Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWZvx92HXf-g4ZvHPLrajs-aWCc.cer
File: AWZvx92HXf-g4ZvHPLrajs-aWCc.cer (raw, json)
Hash identifier: VddGVUen5Hg+NWKKflApXyVcG+KPRqRPDIAMVgr9oc0=
Subject key identifier: 01:66:6F:C7:DD:87:5D:FF:A0:E1:9B:C7:3C:BA:DA:8E:CF:9A:58:27
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E28C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 04 Mar 2024 04:02:36 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 23854
AS: 38831 -- 38832
AS: 134982
AS: 135292
IP: 103.212.67.0/24
IP: 119.15.64.0/24
IP: 119.15.66.0/24
IP: 119.15.68.0/22
IP: 203.3.70.0/24
IP: 203.5.59.0/24
IP: 203.8.95.0/24
IP: 203.26.51.0/24
IP: 203.26.177.0/24
IP: 203.26.213.0/24
IP: 203.27.199.0/24
IP: 203.31.75.0/24
IP: 2001:df1:5a00::/48
IP: 2401:8560::/31
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 08 May 2024 23:13:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123532 (0x1e28c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 4 04:02:36 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A9129969/serialNumber=01666FC7DD875DFFA0E19BC73CBADA8ECF9A5827
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f8:fc:e5:37:9d:08:11:ae:2d:8c:ac:a3:49:
83:d8:27:54:61:81:a0:a6:2c:43:bf:40:75:b2:12:
1d:27:23:d7:a1:e6:d6:90:f9:3d:70:03:ac:c0:d1:
e9:48:0c:dc:20:88:fa:a8:27:a5:30:fd:7a:18:82:
37:f3:62:ad:86:e1:2d:f3:26:8c:49:ff:cc:ac:52:
c2:1a:07:6f:ac:d6:16:00:09:d2:53:6a:0a:94:9d:
d3:2e:7f:51:fa:d0:28:2a:2f:b2:a8:b9:b4:1f:13:
95:fd:65:b4:d0:fa:e6:44:67:81:86:60:0c:6d:f4:
b6:6d:1f:a8:20:b4:bd:27:bb:9e:38:4c:f7:3d:7b:
41:9f:10:af:92:20:e0:ac:45:e8:a4:ee:25:68:3a:
7d:78:7e:2b:8d:78:d1:c1:62:5f:92:37:8e:80:79:
cf:88:db:ad:9a:5c:f0:00:56:06:91:4d:a8:ff:20:
6c:d4:c2:29:60:c9:4f:d4:84:17:cc:43:61:1f:18:
39:58:94:58:c9:71:a6:85:9a:be:e4:fc:69:74:d0:
0e:3d:c6:ac:a8:3a:2a:3d:b8:89:22:f0:46:f8:fd:
f6:9c:30:e8:86:bf:3c:29:65:82:7e:3f:a9:66:8c:
47:f0:2e:05:d8:d9:6d:ad:72:86:2f:da:31:d1:f1:
aa:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:66:6F:C7:DD:87:5D:FF:A0:E1:9B:C7:3C:BA:DA:8E:CF:9A:58:27
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
23854
38831-38832
134982
135292
sbgp-ipAddrBlock: critical
IPv4:
103.212.67.0/24
119.15.64.0/24
119.15.66.0/24
119.15.68.0/22
203.3.70.0/24
203.5.59.0/24
203.8.95.0/24
203.26.51.0/24
203.26.177.0/24
203.26.213.0/24
203.27.199.0/24
203.31.75.0/24
IPv6:
2001:df1:5a00::/48
2401:8560::/31
Signature Algorithm: sha256WithRSAEncryption
d0:63:c8:c6:22:65:60:1f:0b:0f:ab:e5:91:f2:1b:9b:ee:9b:
