Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer
File: AShwXWnFHg4rB4rtuZiR5_GbTR8.cer (raw, json)
Hash identifier: b5WA8nqUQ3aj9HBjLZD5BOOVKqlPXvKuXMonEFnjQAY=
Subject key identifier: 01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D9E2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 22 Jan 2024 20:01:38 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 139925
IP: 103.147.42.0/23
IP: 2001:df2:8280::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 13:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121314 (0x1d9e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 22 20:01:38 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91C0C0B/serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:98:fe:c9:17:2f:5d:ff:b1:47:f0:23:c9:b2:
89:dc:b6:70:23:24:8d:bc:f7:cf:74:56:da:c4:b2:
7f:d2:a5:da:a8:19:fd:01:26:46:83:23:5a:0d:93:
9e:49:be:9a:8a:0d:cf:6f:ea:ab:07:2f:13:1b:44:
b6:2a:81:62:c5:ed:c8:16:ac:43:1b:2d:ad:db:72:
cc:79:e9:a8:af:3a:d9:7b:4c:44:40:2b:ad:3d:4d:
59:9c:67:17:79:8d:31:d6:1b:98:13:d6:9b:5c:68:
ac:d6:4a:e9:54:fa:39:9a:98:4f:83:e4:dc:44:94:
ff:7c:c1:a2:c4:65:a8:9a:9e:f9:48:22:c5:20:31:
b4:e2:43:61:ec:8c:84:d6:1f:4f:7a:0d:bb:33:a6:
a1:d0:a5:74:c9:62:d6:85:13:2f:9d:24:c5:37:d4:
f2:d6:e7:62:27:bf:cf:c0:15:18:ae:0f:ff:61:2f:
09:50:69:4d:95:5e:26:94:86:ce:4e:fe:8d:30:44:
f2:44:ab:fb:aa:db:07:86:6d:f9:4f:76:0b:0f:6b:
f4:70:18:9e:c8:15:19:e7:62:c6:02:01:3f:5f:16:
70:18:df:76:79:c5:e2:07:68:c5:57:96:b4:4a:c7:
a2:1c:21:42:c1:57:ab:3c:f0:cc:04:62:0c:6b:37:
24:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139925
sbgp-ipAddrBlock: critical
IPv4:
103.147.42.0/23
IPv6:
2001:df2:8280::/48
Signature Algorithm: sha256WithRSAEncryption
7c:96:99:6f:2b:34:22:82:ac:46:57:9b:7a:65:af:74:1c:cb:
65:7b:44:b7:d4:f8:13:f6:9b:e4:00:26:00:ea:15:f8:af:d5:
8a:5f:e6:12:10:6f:21:b5:e5:9e:09:1e:d1:c4:7d:ea:53:37:
52:2a:b3:3b:68:14:4c:05:bf:f2:9a:4a:7a:36:a1:84:c5:01:
c6:8b:44:cb:f7:30:87:4c:a7:b3:d4:15:f0:de:1f:e6:3e:89:
fa:a8:4f:8d:be:c5:9e:75:e2:dc:ef:18:d6:fe:1b:58:3d:a3:
03:c7:40:30:f1:72:d1:9a:6b:e6:8f:16:24:13:5f:8a:82:ba:
31:07:e9:3b:cf:5c:59:4e:1c:66:50:15:96:58:60:88:e3:d8:
72:60:25:31:01:e7:b3:2f:d9:f4:25:d8:64:cf:6f:7f:cc:10:
28:f2:32:c5:1b:19:fb:78:28:21:68:88:e5:92:1c:1c:9d:d5:
71:6f:80:63:ec:a4:b8:58:58:ec:46:50:4a:ff:ef:31:8e:82:
18:fa:82:b2:8f:13:22:f2:ba:62:c8:9e:de:51:76:10:15:48:
88:55:bf:fd:29:2c:90:c7:85:5c:b3:5c:32:7c:cd:65:ca:bb:
44:57:19:d6:6c:36:f5:81:9d:d6:24:5a:de:4c:4a:b5:f3:16:
11:c7:51:9c
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAdniMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDEyMjIwMDEzOFoXDTI1MDMzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQzBDMEIxMTAvBgNVBAUTKDAxMjg3MDVENjlDNTFFMEUyQjA3OEFF
REI5OTg5MUU3RjE5QjREMUYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC/mP7JFy9d/7FH8CPJsonctnAjJI289890VtrEsn/SpdqoGf0BJkaDI1oNk55J
vpqKDc9v6qsHLxMbRLYqgWLF7cgWrEMbLa3bcsx56aivOtl7TERAK609TVmcZxd5
jTHWG5gT1ptcaKzWSulU+jmamE+D5NxElP98waLEZaianvlIIsUgMbTiQ2HsjITW
H096DbszpqHQpXTJYtaFEy+dJMU31PLW52Inv8/AFRiuD/9hLwlQaU2VXiaUhs5O
/o0wRPJEq/uq2weGbflPdgsPa/RwGJ7IFRnnYsYCAT9fFnAY33Z5xeIHaMVXlrRK
x6IcIULBV6s88MwEYgxrNyTZAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUAShwXWnF
Hg4rB4rtuZiR5/GbTR8wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUMwQzBCLzQ0NTk0NDhDMkM2QTExRUE5Q0VDQkY0QUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFDMEMwQi80NDU5NDQ4QzJDNkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFdu
RkhnNHJCNHJ0dVppUjVfR2JUUjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAiKVMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ5MqMA8EAgAC
MAkDBwAgAQ3ygoAwDQYJKoZIhvcNAQELBQADggEBAHyWmW8rNCKCrEZXm3plr3Qc
y2V7RLfU+BP2m+QAJgDqFfiv1Ypf5hIQbyG15Z4JHtHEfepTN1IqsztoFEwFv/Ka
Sno2oYTFAcaLRMv3MIdMp7PUFfDeH+Y+ifqoT42+xZ514tzvGNb+G1g9owPHQDDx
ctGaa+aPFiQTX4qCujEH6TvPXFlOHGZQFZZYYIjj2HJgJTEB57Mv2fQl2GTPb3/M
ECjyMsUbGft4KCFoiOWSHByd1XFvgGPspLhYWOxGUEr/7zGOghj6grKPEyLyumLI
nt5RdhAVSIhVv/0pLJDHhVyzXDJ8zWXKu0RXGdZsNvWBndYkWt5MSrXzFhHHUZw=
-----END CERTIFICATE-----
Generated at Thu Apr 25 14:08:24 2024 by rpki-client on console-ams.rpki-client.org