Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8lm4rJz0O9fFlFTlyD7PSPn7hxc.cer
File: 8lm4rJz0O9fFlFTlyD7PSPn7hxc.cer (raw, json)
Hash identifier: Y2nsdsdftWbhCWhHPHYyFC6SiD4I6iqUf2rb/QljqS4=
Subject key identifier: F2:59:B8:AC:9C:F4:3B:D7:C5:94:54:E5:C8:3E:CF:48:F9:FB:87:17
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BBE8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8lm4rJz0O9fFlFTlyD7PSPn7hxc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 06 Sep 2023 13:43:50 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 139353
IP: 103.141.164.0/23
IP: 2001:df0:ff80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 28 Apr 2024 02:50:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113640 (0x1bbe8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 6 13:43:50 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91329C1/serialNumber=F259B8AC9CF43BD7C59454E5C83ECF48F9FB8717
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:1c:8e:71:53:ea:a1:66:a9:9a:a0:eb:e3:49:
36:d3:9b:e8:43:df:26:44:d6:a7:a0:36:6e:fd:b2:
32:ea:b6:b5:f1:41:0e:b1:02:d5:88:95:49:af:24:
48:b2:8c:f5:a9:d5:d6:df:9d:8e:bb:2b:e5:e5:82:
9f:51:5e:40:7c:8b:0a:b9:a0:b2:c3:8b:c2:42:e8:
30:aa:7a:85:88:45:7a:45:3f:08:43:12:8c:74:dc:
f2:20:3f:4a:74:f8:49:f6:46:93:de:dc:cb:4c:e5:
3e:6a:12:fb:9e:5e:a2:f2:e7:3f:35:22:f8:d4:68:
db:fe:38:d7:c5:e4:05:d2:2f:ca:99:11:7d:fd:8c:
80:8a:1a:5a:13:f7:83:ad:0e:c8:7c:92:0a:e4:2b:
b6:0d:dd:73:f3:0e:5b:79:7a:67:ec:03:08:fa:68:
42:01:c3:ff:d8:f1:a0:37:37:d5:2f:ce:66:2d:eb:
0b:c5:7e:6b:e0:d2:fd:9c:50:11:a2:07:67:93:ec:
64:7e:9f:6e:c3:50:58:96:44:91:c1:5a:15:d2:7e:
3c:d8:64:67:0e:c7:23:7f:d8:46:70:5d:88:15:01:
5f:2a:87:e1:83:49:06:5a:05:cd:1c:ae:79:38:fd:
5f:e0:46:e6:77:cb:76:39:2e:7d:50:d4:55:ec:d1:
ee:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:59:B8:AC:9C:F4:3B:D7:C5:94:54:E5:C8:3E:CF:48:F9:FB:87:17
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91329C1/44236F0405BD11EDA00A5F3DC4F9AE02/8lm4rJz0O9fFlFTlyD7PSPn7hxc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139353
sbgp-ipAddrBlock: critical
IPv4:
103.141.164.0/23
IPv6:
2001:df0:ff80::/48
Signature Algorithm: sha256WithRSAEncryption
0e:ec:95:6b:38:50:95:08:8f:e6:3f:c7:8d:5a:e4:a3:b2:63:
b2:4e:30:38:ec:de:ad:a5:4c:8b:7e:c7:ef:94:07:18:0b:57:
c4:9f:6e:d5:c2:0a:37:a6:13:1f:88:b1:85:06:76:24:fc:d0:
c3:bc:c2:ed:e4:e9:c0:d2:fd:2e:98:89:27:d8:88:b0:64:f8:
4a:09:23:d1:89:b6:5a:0d:4c:fb:a3:29:b8:a8:37:13:49:53:
95:2d:43:d9:7a:64:bc:bb:27:d9:c4:8d:5f:5d:a9:c8:1b:8c:
61:ae:8d:02:f6:cd:a1:f6:89:d6:cc:ff:8c:5d:37:10:a9:7c:
c9:62:7f:5f:f2:ff:35:08:46:54:ee:4b:a3:84:f5:d0:75:65:
fd:1a:ac:e1:24:68:63:a2:b3:03:d5:ec:d1:b0:fd:19:9e:53:
e3:74:64:28:1b:63:61:1a:86:5a:96:87:cd:57:e1:3c:30:e7:
31:cc:63:7b:20:f4:c9:80:b1:e2:ce:dd:4f:4c:c2:47:3e:66:
d5:1e:81:a5:b2:c4:10:30:45:60:7e:67:2b:62:95:d8:0b:d9:
53:21:f1:2f:ab:a5:af:7e:6b:21:07:54:cf:81:0e:44:51:32:
06:bd:bc:72:7d:e7:a9:f9:e1:02:94:39:f6:ea:ac:a4:af:7c:
ed:46:09:d9
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAbvoMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDkwNjEzNDM1MFoXDTI0MTAzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMzI5QzExMTAvBgNVBAUTKEYyNTlCOEFDOUNGNDNCRDdDNTk0NTRF
NUM4M0VDRjQ4RjlGQjg3MTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDGHI5xU+qhZqmaoOvjSTbTm+hD3yZE1qegNm79sjLqtrXxQQ6xAtWIlUmvJEiy
jPWp1dbfnY67K+Xlgp9RXkB8iwq5oLLDi8JC6DCqeoWIRXpFPwhDEox03PIgP0p0
+En2RpPe3MtM5T5qEvueXqLy5z81IvjUaNv+ONfF5AXSL8qZEX39jICKGloT94Ot
Dsh8kgrkK7YN3XPzDlt5emfsAwj6aEIBw//Y8aA3N9UvzmYt6wvFfmvg0v2cUBGi
B2eT7GR+n27DUFiWRJHBWhXSfjzYZGcOxyN/2EZwXYgVAV8qh+GDSQZaBc0crnk4
/V/gRuZ3y3Y5Ln1Q1FXs0e5hAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQU8lm4rJz0
O9fFlFTlyD7PSPn7hxcwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTMyOUMxLzQ0MjM2RjA0MDVCRDExRURBMDBBNUYzREM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEzMjlDMS80NDIzNkYwNDA1QkQxMUVEQTAwQTVGM0RDNEY5QUUwMi84bG00ckp6
ME85ZkZsRlRseUQ3UFNQbjdoeGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAiBZMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ42kMA8EAgAC
MAkDBwAgAQ3w/4AwDQYJKoZIhvcNAQELBQADggEBAA7slWs4UJUIj+Y/x41a5KOy
Y7JOMDjs3q2lTIt+x++UBxgLV8SfbtXCCjemEx+IsYUGdiT80MO8wu3k6cDS/S6Y
iSfYiLBk+EoJI9GJtloNTPujKbioNxNJU5UtQ9l6ZLy7J9nEjV9dqcgbjGGujQL2
zaH2idbM/4xdNxCpfMlif1/y/zUIRlTuS6OE9dB1Zf0arOEkaGOiswPV7NGw/Rme
U+N0ZCgbY2EahlqWh81X4Tww5zHMY3sg9MmAseLO3U9Mwkc+ZtUegaWyxBAwRWB+
ZytildgL2VMh8S+rpa9+ayEHVM+BDkRRMga9vHJ956n54QKUOfbqrKSvfO1GCdk=
-----END CERTIFICATE-----
Generated at Sun Apr 21 03:31:12 2024 by rpki-client on console-fra.rpki-client.org