Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5OEB7vRDFQxiEQrK-ogVVMCJ_FM.cer
File: 5OEB7vRDFQxiEQrK-ogVVMCJ_FM.cer (raw, json)
Hash identifier: yxpbSM6LeHXocXWMCAtwoBYNHjbLlpahkLNgLM+m1pA=
Subject key identifier: E4:E1:01:EE:F4:43:15:0C:62:11:0A:CA:FA:88:15:54:C0:89:FC:53
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B4C4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9131612/E3B84C8CBE8611E99A6C011FC4F9AE02/5OEB7vRDFQxiEQrK-ogVVMCJ_FM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9131612/E3B84C8CBE8611E99A6C011FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 03 Aug 2023 13:08:15 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 131332
IP: 103.24.134.0/24
IP: 103.163.4.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111812 (0x1b4c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 3 13:08:15 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A9131612/serialNumber=E4E101EEF443150C62110ACAFA881554C089FC53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:66:67:2f:73:aa:d1:18:14:ba:f9:30:fc:35:
6f:06:c4:bd:4b:7e:df:53:33:a2:15:cf:99:3f:c4:
a1:12:8a:c3:cc:90:61:99:b0:e3:36:33:85:90:33:
f9:e9:01:8a:51:dd:7f:8f:16:2d:52:28:41:8e:41:
16:d7:61:ed:84:6e:a8:ed:c9:84:4f:d0:f2:9b:55:
bc:04:00:e2:15:89:df:5a:be:c2:53:7b:ae:a2:bf:
63:ff:bf:10:be:55:3b:54:c8:f7:cc:8c:8b:ff:b8:
35:fa:21:8a:44:9e:0c:0e:e3:12:c3:30:7b:c1:46:
c0:20:f9:78:9a:f2:7b:55:cd:13:9a:94:b4:05:8a:
2c:76:31:d0:57:98:35:58:5e:14:a8:71:19:47:86:
bf:bc:c3:37:8a:32:67:4b:ec:b9:04:36:df:9c:03:
3b:23:f3:b6:3c:99:a8:9c:c9:1a:93:21:77:df:d2:
19:18:28:90:b3:99:4f:94:b6:cf:c3:ce:bb:b3:15:
43:24:3a:3a:a7:28:be:74:8c:6f:f1:7d:33:bc:a0:
06:e0:97:1b:f0:d3:ef:53:11:0f:28:2c:a7:f7:5c:
b1:ea:e4:fb:53:8c:e9:a2:52:93:a5:9c:ab:79:d3:
d8:bb:41:41:18:76:ba:2a:86:79:da:e0:ea:7f:76:
71:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:E1:01:EE:F4:43:15:0C:62:11:0A:CA:FA:88:15:54:C0:89:FC:53
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9131612/E3B84C8CBE8611E99A6C011FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9131612/E3B84C8CBE8611E99A6C011FC4F9AE02/5OEB7vRDFQxiEQrK-ogVVMCJ_FM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
131332
sbgp-ipAddrBlock: critical
IPv4:
103.24.134.0/24
103.163.4.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:20:ef:b1:5c:cb:3c:76:3c:31:ef:3a:27:fb:93:ad:06:0c:
4a:7b:46:46:a9:02:19:b9:8f:1b:d1:dd:b7:5d:a6:a6:26:e8:
a9:d8:cb:72:77:92:1f:54:8d:5f:92:f8:2e:b4:d9:37:97:78:
64:79:1b:76:07:b5:de:39:2a:45:11:7f:58:d2:ed:2f:78:ab:
20:c0:e5:1c:0f:d6:d4:17:e6:8b:c0:45:2a:77:2a:d3:e2:fa:
f4:2a:ea:ef:c9:79:05:bf:91:e3:1e:d6:ff:eb:77:c8:a2:f6:
43:ad:be:89:3f:f2:a4:a2:2c:1a:52:b4:f4:39:8a:5a:1b:36:
01:5b:6c:66:41:2b:c5:d6:9d:69:28:7b:6b:cc:ed:8d:00:ae:
fa:05:7c:aa:de:ec:35:ea:dd:df:c4:4d:a6:c2:d5:58:61:b6:
83:3b:c3:c6:84:e0:15:eb:8f:3a:37:d7:2b:ba:df:20:56:fe:
d8:71:e8:75:36:53:f0:94:03:d2:7e:ea:a9:5e:25:36:26:a3:
43:05:c2:a6:e3:57:92:e9:6c:1a:f4:ad:01:47:00:72:8b:ac:
52:28:84:a4:d9:35:d1:2e:ea:64:aa:82:20:74:7e:14:a6:70:
7f:73:0a:e7:c8:b1:ff:fd:de:23:ff:65:60:2e:a0:3e:77:6b:
ff:5c:9f:c3
-----BEGIN CERTIFICATE-----
MIIGIDCCBQigAwIBAgIDAbTEMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDgwMzEzMDgxNVoXDTI0MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMzE2MTIxMTAvBgNVBAUTKEU0RTEwMUVFRjQ0MzE1MEM2MjExMEFD
QUZBODgxNTU0QzA4OUZDNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC2Zmcvc6rRGBS6+TD8NW8GxL1Lft9TM6IVz5k/xKESisPMkGGZsOM2M4WQM/np
AYpR3X+PFi1SKEGOQRbXYe2EbqjtyYRP0PKbVbwEAOIVid9avsJTe66iv2P/vxC+
VTtUyPfMjIv/uDX6IYpEngwO4xLDMHvBRsAg+Xia8ntVzROalLQFiix2MdBXmDVY
XhSocRlHhr+8wzeKMmdL7LkENt+cAzsj87Y8maicyRqTIXff0hkYKJCzmU+Uts/D
zruzFUMkOjqnKL50jG/xfTO8oAbglxvw0+9TEQ8oLKf3XLHq5PtTjOmiUpOlnKt5
09i7QUEYdroqhnna4Op/dnELAgMBAAGjggMVMIIDETAdBgNVHQ4EFgQU5OEB7vRD
FQxiEQrK+ogVVMCJ/FMwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTMxNjEyL0UzQjg0QzhDQkU4NjExRTk5QTZDMDExRkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEzMTYxMi9FM0I4NEM4Q0JFODYxMUU5OUE2QzAxMUZDNEY5QUUwMi81T0VCN3ZS
REZReGlFUXJLLW9nVlZNQ0pfRk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAgEEMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAZxiGAwQAZ6ME
MA0GCSqGSIb3DQEBCwUAA4IBAQCaIO+xXMs8djwx7zon+5OtBgxKe0ZGqQIZuY8b
0d23XaamJuip2Mtyd5IfVI1fkvgutNk3l3hkeRt2B7XeOSpFEX9Y0u0veKsgwOUc
D9bUF+aLwEUqdyrT4vr0KurvyXkFv5HjHtb/63fIovZDrb6JP/KkoiwaUrT0OYpa
GzYBW2xmQSvF1p1pKHtrzO2NAK76BXyq3uw16t3fxE2mwtVYYbaDO8PGhOAV6486
N9crut8gVv7Yceh1NlPwlAPSfuqpXiU2JqNDBcKm41eS6Wwa9K0BRwByi6xSKISk
2TXRLupkqoIgdH4UpnB/cwrnyLH//d4j/2VgLqA+d2v/XJ/D
-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:11 2024 by rpki-client on console-fra.rpki-client.org