Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.cer
File: Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.cer (raw, json)
Hash identifier: VS7Ir2XPLHY0zaxExyjATcJ3rgG+Pz/cXaajHDoKcEk=
Subject key identifier: 05:BE:F3:B7:64:63:56:CE:40:9F:C5:63:F2:A6:90:78:67:79:5E:F7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BEB1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 20 Sep 2023 20:12:57 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 142623
IP: 103.171.36.0/23
IP: 2001:df7:3580::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114353 (0x1beb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 20 20:12:57 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91D795B/serialNumber=05BEF3B7646356CE409FC563F2A6907867795EF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b7:1b:65:1a:34:91:33:6e:f3:6d:d9:33:71:
b6:8c:80:78:7e:9a:a2:d8:aa:83:32:15:4d:52:6e:
ca:8f:b8:d3:98:54:b2:6f:fc:96:25:1f:f7:71:95:
d3:61:0b:3c:c6:b8:55:b5:d9:b7:6d:7b:4e:80:85:
f1:8e:7e:60:9e:09:8c:35:97:46:c1:c3:94:99:be:
62:68:05:0f:c2:85:da:ba:c3:2a:75:44:c8:60:44:
7c:c9:19:21:93:87:ef:98:b2:f8:b6:4f:44:45:ab:
ee:0e:14:a9:f0:11:86:ea:d6:24:b6:1d:cb:91:36:
9b:92:e5:96:b8:9f:3b:74:75:c5:6e:b5:64:e3:bc:
ae:d8:23:e4:5f:f6:cc:af:82:d2:6c:8a:8a:38:5b:
f6:af:76:13:15:cc:85:7f:ce:6a:86:9a:b7:27:9c:
c7:eb:00:26:c6:24:29:e4:23:3e:e7:71:2d:e5:f8:
be:e2:7c:0c:60:c8:cc:15:03:ac:61:83:b2:7b:ce:
0b:5d:4d:59:ee:93:dc:3e:99:e2:97:91:5e:9a:c8:
7c:8c:56:6c:ed:eb:f0:d8:00:5f:3a:0e:8c:9a:b3:
11:dd:6c:f6:6a:af:a6:91:5c:46:47:1b:9d:fc:3d:
78:f2:b3:d3:c5:88:95:d2:b6:43:f2:09:63:e4:d1:
b9:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:BE:F3:B7:64:63:56:CE:40:9F:C5:63:F2:A6:90:78:67:79:5E:F7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142623
sbgp-ipAddrBlock: critical
IPv4:
103.171.36.0/23
IPv6:
2001:df7:3580::/48
Signature Algorithm: sha256WithRSAEncryption
bc:a8:f6:f8:3c:8b:c0:fa:b0:82:ee:16:54:ae:a4:a4:4c:34:
38:99:f1:02:29:9b:94:62:66:64:bf:9e:fa:fe:bc:c6:53:a2:
a4:da:d1:74:2c:17:de:b4:6b:1f:3b:88:2d:b4:3c:3c:f3:a1:
d2:64:d2:f1:7f:91:39:75:61:65:6b:d5:d3:f2:b6:d5:50:06:
6a:45:4a:88:b3:8d:ef:7b:09:ea:a3:7e:b6:01:47:97:1f:58:
cb:6e:77:b3:98:5f:4b:95:67:84:81:4c:11:13:b6:57:21:f5:
cc:a4:31:e2:9b:c0:5f:fd:ea:be:e3:a4:f9:48:46:28:dc:47:
4e:32:bf:57:bc:92:f9:84:11:25:12:4b:36:21:c8:50:f9:eb:
1e:ba:07:d9:6a:89:6b:95:6c:7c:f8:18:44:ab:25:73:11:e7:
eb:82:fb:49:38:98:58:d3:44:2e:1c:0e:74:ab:c0:32:37:ee:
83:87:55:88:c5:f5:40:47:38:a4:60:65:a4:fb:5f:d5:bf:08:
bd:a9:4b:66:2c:32:b9:fa:2b:59:fc:c5:b1:0b:5c:8a:91:34:
ed:5a:c4:e7:d8:ac:ae:43:60:79:f4:d9:d7:04:30:47:4d:db:
0b:96:8f:26:61:01:00:32:8c:d6:09:e2:77:54:ae:ae:f3:7d:
89:fa:50:f4
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAb6xMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDkyMDIwMTI1N1oXDTI0MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRDc5NUIxMTAvBgNVBAUTKDA1QkVGM0I3NjQ2MzU2Q0U0MDlGQzU2
M0YyQTY5MDc4Njc3OTVFRjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDEtxtlGjSRM27zbdkzcbaMgHh+mqLYqoMyFU1SbsqPuNOYVLJv/JYlH/dxldNh
CzzGuFW12bdte06AhfGOfmCeCYw1l0bBw5SZvmJoBQ/Chdq6wyp1RMhgRHzJGSGT
h++Ysvi2T0RFq+4OFKnwEYbq1iS2HcuRNpuS5Za4nzt0dcVutWTjvK7YI+Rf9syv
gtJsioo4W/avdhMVzIV/zmqGmrcnnMfrACbGJCnkIz7ncS3l+L7ifAxgyMwVA6xh
g7J7zgtdTVnuk9w+meKXkV6ayHyMVmzt6/DYAF86DoyasxHdbPZqr6aRXEZHG538
PXjys9PFiJXStkPyCWPk0bnRAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUBb7zt2Rj
Vs5An8Vj8qaQeGd5XvcwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUQ3OTVCL0E4OEZCM0UyMDBDMDExRUM5NkMyRDU4M0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFENzk1Qi9BODhGQjNFMjAwQzAxMUVDOTZDMkQ1ODNDNEY5QUUwMi9CYjd6dDJS
alZzNUFuOFZqOHFhUWVHZDVYdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAi0fMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ6skMA8EAgAC
MAkDBwAgAQ33NYAwDQYJKoZIhvcNAQELBQADggEBALyo9vg8i8D6sILuFlSupKRM
NDiZ8QIpm5RiZmS/nvr+vMZToqTa0XQsF960ax87iC20PDzzodJk0vF/kTl1YWVr
1dPyttVQBmpFSoizje97CeqjfrYBR5cfWMtud7OYX0uVZ4SBTBETtlch9cykMeKb
wF/96r7jpPlIRijcR04yv1e8kvmEESUSSzYhyFD56x66B9lqiWuVbHz4GESrJXMR
5+uC+0k4mFjTRC4cDnSrwDI37oOHVYjF9UBHOKRgZaT7X9W/CL2pS2YsMrn6K1n8
xbELXIqRNO1axOfYrK5DYHn02dcEMEdN2wuWjyZhAQAyjNYJ4ndUrq7zfYn6UPQ=
-----END CERTIFICATE-----
Generated at Sat Apr 20 03:57:44 2024 by rpki-client on console-fra.rpki-client.org