Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5OEB7vRDFQxiEQrK-ogVVMCJ_FM.cer
File: 5OEB7vRDFQxiEQrK-ogVVMCJ_FM.cer (raw, json)
Hash identifier: h097oRac9kQJcs4DhN70GAnZ+LYoBpbbhd2Ej+76bng=
Subject key identifier: E4:E1:01:EE:F4:43:15:0C:62:11:0A:CA:FA:88:15:54:C0:89:FC:53
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FE17
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9131612/E3B84C8CBE8611E99A6C011FC4F9AE02/5OEB7vRDFQxiEQrK-ogVVMCJ_FM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9131612/E3B84C8CBE8611E99A6C011FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 04 Jul 2024 13:28:46 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 131332
IP: 103.24.134.0/24
IP: 103.163.4.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 06:14:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130583 (0x1fe17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 4 13:28:46 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A9131612/serialNumber=E4E101EEF443150C62110ACAFA881554C089FC53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:66:67:2f:73:aa:d1:18:14:ba:f9:30:fc:35:
6f:06:c4:bd:4b:7e:df:53:33:a2:15:cf:99:3f:c4:
a1:12:8a:c3:cc:90:61:99:b0:e3:36:33:85:90:33:
f9:e9:01:8a:51:dd:7f:8f:16:2d:52:28:41:8e:41:
16:d7:61:ed:84:6e:a8:ed:c9:84:4f:d0:f2:9b:55:
bc:04:00:e2:15:89:df:5a:be:c2:53:7b:ae:a2:bf:
63:ff:bf:10:be:55:3b:54:c8:f7:cc:8c:8b:ff:b8:
35:fa:21:8a:44:9e:0c:0e:e3:12:c3:30:7b:c1:46:
c0:20:f9:78:9a:f2:7b:55:cd:13:9a:94:b4:05:8a:
2c:76:31:d0:57:98:35:58:5e:14:a8:71:19:47:86:
bf:bc:c3:37:8a:32:67:4b:ec:b9:04:36:df:9c:03:
3b:23:f3:b6:3c:99:a8:9c:c9:1a:93:21:77:df:d2:
19:18:28:90:b3:99:4f:94:b6:cf:c3:ce:bb:b3:15:
43:24:3a:3a:a7:28:be:74:8c:6f:f1:7d:33:bc:a0:
06:e0:97:1b:f0:d3:ef:53:11:0f:28:2c:a7:f7:5c:
b1:ea:e4:fb:53:8c:e9:a2:52:93:a5:9c:ab:79:d3:
d8:bb:41:41:18:76:ba:2a:86:79:da:e0:ea:7f:76:
71:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:E1:01:EE:F4:43:15:0C:62:11:0A:CA:FA:88:15:54:C0:89:FC:53
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9131612/E3B84C8CBE8611E99A6C011FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9131612/E3B84C8CBE8611E99A6C011FC4F9AE02/5OEB7vRDFQxiEQrK-ogVVMCJ_FM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
131332
sbgp-ipAddrBlock: critical
IPv4:
103.24.134.0/24
103.163.4.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:e8:3b:68:ca:b0:d0:c5:99:cc:8f:40:90:9c:88:b9:7f:31:
fc:91:fe:50:44:50:36:82:c6:62:53:e6:61:3c:1a:97:e8:2c:
f2:9a:ef:6d:a4:54:8c:77:d0:48:68:0e:4b:90:c4:c6:a8:e3:
ce:2d:c9:7f:96:90:c5:d0:3d:8c:d4:31:5d:38:0d:4c:ed:00:
46:32:15:5a:3b:6b:07:23:28:cc:98:7e:3a:80:27:fc:4c:b3:
e6:f7:98:fa:f4:39:4e:b3:28:a7:2f:f8:25:12:3e:19:55:8e:
5e:1a:a3:f7:a1:ab:66:31:36:63:e9:eb:18:de:4d:e5:98:26:
66:e4:78:6c:e0:29:22:86:7a:18:ae:d7:99:24:56:cb:9d:7b:
11:50:a2:05:4c:be:d0:d9:9e:7f:ea:c9:31:57:a9:c6:38:d3:
e8:c3:7e:1e:13:60:17:aa:41:df:7c:f7:8a:81:2e:93:49:64:
17:a6:c3:8d:fe:19:df:63:a1:e3:6e:27:00:32:31:65:df:26:
ed:10:c7:e7:9f:26:27:e1:75:4f:9e:04:94:5b:9f:f3:e2:2a:
b5:89:97:c1:ee:44:07:dc:0a:7a:8a:c9:28:14:cb:1e:84:0e:
b1:cf:c1:b0:39:de:5d:45:41:dd:db:8b:00:c9:ec:4d:93:c9:
64:5c:fa:d3
-----BEGIN CERTIFICATE-----
MIIGIDCCBQigAwIBAgIDAf4XMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDcwNDEzMjg0NloXDTI1MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMzE2MTIxMTAvBgNVBAUTKEU0RTEwMUVFRjQ0MzE1MEM2MjExMEFD
QUZBODgxNTU0QzA4OUZDNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC2Zmcvc6rRGBS6+TD8NW8GxL1Lft9TM6IVz5k/xKESisPMkGGZsOM2M4WQM/np
AYpR3X+PFi1SKEGOQRbXYe2EbqjtyYRP0PKbVbwEAOIVid9avsJTe66iv2P/vxC+
VTtUyPfMjIv/uDX6IYpEngwO4xLDMHvBRsAg+Xia8ntVzROalLQFiix2MdBXmDVY
XhSocRlHhr+8wzeKMmdL7LkENt+cAzsj87Y8maicyRqTIXff0hkYKJCzmU+Uts/D
zruzFUMkOjqnKL50jG/xfTO8oAbglxvw0+9TEQ8oLKf3XLHq5PtTjOmiUpOlnKt5
09i7QUEYdroqhnna4Op/dnELAgMBAAGjggMVMIIDETAdBgNVHQ4EFgQU5OEB7vRD
FQxiEQrK+ogVVMCJ/FMwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTMxNjEyL0UzQjg0QzhDQkU4NjExRTk5QTZDMDExRkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEzMTYxMi9FM0I4NEM4Q0JFODYxMUU5OUE2QzAxMUZDNEY5QUUwMi81T0VCN3ZS
REZReGlFUXJLLW9nVlZNQ0pfRk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAgEEMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAZxiGAwQAZ6ME
MA0GCSqGSIb3DQEBCwUAA4IBAQC86DtoyrDQxZnMj0CQnIi5fzH8kf5QRFA2gsZi
U+ZhPBqX6Czymu9tpFSMd9BIaA5LkMTGqOPOLcl/lpDF0D2M1DFdOA1M7QBGMhVa
O2sHIyjMmH46gCf8TLPm95j69DlOsyinL/glEj4ZVY5eGqP3oatmMTZj6esY3k3l
mCZm5Hhs4CkihnoYrteZJFbLnXsRUKIFTL7Q2Z5/6skxV6nGONPow34eE2AXqkHf
fPeKgS6TSWQXpsON/hnfY6HjbicAMjFl3ybtEMfnnyYn4XVPngSUW5/z4iq1iZfB
7kQH3Ap6iskoFMsehA6xz8GwOd5dRUHd24sAyexNk8lkXPrT
-----END CERTIFICATE-----
Generated at Fri Nov 22 06:58:27 2024 by rpki-client on console-fra.rpki-client.org