Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4mhztF-I0fXYg8F-TM9wokUWIUI.cer
File: 4mhztF-I0fXYg8F-TM9wokUWIUI.cer (raw, json)
Hash identifier: vkPKjTrwoP8jIgsOVTZ5HZpkKWPOQv0XB+fjCeGJKeI=
Subject key identifier: E2:68:73:B4:5F:88:D1:F5:D8:83:C1:7E:4C:CF:70:A2:45:16:21:42
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01AE03
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 03 Jul 2023 23:38:13 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 140843
IP: 103.152.102.0/23
IP: 2001:df4:980::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110083 (0x1ae03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 3 23:38:13 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91F4C6B/serialNumber=E26873B45F88D1F5D883C17E4CCF70A245162142
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:81:b7:38:c1:f1:be:1a:91:f9:1f:6b:44:97:
47:23:44:92:0c:f8:1a:bb:ca:a1:99:91:76:bb:b4:
5f:d9:be:68:f6:0d:d3:d4:bc:9f:5a:58:98:b9:80:
b1:82:a0:b7:77:39:b1:bb:47:90:2d:eb:13:ec:9e:
14:c2:02:db:02:33:57:2c:32:b5:29:88:29:38:d0:
69:10:43:83:e8:ca:2e:b8:ea:f7:2c:1a:98:a6:0b:
5f:02:6b:84:b9:8f:6e:34:d0:c8:d5:68:6f:86:ec:
e7:b2:e7:31:4b:81:49:38:cd:f6:54:0a:f8:c4:66:
eb:4d:78:65:ce:8b:f5:b9:89:9c:16:9a:5e:32:a4:
3c:2e:2d:4d:4b:14:4e:b2:d7:cf:bd:5f:24:24:02:
9c:9d:0f:c9:27:97:f8:7d:92:bd:28:aa:13:05:d8:
90:35:2d:c7:10:86:2c:3d:ec:62:d2:6f:c6:18:c7:
3b:71:9d:95:a0:f3:7b:6e:b7:f8:3a:9d:9a:87:8b:
4a:3e:4c:04:ed:8c:5d:c9:ad:62:6a:18:8f:49:46:
d2:d4:4a:a7:32:7a:5f:d2:0f:64:5f:7a:e8:42:02:
41:af:1e:06:f3:19:f7:1f:e4:10:d7:42:03:54:1d:
22:a8:a7:0a:64:c0:c6:88:6e:bd:a3:5a:ce:6c:b4:
0f:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:68:73:B4:5F:88:D1:F5:D8:83:C1:7E:4C:CF:70:A2:45:16:21:42
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140843
sbgp-ipAddrBlock: critical
IPv4:
103.152.102.0/23
IPv6:
2001:df4:980::/48
Signature Algorithm: sha256WithRSAEncryption
a7:33:ae:4b:5f:fa:7b:f2:4a:19:a5:72:bc:38:18:17:0d:3d:
68:bc:d1:e1:b4:2f:53:e4:85:6c:13:48:37:05:9e:4a:60:4e:
0c:ba:6b:1d:2d:21:04:9f:f0:40:42:09:f1:8b:a3:c3:2e:8a:
b3:15:84:6e:d6:54:f2:a5:9f:61:5e:9b:43:14:aa:3a:10:61:
e7:1c:4f:ea:68:4a:bd:2b:ee:47:83:14:0b:ca:46:86:08:9f:
6b:75:a5:19:00:99:5b:86:42:ad:91:a7:7c:ee:70:25:d9:49:
5a:c4:73:23:84:45:54:6a:d5:3b:4c:c5:24:d8:55:3c:e6:da:
43:cd:44:b4:63:f5:b2:84:f1:bb:ca:cc:ff:c0:ed:17:92:64:
25:b4:75:0f:63:a3:43:8a:91:c4:d9:93:6f:10:1b:53:a0:3c:
29:8c:bb:63:17:39:28:3b:6d:d0:f0:85:84:a4:05:65:e7:4b:
fa:15:08:ed:74:e8:84:d5:35:a3:5b:67:c7:c0:cf:bf:1c:35:
75:a4:a9:53:97:65:ae:0c:d9:3d:d2:6c:0d:02:6c:84:33:08:
92:43:7a:3d:0d:c1:35:30:e1:7a:b2:48:44:fd:61:16:c5:c3:
fe:d5:9d:15:9e:33:a5:7b:a5:66:01:25:30:b3:50:07:bc:4f:
e6:d1:0c:6c
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAa4DMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDcwMzIzMzgxM1oXDTI0MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRjRDNkIxMTAvBgNVBAUTKEUyNjg3M0I0NUY4OEQxRjVEODgzQzE3
RTRDQ0Y3MEEyNDUxNjIxNDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDggbc4wfG+GpH5H2tEl0cjRJIM+Bq7yqGZkXa7tF/Zvmj2DdPUvJ9aWJi5gLGC
oLd3ObG7R5At6xPsnhTCAtsCM1csMrUpiCk40GkQQ4Poyi646vcsGpimC18Ca4S5
j2400MjVaG+G7Oey5zFLgUk4zfZUCvjEZutNeGXOi/W5iZwWml4ypDwuLU1LFE6y
18+9XyQkApydD8knl/h9kr0oqhMF2JA1LccQhiw97GLSb8YYxztxnZWg83tut/g6
nZqHi0o+TATtjF3JrWJqGI9JRtLUSqcyel/SD2RfeuhCAkGvHgbzGfcf5BDXQgNU
HSKopwpkwMaIbr2jWs5stA8tAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQU4mhztF+I
0fXYg8F+TM9wokUWIUIwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUY0QzZCLzI3OEFBM0U0QjUxRjExRUE5RkU4QkQ1OEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFGNEM2Qi8yNzhBQTNFNEI1MUYxMUVBOUZFOEJENThDNEY5QUUwMi80bWh6dEYt
STBmWFlnOEYtVE05d29rVVdJVUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAiYrMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ5hmMA8EAgAC
MAkDBwAgAQ30CYAwDQYJKoZIhvcNAQELBQADggEBAKczrktf+nvyShmlcrw4GBcN
PWi80eG0L1PkhWwTSDcFnkpgTgy6ax0tIQSf8EBCCfGLo8MuirMVhG7WVPKln2Fe
m0MUqjoQYeccT+poSr0r7keDFAvKRoYIn2t1pRkAmVuGQq2Rp3zucCXZSVrEcyOE
RVRq1TtMxSTYVTzm2kPNRLRj9bKE8bvKzP/A7ReSZCW0dQ9jo0OKkcTZk28QG1Og
PCmMu2MXOSg7bdDwhYSkBWXnS/oVCO106ITVNaNbZ8fAz78cNXWkqVOXZa4M2T3S
bA0CbIQzCJJDej0NwTUw4XqySET9YRbFw/7VnRWeM6V7pWYBJTCzUAe8T+bRDGw=
-----END CERTIFICATE-----
Generated at Sat Apr 20 05:36:41 2024 by rpki-client on console-ams.rpki-client.org