Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CK_AmFA0gPv1r_eruJoqosEZtU.cer
File: 5CK_AmFA0gPv1r_eruJoqosEZtU.cer (raw, json)
Hash identifier: be7UJk71GeKQ4TwzbuaeOtPyG+GELplo+F8MfWyjaik=
Subject key identifier: E4:22:BF:02:61:40:D2:03:EF:D6:BF:DE:AE:E2:68:AA:8B:04:66:D5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B4AA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 03 Aug 2023 03:02:09 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 149868
IP: 103.189.218.0/23
IP: 2001:df0:db40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111786 (0x1b4aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 3 03:02:09 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91C3174/serialNumber=E422BF026140D203EFD6BFDEAEE268AA8B0466D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7b:b1:52:8f:97:bf:b4:bf:84:4a:ee:66:08:
14:87:97:3e:89:0b:e4:a0:1b:fd:a4:8a:bc:e2:ca:
6f:14:6b:32:f9:eb:6f:ba:ae:44:2f:5d:84:e0:52:
31:4a:fc:84:a3:9f:74:1a:f2:6a:a3:10:8a:e1:c7:
37:ca:0a:fc:0f:58:4f:1f:25:f5:99:f9:fa:5e:d4:
6b:99:ba:87:91:92:a1:d6:03:6f:c7:6f:24:21:11:
5b:68:e3:3a:d8:0b:24:99:dc:a3:05:fc:f1:93:d7:
69:a1:cf:19:2d:16:13:56:91:2d:bc:c7:fb:56:8d:
0b:fe:d6:19:6e:af:18:08:1b:92:af:48:c8:b0:25:
a7:56:b6:85:d4:b4:aa:0b:0a:ac:74:b7:88:a4:e2:
68:33:72:cd:74:10:08:7a:79:6c:e9:39:b7:08:ed:
5d:4e:c7:ba:2f:f8:ab:34:a2:e0:a3:96:2e:fe:e8:
12:8e:94:5b:0b:5e:70:73:4d:4e:be:17:ec:d8:c2:
3f:65:37:a3:41:23:8a:54:cb:23:d1:f6:8e:bd:13:
84:2a:25:e1:ef:32:f1:56:44:96:32:c2:09:19:15:
a9:76:3c:15:f2:77:f4:99:f1:34:a0:4b:c7:4c:73:
c3:83:c8:b6:ba:80:68:88:ef:c7:ab:f0:2c:08:17:
cc:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:22:BF:02:61:40:D2:03:EF:D6:BF:DE:AE:E2:68:AA:8B:04:66:D5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149868
sbgp-ipAddrBlock: critical
IPv4:
103.189.218.0/23
IPv6:
2001:df0:db40::/48
Signature Algorithm: sha256WithRSAEncryption
41:0c:7a:63:8d:de:c0:83:37:25:74:17:6f:49:59:8c:07:ea:
b2:6c:83:bb:2c:f3:85:79:82:f4:7f:12:b7:80:0c:b8:6e:5f:
5f:29:85:0b:0a:e4:3f:8a:8a:c6:b4:6c:aa:fc:83:a2:de:78:
1e:3a:e8:5c:e9:68:c3:e5:81:1d:d5:75:1b:82:30:ae:9a:8d:
b3:84:b4:08:37:35:82:79:6f:98:dd:14:b0:8b:c2:8c:6d:46:
a8:f5:2f:b7:c7:15:9c:58:7f:70:63:e2:c4:f8:db:a7:60:c3:
70:4e:2e:12:44:8a:c8:41:d9:b6:65:36:b3:ba:5b:83:06:51:
66:46:79:72:1d:2e:ed:67:c7:63:2c:59:64:b0:4f:69:0b:66:
d8:88:08:cf:51:d7:f9:9d:f3:83:ae:a5:8d:6e:63:ab:ba:44:
ec:71:89:b7:bc:05:28:09:69:c1:a3:47:0d:de:4d:f9:12:d1:
6c:72:08:d7:70:89:7f:eb:01:e5:77:3d:c3:ba:48:7e:72:b8:
e3:ba:c0:bb:71:ed:82:f8:be:c8:74:a7:27:e6:e6:70:bb:04:
b2:e9:3b:cb:bd:6f:d1:a9:88:59:7c:b7:d6:21:ba:26:23:a4:
86:8d:f6:eb:ca:98:d5:ec:d2:2f:52:35:fb:80:d2:9e:7d:ef:
8f:dd:ab:7e
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAbSqMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDgwMzAzMDIwOVoXDTI0MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQzMxNzQxMTAvBgNVBAUTKEU0MjJCRjAyNjE0MEQyMDNFRkQ2QkZE
RUFFRTI2OEFBOEIwNDY2RDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC1e7FSj5e/tL+ESu5mCBSHlz6JC+SgG/2kirziym8UazL562+6rkQvXYTgUjFK
/ISjn3Qa8mqjEIrhxzfKCvwPWE8fJfWZ+fpe1GuZuoeRkqHWA2/HbyQhEVto4zrY
CySZ3KMF/PGT12mhzxktFhNWkS28x/tWjQv+1hlurxgIG5KvSMiwJadWtoXUtKoL
Cqx0t4ik4mgzcs10EAh6eWzpObcI7V1Ox7ov+Ks0ouCjli7+6BKOlFsLXnBzTU6+
F+zYwj9lN6NBI4pUyyPR9o69E4QqJeHvMvFWRJYywgkZFal2PBXyd/SZ8TSgS8dM
c8ODyLa6gGiI78er8CwIF8wPAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQU5CK/AmFA
0gPv1r/eruJoqosEZtUwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUMzMTc0L0IxMzFGODlDRUVDRDExRUM4Q0Y0NDcxRUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFDMzE3NC9CMTMxRjg5Q0VFQ0QxMUVDOENGNDQ3MUVDNEY5QUUwMi81Q0tfQW1G
QTBnUHYxcl9lcnVKb3Fvc0VadFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAklsMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ73aMA8EAgAC
MAkDBwAgAQ3w20AwDQYJKoZIhvcNAQELBQADggEBAEEMemON3sCDNyV0F29JWYwH
6rJsg7ss84V5gvR/EreADLhuX18phQsK5D+Kisa0bKr8g6LeeB466FzpaMPlgR3V
dRuCMK6ajbOEtAg3NYJ5b5jdFLCLwoxtRqj1L7fHFZxYf3Bj4sT426dgw3BOLhJE
ishB2bZlNrO6W4MGUWZGeXIdLu1nx2MsWWSwT2kLZtiICM9R1/md84OupY1uY6u6
ROxxibe8BSgJacGjRw3eTfkS0WxyCNdwiX/rAeV3PcO6SH5yuOO6wLtx7YL4vsh0
pyfm5nC7BLLpO8u9b9GpiFl8t9YhuiYjpIaN9uvKmNXs0i9SNfuA0p5974/dq34=
-----END CERTIFICATE-----
Generated at Fri Apr 26 08:28:13 2024 by rpki-client on console-ams.rpki-client.org