Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99M_RV7avj1Mtj-5LkygdhGcNKY.cer
File: 99M_RV7avj1Mtj-5LkygdhGcNKY.cer (raw, json)
Hash identifier: oDAfDg6MqdWqwUL81ao3GPrFt3UyLQp8vBerkMg/QJg=
Subject key identifier: F7:D3:3F:45:5E:DA:BE:3D:4C:B6:3F:B9:2E:4C:A0:76:11:9C:34:A6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020D87
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9150845/DC7100EA5A5511E8BE3E0B68C4F9AE02/99M_RV7avj1Mtj-5LkygdhGcNKY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9150845/DC7100EA5A5511E8BE3E0B68C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 14 Sep 2024 14:12:12 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 63528 -- 63529
AS: 136458
IP: 203.159.64.0/23
IP: 203.159.68.0/22
IP: 2001:deb::/48
IP: 2001:df5:b880::/47
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 06:14:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134535 (0x20d87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 14 14:12:12 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A9150845/serialNumber=F7D33F455EDABE3D4CB63FB92E4CA076119C34A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:8f:17:6a:22:68:ed:3d:12:09:0a:50:d5:d9:
50:24:b3:b3:53:45:d3:6c:19:98:38:89:b0:03:c2:
a0:d7:c7:53:96:ae:4f:d7:60:4e:98:45:69:f4:a4:
63:0b:fa:bf:e9:f3:44:de:0c:5b:3b:3d:3d:89:5c:
63:62:4a:a1:91:47:e3:26:75:60:d0:4a:69:8c:e8:
6f:ec:48:d7:43:65:b8:8a:8b:1a:1e:00:1d:09:6d:
ee:9a:55:c9:59:4e:d7:9c:f0:ea:ba:f9:77:78:62:
70:de:7e:7a:84:70:9d:25:e3:7c:48:16:70:6f:af:
02:2a:27:7b:68:d2:16:62:5a:6d:f2:f7:2d:1d:7e:
5f:12:15:46:92:5d:e0:24:2c:f0:ea:5f:38:0b:74:
5f:5c:61:5c:5f:af:0a:57:f3:a5:12:af:e1:d5:13:
6a:7a:71:01:4b:9b:2a:04:02:08:be:a4:bc:56:2d:
13:ec:de:c2:b4:4f:07:c0:85:e1:bd:3f:9c:df:04:
05:54:56:37:14:87:e2:6c:7e:6b:69:de:4a:a6:58:
46:d7:b6:79:51:fe:98:1f:0d:93:7a:cf:53:56:7d:
9a:df:15:0e:8c:35:dc:64:a2:b8:43:87:7c:00:c3:
7d:8e:31:8b:22:ab:be:3f:f8:62:52:5b:43:ff:59:
db:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:D3:3F:45:5E:DA:BE:3D:4C:B6:3F:B9:2E:4C:A0:76:11:9C:34:A6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9150845/DC7100EA5A5511E8BE3E0B68C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9150845/DC7100EA5A5511E8BE3E0B68C4F9AE02/99M_RV7avj1Mtj-5LkygdhGcNKY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
63528-63529
136458
sbgp-ipAddrBlock: critical
IPv4:
203.159.64.0/23
203.159.68.0/22
IPv6:
2001:deb::/48
2001:df5:b880::/47
