Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7YKi_X3hR1J8_MQkeiVsGg7bTtM.cer
File: 7YKi_X3hR1J8_MQkeiVsGg7bTtM.cer (raw, json)
Hash identifier: zNIDgmSKcLqv3sK/Vlb2z5P5lXK2QMyQoVO5+jVBRO4=
Subject key identifier: ED:82:A2:FD:7D:E1:47:52:7C:FC:C4:24:7A:25:6C:1A:0E:DB:4E:D3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0214E5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 21 Oct 2024 06:53:29 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 151495
IP: 103.234.191.0/24
IP: 2001:df2:a9c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 31 Oct 2024 13:02:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136421 (0x214e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 21 06:53:29 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A9152787/serialNumber=ED82A2FD7DE147527CFCC4247A256C1A0EDB4ED3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:79:ba:11:2f:c2:c5:8b:ae:fa:e9:ac:5b:62:
9a:c4:d5:15:db:40:52:07:bc:ea:5c:fd:4d:a1:a6:
dc:60:3f:d8:dc:b4:96:85:39:92:ae:a3:6a:c5:0d:
bc:d9:26:9e:a0:85:88:47:61:c1:1f:cd:ec:80:99:
6b:ce:4c:52:7f:90:cf:b5:4a:1c:16:af:10:22:3c:
6a:01:5a:13:9c:96:da:1f:1e:99:65:39:38:73:7f:
11:1c:de:54:4d:0f:3f:de:39:88:d2:6c:51:ba:dd:
c9:7a:ff:4f:0a:4c:f3:33:c8:94:58:08:0b:d5:22:
f1:3f:8f:1b:2d:bf:8a:b5:3f:70:7f:4c:41:a7:0b:
8d:6a:c7:36:68:33:d1:9c:37:ac:d5:b3:d4:55:80:
08:d5:ae:b3:3a:87:99:51:e2:a4:c4:b3:ea:58:e3:
00:d3:24:a0:a1:32:63:f4:7a:e0:40:20:80:4c:9d:
39:b7:93:da:53:12:27:6b:26:d8:51:02:6d:c5:f2:
e9:88:c5:29:cc:ef:2e:63:0e:84:98:4a:0b:39:6a:
5f:f4:e3:b4:c6:52:c2:b7:67:33:87:ac:98:32:f8:
9b:46:62:21:18:2c:b5:58:3e:93:54:a8:c8:c0:ab:
07:59:a7:f1:0f:04:f3:f9:ce:d7:55:26:bc:a1:24:
1d:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:82:A2:FD:7D:E1:47:52:7C:FC:C4:24:7A:25:6C:1A:0E:DB:4E:D3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9152787/2B1C47FE8F7911EF92AC781EC4F9AE02/7YKi_X3hR1J8_MQkeiVsGg7bTtM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151495
sbgp-ipAddrBlock: critical
IPv4:
103.234.191.0/24
IPv6:
2001:df2:a9c0::/48
Signature Algorithm: sha256WithRSAEncryption
77:55:5b:ef:53:c0:d8:86:2a:35:fb:ac:4e:5d:aa:19:29:39:
6f:b1:bc:94:c4:be:85:12:97:c5:8c:f0:19:2c:af:5b:c2:a8:
97:21:b3:9c:02:61:06:1b:6e:42:aa:6d:5f:0a:1e:ce:d3:4b:
fa:9a:39:87:ad:03:f4:56:9a:af:80:55:3b:bb:ef:bf:bb:78:
d3:a9:c3:62:98:2a:fb:c9:21:99:11:f7:f0:fe:b9:3b:d1:21:
c8:91:6f:d2:97:7b:82:91:98:7d:63:36:16:57:6f:6f:13:ae:
37:ed:ff:f1:30:3c:7f:6e:3e:c1:d4:6f:ff:ab:0e:49:31:eb:
62:8a:38:da:d0:41:aa:7a:f1:9c:e7:6b:c2:d4:c4:53:17:64:
56:20:6f:a4:1b:5d:b5:78:f3:80:f2:d6:1a:15:54:96:f1:fd:
0b:2e:d5:c0:ed:10:60:a6:83:45:68:94:d4:54:ef:cc:57:67:
74:05:43:f9:b6:93:90:12:5c:08:25:fa:4d:0c:02:65:1a:82:
c3:c8:cf:b7:d2:dd:e8:a0:f3:e3:78:52:2f:23:48:8c:17:9f:
e4:48:6b:10:2f:3a:04:35:ed:59:8c:21:cd:c6:ed:d3:de:13:
f5:e3:85:90:c1:65:87:fc:ee:0b:54:9f:a5:f3:e4:91:f7:c9:
89:d5:53:9c
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAhTlMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTAyMTA2NTMyOVoXDTI1MTAzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNTI3ODcxMTAvBgNVBAUTKEVEODJBMkZEN0RFMTQ3NTI3Q0ZDQzQy
NDdBMjU2QzFBMEVEQjRFRDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDceboRL8LFi6766axbYprE1RXbQFIHvOpc/U2hptxgP9jctJaFOZKuo2rFDbzZ
Jp6ghYhHYcEfzeyAmWvOTFJ/kM+1ShwWrxAiPGoBWhOcltofHpllOThzfxEc3lRN
Dz/eOYjSbFG63cl6/08KTPMzyJRYCAvVIvE/jxstv4q1P3B/TEGnC41qxzZoM9Gc
N6zVs9RVgAjVrrM6h5lR4qTEs+pY4wDTJKChMmP0euBAIIBMnTm3k9pTEidrJthR
Am3F8umIxSnM7y5jDoSYSgs5al/047TGUsK3ZzOHrJgy+JtGYiEYLLVYPpNUqMjA
qwdZp/EPBPP5ztdVJryhJB2nAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQU7YKi/X3h
R1J8/MQkeiVsGg7bTtMwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTUyNzg3LzJCMUM0N0ZFOEY3OTExRUY5MkFDNzgxRUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1Mjc4Ny8yQjFDNDdGRThGNzkxMUVGOTJBQzc4MUVDNEY5QUUwMi83WUtpX1gz
aFIxSjhfTVFrZWlWc0dnN2JUdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAk/HMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAZ+q/MA8EAgAC
MAkDBwAgAQ3yqcAwDQYJKoZIhvcNAQELBQADggEBAHdVW+9TwNiGKjX7rE5dqhkp
OW+xvJTEvoUSl8WM8Bksr1vCqJchs5wCYQYbbkKqbV8KHs7TS/qaOYetA/RWmq+A
VTu777+7eNOpw2KYKvvJIZkR9/D+uTvRIciRb9KXe4KRmH1jNhZXb28Trjft//Ew
PH9uPsHUb/+rDkkx62KKONrQQap68Zzna8LUxFMXZFYgb6QbXbV484Dy1hoVVJbx
/Qsu1cDtEGCmg0VolNRU78xXZ3QFQ/m2k5ASXAgl+k0MAmUagsPIz7fS3eig8+N4
Ui8jSIwXn+RIaxAvOgQ17VmMIc3G7dPeE/XjhZDBZYf87gtUn6Xz5JH3yYnVU5w=
-----END CERTIFICATE-----
Generated at Thu Oct 24 13:56:19 2024 by rpki-client on console-fra.rpki-client.org