Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CPZ-6xN5MreCDj5PhItuJ6-vHvs.cer
File: CPZ-6xN5MreCDj5PhItuJ6-vHvs.cer (raw, json)
Hash identifier: GeLXRJjAP6GMsoqG+BGGiRrZ+I6FxP/ns8e7bZOvGc0=
Subject key identifier: 08:F6:7E:EB:13:79:32:B7:82:0E:3E:4F:84:8B:6E:27:AF:AF:1E:FB
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CA1C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E2868/67F17D8C1B6711EB820CCB42C4F9AE02/CPZ-6xN5MreCDj5PhItuJ6-vHvs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E2868/67F17D8C1B6711EB820CCB42C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 09 Nov 2023 22:12:13 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 141375
IP: 103.157.202.0/23
IP: 2001:df5:2c80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117276 (0x1ca1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 9 22:12:13 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91E2868/serialNumber=08F67EEB137932B7820E3E4F848B6E27AFAF1EFB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ad:3d:b9:4c:d9:b8:ba:34:39:dd:fa:3d:d1:
c9:42:ca:7d:25:46:54:ab:25:52:74:96:5b:5d:59:
f0:98:f1:54:a6:1c:9f:41:db:48:d1:94:70:01:94:
9d:27:de:82:cc:c2:f9:f7:46:24:86:45:54:5f:6f:
c5:a9:04:86:66:28:7f:e1:00:9b:a3:bf:a0:4d:91:
2b:a7:62:80:c0:57:bf:17:c1:30:5c:71:25:c2:fb:
f6:d7:5c:02:d3:f9:86:95:e8:8d:9c:fe:24:77:42:
e6:d7:8e:1f:11:90:20:b3:98:16:9d:57:c1:e0:8a:
28:20:da:30:81:2a:68:eb:60:05:a6:a3:21:37:e3:
a5:aa:cc:6e:7a:b3:a6:d8:ce:1f:03:88:5a:3f:e4:
b3:19:67:00:90:e2:77:ae:57:5f:e1:1e:94:3e:51:
08:d7:ed:77:7e:59:e8:82:f0:9d:27:40:dd:2c:4c:
c2:f4:ee:00:9b:65:a2:65:72:14:51:59:5f:b8:30:
41:44:4c:24:87:62:d2:5d:81:ab:2d:a4:a5:7e:8f:
d0:fb:08:24:3f:c0:16:0b:6b:65:7f:8a:cb:b0:67:
c4:9e:6d:da:8f:f7:ff:4e:63:f5:55:14:c7:6b:b1:
53:c2:84:ba:25:9a:d6:ab:e3:25:62:f6:36:dd:46:
af:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:F6:7E:EB:13:79:32:B7:82:0E:3E:4F:84:8B:6E:27:AF:AF:1E:FB
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E2868/67F17D8C1B6711EB820CCB42C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E2868/67F17D8C1B6711EB820CCB42C4F9AE02/CPZ-6xN5MreCDj5PhItuJ6-vHvs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141375
sbgp-ipAddrBlock: critical
IPv4:
103.157.202.0/23
IPv6:
2001:df5:2c80::/48
Signature Algorithm: sha256WithRSAEncryption
2d:5f:16:b7:7c:d5:e0:37:dd:2b:89:98:d6:ff:e1:9a:15:43:
7e:17:09:41:80:d2:12:05:00:06:51:48:c8:0f:da:8b:38:52:
73:3a:e5:bc:4d:73:0f:c6:aa:5a:fa:80:cd:47:69:ef:d1:1a:
37:20:7e:6c:24:2f:c1:95:91:ae:78:53:c0:3a:65:75:bd:3b:
2f:56:b8:37:13:b0:78:ef:40:6a:13:28:23:57:53:48:e5:36:
0d:c5:4d:ad:46:5a:be:53:9b:cd:43:5e:65:06:a3:dc:6f:1a:
2b:12:01:4c:f8:17:51:ff:f7:79:21:97:6c:a7:08:57:27:d6:
b1:fd:43:b7:0a:97:b3:a7:2a:4d:c9:ac:e2:1f:96:12:27:3c:
73:f0:2f:a6:fe:85:6b:51:18:05:cf:7c:f4:fd:2d:f0:fb:f3:
a2:04:02:3f:96:d5:66:e2:4c:bf:5f:d6:d6:03:6b:66:fa:1b:
e4:11:b2:91:f0:9d:d9:8d:f6:fa:29:60:30:77:42:53:e4:4f:
e0:00:22:2e:cb:20:e7:59:f4:8d:48:83:99:9c:df:08:a7:cc:
db:b4:56:56:91:dc:24:0f:e2:a6:03:cd:7e:3d:7b:44:aa:f2:
d1:c1:c1:8d:4d:a6:9a:bf:20:71:0b:0f:0d:4b:7b:34:cd:8d:
29:42:59:04
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAcocMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMTEwOTIyMTIxM1oXDTI1MDEzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRTI4NjgxMTAvBgNVBAUTKDA4RjY3RUVCMTM3OTMyQjc4MjBFM0U0
Rjg0OEI2RTI3QUZBRjFFRkIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCyrT25TNm4ujQ53fo90clCyn0lRlSrJVJ0lltdWfCY8VSmHJ9B20jRlHABlJ0n
3oLMwvn3RiSGRVRfb8WpBIZmKH/hAJujv6BNkSunYoDAV78XwTBccSXC+/bXXALT
+YaV6I2c/iR3QubXjh8RkCCzmBadV8Hgiigg2jCBKmjrYAWmoyE346WqzG56s6bY
zh8DiFo/5LMZZwCQ4neuV1/hHpQ+UQjX7Xd+WeiC8J0nQN0sTML07gCbZaJlchRR
WV+4MEFETCSHYtJdgastpKV+j9D7CCQ/wBYLa2V/isuwZ8SebdqP9/9OY/VVFMdr
sVPChLolmtar4yVi9jbdRq+hAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUCPZ+6xN5
MreCDj5PhItuJ6+vHvswHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUUyODY4LzY3RjE3RDhDMUI2NzExRUI4MjBDQ0I0MkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFFMjg2OC82N0YxN0Q4QzFCNjcxMUVCODIwQ0NCNDJDNEY5QUUwMi9DUFotNnhO
NU1yZUNEajVQaEl0dUo2LXZIdnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAig/MDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ53KMA8EAgAC
MAkDBwAgAQ31LIAwDQYJKoZIhvcNAQELBQADggEBAC1fFrd81eA33SuJmNb/4ZoV
Q34XCUGA0hIFAAZRSMgP2os4UnM65bxNcw/Gqlr6gM1Hae/RGjcgfmwkL8GVka54
U8A6ZXW9Oy9WuDcTsHjvQGoTKCNXU0jlNg3FTa1GWr5Tm81DXmUGo9xvGisSAUz4
F1H/93khl2ynCFcn1rH9Q7cKl7OnKk3JrOIflhInPHPwL6b+hWtRGAXPfPT9LfD7
86IEAj+W1WbiTL9f1tYDa2b6G+QRspHwndmN9vopYDB3QlPkT+AAIi7LIOdZ9I1I
g5mc3winzNu0VlaR3CQP4qYDzX49e0Sq8tHBwY1Nppq/IHELDw1LezTNjSlCWQQ=
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:28 2024 by rpki-client on console-ams.rpki-client.org