Signature Algorithm: sha256WithRSAEncryption
24:28:40:24:1c:f2:f2:89:de:78:da:c3:eb:16:04:a7:82:09:
31:87:8a:44:18:09:db:6c:f5:e2:17:ba:09:89:fd:06:21:65:
75:10:72:71:cd:93:37:69:53:13:d8:07:b9:1a:cf:d4:55:17:
2b:35:04:bb:90:57:ea:71:91:c1:57:d1:e3:90:cd:83:44:df:
54:44:51:4b:27:cf:2c:0e:23:ea:ff:f1:fc:de:80:69:9f:54:
2a:68:66:d3:b3:8d:3c:46:42:b2:8d:d2:19:4a:85:22:8e:85:
14:ce:ef:88:55:06:53:38:35:f7:33:8e:58:be:d1:8a:dc:8c:
a5:96:2e:1f:46:34:b0:7b:e2:53:78:27:09:29:8c:32:3e:e1:
b1:f1:2e:a6:b0:c9:b2:a5:9b:3e:73:20:2b:0e:c0:d7:1c:32:
62:66:8f:14:2b:7d:82:83:1f:b1:f6:46:e3:0b:15:6c:a5:83:
33:f6:7f:5a:d9:12:38:71:4f:0e:f5:cd:19:21:ef:fe:49:b3:
03:88:b5:57:da:e6:96:12:93:05:78:01:e2:89:33:2d:24:88:
9b:c4:e4:67:26:34:5f:64:6e:18:fe:3b:8a:10:9a:fc:39:d6:
7e:53:0e:41:04:cf:16:96:d7:98:b2:0a:8c:31:dd:15:e0:dc:
22:48:32:76
-----BEGIN CERTIFICATE-----
MIIGRjCCBS6gAwIBAgIDAg2HMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDkxNDE0MTIxMloXDTI1MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNTA4NDUxMTAvBgNVBAUTKEY3RDMzRjQ1NUVEQUJFM0Q0Q0I2M0ZC
OTJFNENBMDc2MTE5QzM0QTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC3jxdqImjtPRIJClDV2VAks7NTRdNsGZg4ibADwqDXx1OWrk/XYE6YRWn0pGML
+r/p80TeDFs7PT2JXGNiSqGRR+MmdWDQSmmM6G/sSNdDZbiKixoeAB0Jbe6aVclZ
Ttec8Oq6+Xd4YnDefnqEcJ0l43xIFnBvrwIqJ3to0hZiWm3y9y0dfl8SFUaSXeAk
LPDqXzgLdF9cYVxfrwpX86USr+HVE2p6cQFLmyoEAgi+pLxWLRPs3sK0TwfAheG9
P5zfBAVUVjcUh+Jsfmtp3kqmWEbXtnlR/pgfDZN6z1NWfZrfFQ6MNdxkorhDh3wA
w32OMYsiq74/+GJSW0P/WdtNAgMBAAGjggM7MIIDNzAdBgNVHQ4EFgQU99M/RV7a
vj1Mtj+5LkygdhGcNKYwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTUwODQ1L0RDNzEwMEVBNUE1NTExRThCRTNFMEI2OEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1MDg0NS9EQzcxMDBFQTVBNTUxMUU4QkUzRTBCNjhDNEY5QUUwMi85OU1fUlY3
YXZqMU10ai01TGt5Z2RoR2NOS1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJgYIKwYBBQUHAQgBAf8EFzAV
oBMwETAKAgMA+CgCAwD4KQIDAhUKMD8GCCsGAQUFBwEHAQH/BDAwLjASBAIAATAM
AwQBy59AAwQCy59EMBgEAgACMBIDBwAgAQ3rAAADBwEgAQ31uIAwDQYJKoZIhvcN
AQELBQADggEBACQoQCQc8vKJ3njaw+sWBKeCCTGHikQYCdts9eIXugmJ/QYhZXUQ
cnHNkzdpUxPYB7kaz9RVFys1BLuQV+pxkcFX0eOQzYNE31REUUsnzywOI+r/8fze
gGmfVCpoZtOzjTxGQrKN0hlKhSKOhRTO74hVBlM4Nfczjli+0YrcjKWWLh9GNLB7
4lN4JwkpjDI+4bHxLqawybKlmz5zICsOwNccMmJmjxQrfYKDH7H2RuMLFWylgzP2
f1rZEjhxTw71zRkh7/5JswOItVfa5pYSkwV4AeKJMy0kiJvE5GcmNF9kbhj+O4oQ
mvw51n5TDkEEzxaW15iyCowx3RXg3CJIMnY=
-----END CERTIFICATE-----
Generated at Fri Nov 22 06:58:31 2024 by rpki-client on console-fra.rpki-client.org