Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.cer
File: Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.cer (raw, json)
Hash identifier: l4y1cOglivTXngeTHFT9kiTPTDJzIXD/31neQ+4DbzY=
Subject key identifier: 05:BE:F3:B7:64:63:56:CE:40:9F:C5:63:F2:A6:90:78:67:79:5E:F7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020F15
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 23 Sep 2024 21:11:58 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 142623
IP: 103.171.36.0/23
IP: 2001:df7:3580::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134933 (0x20f15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 23 21:11:58 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91D795B/serialNumber=05BEF3B7646356CE409FC563F2A6907867795EF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b7:1b:65:1a:34:91:33:6e:f3:6d:d9:33:71:
b6:8c:80:78:7e:9a:a2:d8:aa:83:32:15:4d:52:6e:
ca:8f:b8:d3:98:54:b2:6f:fc:96:25:1f:f7:71:95:
d3:61:0b:3c:c6:b8:55:b5:d9:b7:6d:7b:4e:80:85:
f1:8e:7e:60:9e:09:8c:35:97:46:c1:c3:94:99:be:
62:68:05:0f:c2:85:da:ba:c3:2a:75:44:c8:60:44:
7c:c9:19:21:93:87:ef:98:b2:f8:b6:4f:44:45:ab:
ee:0e:14:a9:f0:11:86:ea:d6:24:b6:1d:cb:91:36:
9b:92:e5:96:b8:9f:3b:74:75:c5:6e:b5:64:e3:bc:
ae:d8:23:e4:5f:f6:cc:af:82:d2:6c:8a:8a:38:5b:
f6:af:76:13:15:cc:85:7f:ce:6a:86:9a:b7:27:9c:
c7:eb:00:26:c6:24:29:e4:23:3e:e7:71:2d:e5:f8:
be:e2:7c:0c:60:c8:cc:15:03:ac:61:83:b2:7b:ce:
0b:5d:4d:59:ee:93:dc:3e:99:e2:97:91:5e:9a:c8:
7c:8c:56:6c:ed:eb:f0:d8:00:5f:3a:0e:8c:9a:b3:
11:dd:6c:f6:6a:af:a6:91:5c:46:47:1b:9d:fc:3d:
78:f2:b3:d3:c5:88:95:d2:b6:43:f2:09:63:e4:d1:
b9:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:BE:F3:B7:64:63:56:CE:40:9F:C5:63:F2:A6:90:78:67:79:5E:F7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142623
sbgp-ipAddrBlock: critical
IPv4:
103.171.36.0/23
IPv6:
2001:df7:3580::/48
Signature Algorithm: sha256WithRSAEncryption
8d:4d:1e:dc:11:d4:a4:87:ac:07:13:67:fc:2f:44:47:0a:43:
96:39:17:31:c9:8a:8b:32:7a:2f:6a:ee:9c:b2:fc:62:f0:74:
32:eb:5f:61:c1:b4:ac:49:7a:d0:00:c6:ee:45:31:68:a7:87:
ad:2b:03:d3:4f:31:3c:7c:88:d8:23:27:84:ea:63:49:b6:c0:
a8:a3:5f:fd:5a:52:e7:ac:7a:1b:e2:0d:94:da:14:ce:fa:0d:
ef:c0:78:94:0d:cf:00:8d:16:df:7f:f3:fa:40:a1:16:d5:b5:
2c:57:07:51:3e:06:28:db:d2:e7:dc:92:7c:8c:bd:a2:fb:d3:
2c:f6:45:9f:04:16:1a:34:59:67:f9:75:65:b9:58:4b:ee:84:
2a:8f:89:df:b7:cd:2f:dc:d2:eb:66:65:32:a4:cf:c5:df:46:
3d:b4:42:cd:85:16:58:80:8f:f1:93:c7:94:a5:f8:d2:d9:15:
70:e1:1c:90:01:af:cb:89:09:35:06:d0:93:f6:62:8f:fa:83:
29:39:71:ac:a9:9b:dd:f6:28:26:14:ea:d5:f2:c1:53:b9:a0:
99:12:a7:2a:2e:d1:3e:6f:f8:1d:f1:f3:8e:af:30:99:a1:76:
d7:82:4e:14:c0:e8:30:24:f1:9c:54:12:7b:5b:ea:ff:a1:8d:
d5:0c:dc:7f
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAg8VMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDkyMzIxMTE1OFoXDTI1MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRDc5NUIxMTAvBgNVBAUTKDA1QkVGM0I3NjQ2MzU2Q0U0MDlGQzU2
M0YyQTY5MDc4Njc3OTVFRjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDEtxtlGjSRM27zbdkzcbaMgHh+mqLYqoMyFU1SbsqPuNOYVLJv/JYlH/dxldNh
CzzGuFW12bdte06AhfGOfmCeCYw1l0bBw5SZvmJoBQ/Chdq6wyp1RMhgRHzJGSGT
h++Ysvi2T0RFq+4OFKnwEYbq1iS2HcuRNpuS5Za4nzt0dcVutWTjvK7YI+Rf9syv
gtJsioo4W/avdhMVzIV/zmqGmrcnnMfrACbGJCnkIz7ncS3l+L7ifAxgyMwVA6xh
g7J7zgtdTVnuk9w+meKXkV6ayHyMVmzt6/DYAF86DoyasxHdbPZqr6aRXEZHG538
PXjys9PFiJXStkPyCWPk0bnRAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUBb7zt2Rj
Vs5An8Vj8qaQeGd5XvcwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUQ3OTVCL0E4OEZCM0UyMDBDMDExRUM5NkMyRDU4M0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFENzk1Qi9BODhGQjNFMjAwQzAxMUVDOTZDMkQ1ODNDNEY5QUUwMi9CYjd6dDJS
alZzNUFuOFZqOHFhUWVHZDVYdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAi0fMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ6skMA8EAgAC
MAkDBwAgAQ33NYAwDQYJKoZIhvcNAQELBQADggEBAI1NHtwR1KSHrAcTZ/wvREcK
Q5Y5FzHJiosyei9q7pyy/GLwdDLrX2HBtKxJetAAxu5FMWinh60rA9NPMTx8iNgj
J4TqY0m2wKijX/1aUuesehviDZTaFM76De/AeJQNzwCNFt9/8/pAoRbVtSxXB1E+
Bijb0ufcknyMvaL70yz2RZ8EFho0WWf5dWW5WEvuhCqPid+3zS/c0utmZTKkz8Xf
Rj20Qs2FFliAj/GTx5Sl+NLZFXDhHJABr8uJCTUG0JP2Yo/6gyk5caypm932KCYU
6tXywVO5oJkSpyou0T5v+B3x846vMJmhdteCThTA6DAk8ZxUEntb6v+hjdUM3H8=
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:27 2024 by rpki-client on console-ams.rpki-client.org