwDQYJKoZIhvcNAQELBQADggEBAKhnM82yjImtWi9H+EQWsKJP
5cCOGLzPxN2iBgD7Xi6d8HIA4E3Dm+OkAKt00gOUL5W3WEINrBYXkaa3kAqtcacn
OtCf4pdGOXzQDNql43zvivdggUyaIPCAwYylA2iJip7dkUEmk6hGMMMmudfZiqfy
ugWuVxjA6Xy33XiO1itCpimP7wZmhY5Vw7WcC7Lqg1FvjhQEOn6+btYjEM/0PCtc
/9AiplGwExQ4rE07HWNZdOweIcI07gdnvOpOahOmEA+wYnfojjD2HSk/lR47D3On
0FCuzj4MQAV041wfidRz/ZuBhFhP2w5Ll3xRp1uLlBlJ+iGF+oJdevyGjOXpWEs=
-----END CERTIFICATE-----
Generated at Thu Apr 25 06:38:31 2024 by rpki-client on console-fra.rpki-client.org