Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F2D_ceFrz-7nuNZxDWNgZ5mu92c.cer
File: F2D_ceFrz-7nuNZxDWNgZ5mu92c.cer (raw, json)
Hash identifier: 785zQTSqgD/BqJFhPpps5oA+jZmNOfHxREagrc/LweI=
Subject key identifier: 17:60:FF:71:E1:6B:CF:EE:E7:B8:D6:71:0D:63:60:67:99:AE:F7:67
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A19C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CB09E/47119D00D00B11EBB5890E7BC4F9AE02/F2D_ceFrz-7nuNZxDWNgZ5mu92c.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CB09E/47119D00D00B11EBB5890E7BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 04 May 2023 22:08:29 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 138687
IP: 103.136.148.0/22
IP: 2404:95c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 06:28:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106908 (0x1a19c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 4 22:08:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=A91CB09E/serialNumber=1760FF71E16BCFEEE7B8D6710D63606799AEF767
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:77:6c:cc:1f:57:cb:5f:11:f6:92:6c:06:00:
58:df:7a:f4:c4:1f:69:84:a4:6e:08:90:9a:22:e8:
76:c1:4d:1d:67:95:62:e9:8c:c9:11:e8:80:0c:70:
ec:cd:aa:c4:c4:77:90:68:48:8b:67:09:cb:83:09:
6e:a6:5c:68:7a:78:71:49:6c:8f:c2:e2:75:1c:31:
0d:80:a1:d8:63:f7:cd:7f:0a:02:6d:95:d2:88:a6:
e6:73:fc:f0:38:8e:c6:87:65:32:a4:3c:13:2d:97:
63:a0:de:23:5a:17:8a:0a:2e:2d:23:ff:2c:91:a6:
64:82:c1:e7:2c:4f:85:bf:5d:2d:c9:b3:f5:78:2b:
c5:45:d8:59:66:2c:1a:85:72:e4:a1:9a:20:68:8c:
2d:9b:be:de:4e:31:cb:93:b1:86:14:87:fc:10:ad:
a1:eb:74:a2:1f:fb:ce:d8:84:b5:ff:3b:c3:f9:9b:
b2:14:4d:c8:72:d8:d6:80:e6:62:f0:37:53:87:48:
e2:0b:11:b7:9f:34:24:75:04:a9:bd:26:a2:fb:e8:
ac:bf:df:16:b1:7c:8e:9e:d0:94:c3:70:94:32:b9:
71:00:92:92:45:3d:d0:e6:f2:f0:67:10:39:ee:c5:
7d:ae:5a:3a:1a:30:01:52:a5:72:66:86:14:ad:0d:
7c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:60:FF:71:E1:6B:CF:EE:E7:B8:D6:71:0D:63:60:67:99:AE:F7:67
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CB09E/47119D00D00B11EBB5890E7BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CB09E/47119D00D00B11EBB5890E7BC4F9AE02/F2D_ceFrz-7nuNZxDWNgZ5mu92c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138687
sbgp-ipAddrBlock: critical
IPv4:
103.136.148.0/22
IPv6:
2404:95c0::/32
Signature Algorithm: sha256WithRSAEncryption
d3:57:b4:8b:cc:0e:91:ee:bb:1b:ac:e6:dc:51:c6:ce:2f:f8:
aa:a5:b7:a6:4c:19:5d:67:4e:b6:71:4a:3a:95:0d:7a:b9:cb:
bc:ee:c6:52:29:d8:a2:22:57:ec:97:52:b0:f0:36:47:a8:da:
88:69:6a:2b:7f:16:22:86:2f:46:9b:fc:f4:40:50:b6:84:7a:
5f:e8:61:85:73:51:57:90:70:7f:04:9d:dd:3c:c7:14:e2:07:
43:95:86:62:2c:7c:b8:1c:b5:61:c3:ae:e6:6a:d0:c4:3d:4f:
62:48:8d:82:19:c7:08:c5:36:3c:a3:81:97:f0:b4:a3:3c:8c:
76:26:b8:e0:63:d6:2f:81:db:e0:48:f6:1d:94:a4:14:5b:f3:
80:e8:4c:24:c2:97:02:b4:e5:02:b4:e8:fd:de:d5:74:81:a0:
b7:7f:12:50:63:49:b1:d6:50:24:0e:40:18:2c:df:71:f2:7b:
a0:29:49:ae:f3:26:45:56:42:01:18:e5:14:46:fb:36:2b:ee:
42:2d:59:2f:dc:5d:72:2e:35:68:ae:d9:74:4f:4b:0e:b6:c4:
4a:00:07:ee:7f:6f:e5:fe:c1:a5:67:76:db:a8:f6:77:40:10:
31:39:9d:01:1f:94:58:b9:66:e3:17:48:ff:af:e0:3f:a0:de:
4a:c3:83:e1
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAaGcMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDUwNDIyMDgyOVoXDTI0MDcwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQ0IwOUUxMTAvBgNVBAUTKDE3NjBGRjcxRTE2QkNGRUVFN0I4RDY3
MTBENjM2MDY3OTlBRUY3NjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQD4d2zMH1fLXxH2kmwGAFjfevTEH2mEpG4IkJoi6HbBTR1nlWLpjMkR6IAMcOzN
qsTEd5BoSItnCcuDCW6mXGh6eHFJbI/C4nUcMQ2Aodhj981/CgJtldKIpuZz/PA4
jsaHZTKkPBMtl2Og3iNaF4oKLi0j/yyRpmSCwecsT4W/XS3Js/V4K8VF2FlmLBqF
cuShmiBojC2bvt5OMcuTsYYUh/wQraHrdKIf+87YhLX/O8P5m7IUTchy2NaA5mLw
N1OHSOILEbefNCR1BKm9JqL76Ky/3xaxfI6e0JTDcJQyuXEAkpJFPdDm8vBnEDnu
xX2uWjoaMAFSpXJmhhStDXy9AgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUF2D/ceFr
z+7nuNZxDWNgZ5mu92cwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUNCMDlFLzQ3MTE5RDAwRDAwQjExRUJCNTg5MEU3QkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFDQjA5RS80NzExOUQwMEQwMEIxMUVCQjU4OTBFN0JDNEY5QUUwMi9GMkRfY2VG
cnotN251Tlp4RFdOZ1o1bXU5MmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAh2/MC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZ4iUMA0EAgAC
MAcDBQAkBJXAMA0GCSqGSIb3DQEBCwUAA4IBAQDTV7SLzA6R7rsbrObcUcbOL/iq
pbemTBldZ062cUo6lQ16ucu87sZSKdiiIlfsl1Kw8DZHqNqIaWorfxYihi9Gm/z0
QFC2hHpf6GGFc1FXkHB/BJ3dPMcU4gdDlYZiLHy4HLVhw67matDEPU9iSI2CGccI
xTY8o4GX8LSjPIx2JrjgY9YvgdvgSPYdlKQUW/OA6EwkwpcCtOUCtOj93tV0gaC3
fxJQY0mx1lAkDkAYLN9x8nugKUmu8yZFVkIBGOUURvs2K+5CLVkv3F1yLjVortl0
T0sOtsRKAAfuf2/l/sGlZ3bbqPZ3QBAxOZ0BH5RYuWbjF0j/r+A/oN5Kw4Ph
-----END CERTIFICATE-----
Generated at Thu Apr 25 07:18:46 2024 by rpki-client on console-fra.rpki-client.org