Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-7MRCaowz1FkLzaEtl1DEkEhX0.cer
File: B-7MRCaowz1FkLzaEtl1DEkEhX0.cer (raw, json)
Hash identifier: FuBH2a77c4XbcJX+O2oVZtaTvImhi4M8Lj7ov35lqS4=
Subject key identifier: 07:EE:CC:44:26:A8:C3:3D:45:90:BC:DA:12:D9:75:0C:49:04:85:7D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E5A8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 20 Mar 2024 23:21:32 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 45631
AS: 135400
IP: 203.176.122.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 10:14:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124328 (0x1e5a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 20 23:21:32 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A914C90B/serialNumber=07EECC4426A8C33D4590BCDA12D9750C4904857D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:2d:b5:b6:85:3f:a6:06:b5:79:18:fc:8c:65:
eb:ab:54:87:ca:a5:34:b0:74:b0:f1:25:61:49:f3:
94:63:b5:3e:aa:c3:73:bc:a0:4f:aa:33:9d:f2:28:
ba:49:88:a6:ad:38:ae:47:25:f1:89:cd:1c:f3:17:
29:17:a0:95:51:03:1f:52:5d:f2:16:6a:3a:fc:70:
ac:57:5f:ef:e2:51:a3:23:d1:a4:fe:5b:ae:7f:e5:
4b:2c:29:61:8a:56:6a:99:3c:90:3d:d3:db:cf:e4:
79:8a:d5:6a:ea:6d:2d:1e:4d:75:0b:4e:34:96:2e:
15:69:4a:65:a2:e8:c2:1a:95:d6:15:a0:51:ca:06:
89:97:cc:f5:28:0a:39:75:23:93:68:0d:57:2d:d9:
38:f6:77:fc:41:c8:11:60:f8:3c:28:43:87:d5:1c:
54:cc:4a:1c:5f:8f:7c:6b:a5:27:4a:62:b0:89:81:
68:54:43:b6:86:7b:65:84:a9:61:d6:27:4c:cb:11:
cf:11:29:0c:b5:d0:ec:59:12:09:23:24:84:a4:14:
8a:30:1f:17:f6:4f:c4:09:63:a3:a4:83:2c:69:a8:
79:cf:13:bf:d7:2f:80:0a:56:bc:b0:72:46:f9:d3:
8e:30:ec:68:f2:96:13:14:3c:76:48:ce:b5:e4:cf:
f1:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:EE:CC:44:26:A8:C3:3D:45:90:BC:DA:12:D9:75:0C:49:04:85:7D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914C90B/92842702E71011EEA9DBC252C4F9AE02/B-7MRCaowz1FkLzaEtl1DEkEhX0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
45631
135400
sbgp-ipAddrBlock: critical
IPv4:
203.176.122.0/23
Signature Algorithm: sha256WithRSAEncryption
a8:74:7f:8c:07:26:34:4e:07:46:90:22:f3:a5:29:89:7f:0f:
49:84:db:38:66:52:c4:2e:da:0b:18:d3:36:84:cf:69:cc:2c:
da:d7:58:5d:4e:18:a4:49:78:15:29:b1:d5:86:69:9d:34:75:
6d:65:92:d6:42:b4:18:87:f5:ed:a7:e1:2c:f6:35:31:21:43:
29:a6:8d:8c:0f:5a:15:07:d4:ec:b3:da:e4:8f:e1:c6:9e:65:
82:d3:bf:dc:92:eb:02:e4:55:cc:c2:ef:fe:8d:0e:42:d0:ed:
77:f1:b3:9d:87:9b:c2:eb:ac:df:a2:d1:68:de:0c:3e:71:81:
60:6c:44:a7:dd:59:75:8b:32:61:ac:a9:23:13:bd:50:78:1f:
17:f4:52:84:5b:20:78:cc:fa:8a:aa:d8:eb:05:59:4b:3d:6b:
40:81:d2:f7:9b:b0:d0:87:82:fa:d1:3d:54:aa:57:03:e7:c5:
50:a0:6b:dc:8b:85:1c:f3:bf:ec:db:d8:62:13:ec:a5:71:db:
62:84:62:8a:01:41:58:07:b3:07:fc:04:27:d5:51:fa:e1:c5:
71:35:ca:8a:e6:24:23:64:81:ed:d3:3e:47:88:e5:52:a6:1a:
56:12:f0:d3:34:6d:a0:3f:3f:ef:84:52:cb:f6:80:cc:f6:a6:
c3:1f:0a:37
-----BEGIN CERTIFICATE-----
MIIGHzCCBQegAwIBAgIDAeWoMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDMyMDIzMjEzMloXDTI1MDUwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNEM5MEIxMTAvBgNVBAUTKDA3RUVDQzQ0MjZBOEMzM0Q0NTkwQkNE
QTEyRDk3NTBDNDkwNDg1N0QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDeLbW2hT+mBrV5GPyMZeurVIfKpTSwdLDxJWFJ85RjtT6qw3O8oE+qM53yKLpJ
iKatOK5HJfGJzRzzFykXoJVRAx9SXfIWajr8cKxXX+/iUaMj0aT+W65/5UssKWGK
VmqZPJA909vP5HmK1WrqbS0eTXULTjSWLhVpSmWi6MIaldYVoFHKBomXzPUoCjl1
I5NoDVct2Tj2d/xByBFg+DwoQ4fVHFTMShxfj3xrpSdKYrCJgWhUQ7aGe2WEqWHW
J0zLEc8RKQy10OxZEgkjJISkFIowHxf2T8QJY6OkgyxpqHnPE7/XL4AKVrywckb5
044w7GjylhMUPHZIzrXkz/EfAgMBAAGjggMUMIIDEDAdBgNVHQ4EFgQUB+7MRCao
wz1FkLzaEtl1DEkEhX0wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTRDOTBCLzkyODQyNzAyRTcxMDExRUVBOURCQzI1MkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE0QzkwQi85Mjg0MjcwMkU3MTAxMUVFQTlEQkMyNTJDNEY5QUUwMi9CLTdNUkNh
b3d6MUZrTHphRXRsMURFa0VoWDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQgBAf8EEDAO
oAwwCgIDALI/AgMCEOgwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHLsHow
DQYJKoZIhvcNAQELBQADggEBAKh0f4wHJjROB0aQIvOlKYl/D0mE2zhmUsQu2gsY
0zaEz2nMLNrXWF1OGKRJeBUpsdWGaZ00dW1lktZCtBiH9e2n4Sz2NTEhQymmjYwP
WhUH1Oyz2uSP4caeZYLTv9yS6wLkVczC7/6NDkLQ7Xfxs52Hm8LrrN+i0WjeDD5x
gWBsRKfdWXWLMmGsqSMTvVB4Hxf0UoRbIHjM+oqq2OsFWUs9a0CB0vebsNCHgvrR
PVSqVwPnxVCga9yLhRzzv+zb2GIT7KVx22KEYooBQVgHswf8BCfVUfrhxXE1yorm
JCNkge3TPkeI5VKmGlYS8NM0baA/P++EUsv2gMz2psMfCjc=
-----END CERTIFICATE-----
Generated at Thu May 2 12:24:21 2024 by rpki-client on console-ams.rpki-client.org