Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.cer
File: 4k0JVBBixgi-Nj_2Gcy4RE3cPC8.cer (raw, json)
Hash identifier: XLSQVdlSnmpBaF3xRZbWFKjSO4ORAuAg68lH/Ex3Sh0=
Subject key identifier: E2:4D:09:54:10:62:C6:08:BE:36:3F:F6:19:CC:B8:44:4D:DC:3C:2F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 019A72
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 20 Apr 2023 22:19:05 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 147011
IP: 103.172.250.0/23
IP: 2001:df7:7f80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 16:32:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105074 (0x19a72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 20 22:19:05 2023 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91471DA/serialNumber=E24D09541062C608BE363FF619CCB8444DDC3C2F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c7:b9:52:4b:af:a5:34:96:b1:55:f4:7e:9e:
4a:6f:80:ba:8d:0b:9a:40:b9:8a:3f:53:19:9a:73:
32:c6:72:15:13:3e:3e:d3:82:dd:2c:60:67:c7:2d:
b6:a2:5a:44:c9:66:f3:37:98:87:03:19:3b:7d:99:
0f:72:3d:a7:21:f0:7d:06:49:ba:dc:d5:37:df:e8:
2a:69:66:1f:69:df:62:d2:a5:a6:cb:3c:44:c2:d3:
48:fa:17:bf:dd:fb:81:ed:a1:d6:12:e6:c1:a6:50:
ae:0f:03:2b:0d:3b:c3:21:c7:79:0f:08:b8:37:20:
1b:aa:fc:d3:3a:22:20:8d:fb:d6:63:6e:5c:04:04:
68:f4:99:b7:13:9e:e9:83:86:ed:dd:83:94:f3:d2:
aa:c1:f1:19:43:90:37:b3:f3:3a:c9:ef:29:75:56:
6a:2b:be:26:e5:88:53:cc:20:54:3a:b0:f0:c8:ef:
1f:be:3e:3f:75:f2:18:4d:bd:3c:67:12:7f:83:51:
46:a5:de:19:fe:d9:c1:c5:05:65:b7:aa:0b:43:b4:
fb:f5:62:22:93:bb:f4:f1:19:e7:a8:52:a9:af:de:
a2:0d:1f:8a:eb:3b:b7:68:5b:d1:19:b5:55:05:0b:
1a:76:07:e8:6a:40:f3:1b:30:84:ed:2d:0c:13:c7:
14:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:4D:09:54:10:62:C6:08:BE:36:3F:F6:19:CC:B8:44:4D:DC:3C:2F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
147011
sbgp-ipAddrBlock: critical
IPv4:
103.172.250.0/23
IPv6:
2001:df7:7f80::/48
Signature Algorithm: sha256WithRSAEncryption
1d:dc:1f:66:e9:82:60:2e:79:d3:db:77:ca:3a:19:73:34:b5:
04:fd:14:ed:2b:cc:ea:de:60:7d:f8:66:04:3f:1d:0b:86:c0:
4e:15:30:19:20:eb:31:c3:3c:44:53:a3:9c:22:ba:a7:25:db:
1f:ce:69:cd:e0:7c:45:8a:3b:a2:63:c4:bc:d6:28:85:62:8f:
3d:1a:b5:33:5b:c2:61:e0:d2:7f:ef:37:46:8a:ae:44:d7:11:
ce:bc:ff:7d:f1:32:c2:2d:58:16:b6:db:19:11:b1:f1:e9:73:
da:88:dd:0a:52:45:2d:09:5c:41:4d:5d:25:b6:68:6b:11:ac:
9f:6a:23:4a:c5:ff:a2:ed:ca:15:d2:23:92:eb:1a:9c:45:f1:
c0:cb:9d:da:99:39:0d:68:b0:e4:0d:9f:f3:1e:62:65:af:f3:
30:40:9a:3f:d8:9c:2d:78:ff:03:6c:5e:31:9e:97:7d:e9:ea:
f7:ea:15:b2:af:f0:75:db:c8:d7:64:f7:28:23:c5:f9:88:cc:
29:77:b4:5f:70:92:16:51:f6:6d:8a:d7:ab:13:db:e9:29:81:
e7:ae:3f:bd:c1:0b:c9:fa:26:d0:fa:21:05:5b:81:77:4e:8d:
e4:5e:40:f2:6e:18:d4:91:64:e5:2d:e2:4a:9c:8f:2c:a3:58:
1c:0e:02:6f
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAZpyMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDQyMDIyMTkwNVoXDTI1MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNDcxREExMTAvBgNVBAUTKEUyNEQwOTU0MTA2MkM2MDhCRTM2M0ZG
NjE5Q0NCODQ0NEREQzNDMkYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCrx7lSS6+lNJaxVfR+nkpvgLqNC5pAuYo/UxmaczLGchUTPj7Tgt0sYGfHLbai
WkTJZvM3mIcDGTt9mQ9yPach8H0GSbrc1Tff6CppZh9p32LSpabLPETC00j6F7/d
+4HtodYS5sGmUK4PAysNO8Mhx3kPCLg3IBuq/NM6IiCN+9ZjblwEBGj0mbcTnumD
hu3dg5Tz0qrB8RlDkDez8zrJ7yl1VmorvibliFPMIFQ6sPDI7x++Pj918hhNvTxn
En+DUUal3hn+2cHFBWW3qgtDtPv1YiKTu/TxGeeoUqmv3qINH4rrO7doW9EZtVUF
Cxp2B+hqQPMbMITtLQwTxxSbAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQU4k0JVBBi
xgi+Nj/2Gcy4RE3cPC8wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTQ3MURBLzUxRDU3OTQ4MEZFMjExRUNBNEREQzkwOUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE0NzFEQS81MUQ1Nzk0ODBGRTIxMUVDQTREREM5MDlDNEY5QUUwMi80azBKVkJC
aXhnaS1Oal8yR2N5NFJFM2NQQzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAj5DMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ6z6MA8EAgAC
MAkDBwAgAQ33f4AwDQYJKoZIhvcNAQELBQADggEBAB3cH2bpgmAuedPbd8o6GXM0
tQT9FO0rzOreYH34ZgQ/HQuGwE4VMBkg6zHDPERTo5wiuqcl2x/Oac3gfEWKO6Jj
xLzWKIVijz0atTNbwmHg0n/vN0aKrkTXEc68/33xMsItWBa22xkRsfHpc9qI3QpS
RS0JXEFNXSW2aGsRrJ9qI0rF/6LtyhXSI5LrGpxF8cDLndqZOQ1osOQNn/MeYmWv
8zBAmj/YnC14/wNsXjGel33p6vfqFbKv8HXbyNdk9ygjxfmIzCl3tF9wkhZR9m2K
16sT2+kpgeeuP73BC8n6JtD6IQVbgXdOjeReQPJuGNSRZOUt4kqcjyyjWBwOAm8=
-----END CERTIFICATE-----
Generated at Fri Apr 19 17:12:08 2024 by rpki-client on console-fra.rpki-client.org