df:4b:12:71:f1:1b:3c:55:a4:57:67:6a:d4:31:57:11:61:f6:
c3:91:f0:0c:d9:1d:63:0a:d8:8f:0f:d0:ad:86:a1:d9:02:b6:
2f:fa:0b:1d:46:ed:0a:b5:1b:62:6d:d0:72:4f:62:8e:94:bf:
6d:c9:54:88:6e:d2:3b:78:c3:00:0f:64:30:ad:2b:e4:a0:d9:
0d:12:4b:3d:db:84:28:63:7d:31:19:6a:57:a8:95:0f:da:4b:
8e:72:31:6f:38:a8:27:29:eb:f5:d9:8b:6d:6b:2b:2a:dd:7d:
89:53:2e:15:23:0b:e6:ec:ef:c6:a5:9c:0f:27:0c:08:70:95:
7e:af:77:de:53:8e:da:86:c8:00:34:54:d1:50:8a:0e:2e:97:
d8:9b:8c:fa:1a:6e:38:8f:3c:eb:c3:c9:5a:ec:2c:10:a4:44:
2c:97:09:f6:b4:79:ea:8f:f8:8d:7a:e1:6b:73:85:51:24:cd:
b4:92:b9:07:e4:55:65:a9:40:fa:e0:1b:77:31:fd:b1:ba:d7:
51:d2:2d:f7:a2:0d:7e:fa:0c:77:fb:d2:42:e8:fb:3d:5c:5e:
9e:62:a8:4b:bc:ba:da:03:d5:6c:6e:5e:1e:27:28:dc:33:e4:
8b:09:05:4f
-----BEGIN CERTIFICATE-----
MIIGiTCCBXGgAwIBAgIDAeKMMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDMwNDA0MDIzNloXDTI1MDUwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMjk5NjkxMTAvBgNVBAUTKDAxNjY2RkM3REQ4NzVERkZBMEUxOUJD
NzNDQkFEQThFQ0Y5QTU4MjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCl+PzlN50IEa4tjKyjSYPYJ1RhgaCmLEO/QHWyEh0nI9eh5taQ+T1wA6zA0elI
DNwgiPqoJ6Uw/XoYgjfzYq2G4S3zJoxJ/8ysUsIaB2+s1hYACdJTagqUndMuf1H6
0CgqL7KoubQfE5X9ZbTQ+uZEZ4GGYAxt9LZtH6ggtL0nu544TPc9e0GfEK+SIOCs
Reik7iVoOn14fiuNeNHBYl+SN46Aec+I262aXPAAVgaRTaj/IGzUwilgyU/UhBfM
Q2EfGDlYlFjJcaaFmr7k/Gl00A49xqyoOio9uIki8Eb4/facMOiGvzwpZYJ+P6lm
jEfwLgXY2W2tcoYv2jHR8appAgMBAAGjggN+MIIDejAdBgNVHQ4EFgQUAWZvx92H
Xf+g4ZvHPLrajs+aWCcwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTI5OTY5L0NGMzk1QzM4MUM2QTExRUVCRjYyQUMwREM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEyOTk2OS9DRjM5NUMzODFDNkExMUVFQkY2MkFDMERDNEY5QUUwMi9BV1p2eDky
SFhmLWc0WnZIUExyYWpzLWFXQ2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQgBAf8EIDAe
oBwwGgICXS4wCgIDAJevAgMAl7ACAwIPRgIDAhB8MHkGCCsGAQUFBwEHAQH/BGow
aDBOBAIAATBIAwQAZ9RDAwQAdw9AAwQAdw9CAwQCdw9EAwQAywNGAwQAywU7AwQA
ywhfAwQAyxozAwQAyxqxAwQAyxrVAwQAyxvHAwQAyx9LMBYEAgACMBADBwAgAQ3x
WgADBQEkAYVgMA0GCSqGSIb3DQEBCwUAA4IBAQDQY8jGImVgHwsPq+WR8hub7pvf
SxJx8Rs8VaRXZ2rUMVcRYfbDkfAM2R1jCtiPD9CthqHZArYv+gsdRu0KtRtibdBy
T2KOlL9tyVSIbtI7eMMAD2QwrSvkoNkNEks924QoY30xGWpXqJUP2kuOcjFvOKgn
Kev12Yttaysq3X2JUy4VIwvm7O/GpZwPJwwIcJV+r3feU47ahsgANFTRUIoOLpfY
m4z6Gm44jzzrw8la7CwQpEQslwn2tHnqj/iNeuFrc4VRJM20krkH5FVlqUD64Bt3
Mf2xutdR0i33og1++gx3+9JC6Ps9XF6eYqhLvLraA9Vsbl4eJyjcM+SLCQVP
-----END CERTIFICATE-----
Generated at Thu May 2 00:10:45 2024 by rpki-client on console-ams.rpki-client.org