Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F5SMh3nFnmXK_OLv3LHLUJEThEw.cer
File: F5SMh3nFnmXK_OLv3LHLUJEThEw.cer (raw, json)
Hash identifier: D/X1cVkrDZ7knxsjct8IowHvrZCLZ8P9Wx6nRDstJqc=
Subject key identifier: 17:94:8C:87:79:C5:9E:65:CA:FC:E2:EF:DC:B1:CB:50:91:13:84:4C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021BC5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915FC0B/BEE7558045B011EBA3696D63C4F9AE02/F5SMh3nFnmXK_OLv3LHLUJEThEw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915FC0B/BEE7558045B011EBA3696D63C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 16 Nov 2024 14:06:52 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 139668
IP: 103.143.91.0/24
IP: 103.177.19.0/24
IP: 2001:df0:20c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138181 (0x21bc5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 16 14:06:52 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A915FC0B/serialNumber=17948C8779C59E65CAFCE2EFDCB1CB509113844C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:34:8b:e9:cd:77:81:d2:66:32:31:b8:8f:cd:
e8:b0:54:09:97:97:d0:b2:97:02:72:2a:e5:65:78:
4b:58:5c:35:51:1f:d1:66:b8:9e:d0:d5:56:64:98:
7f:0e:df:ad:df:31:26:63:8b:e8:41:fd:6e:37:31:
41:8b:be:3f:8f:1e:1a:3b:26:c6:09:db:3f:9d:bd:
0a:1d:88:96:c8:c7:04:f5:26:8d:42:d3:b6:89:e0:
c9:cd:ca:f9:a6:4a:fc:dd:fc:eb:eb:0f:c4:fa:9b:
b1:c6:1e:19:03:47:8c:80:e6:e2:b2:ab:2b:96:01:
29:b0:61:40:90:45:31:65:64:5d:3f:7c:2b:2d:16:
c2:0d:b4:d5:ba:91:d5:08:8a:6a:f2:31:1a:43:91:
ad:4c:c2:70:05:79:bc:d4:61:26:af:43:1b:4f:50:
96:0b:13:73:98:e4:d9:d7:02:e4:55:4e:b5:ff:fd:
7d:ff:41:56:75:ca:1c:80:62:39:8b:0f:1a:ba:d1:
c2:a3:5e:de:54:17:a1:f0:48:c3:b7:26:4f:cc:32:
3c:cf:eb:12:5f:bb:01:11:6b:bd:98:2a:fa:73:71:
5b:c4:bd:af:86:2a:2a:2f:f9:ac:c7:5d:4b:23:71:
77:e6:b9:fa:db:a9:3a:b4:2c:fb:8f:f2:e0:2a:56:
35:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:94:8C:87:79:C5:9E:65:CA:FC:E2:EF:DC:B1:CB:50:91:13:84:4C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915FC0B/BEE7558045B011EBA3696D63C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915FC0B/BEE7558045B011EBA3696D63C4F9AE02/F5SMh3nFnmXK_OLv3LHLUJEThEw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139668
sbgp-ipAddrBlock: critical
IPv4:
103.143.91.0/24
103.177.19.0/24
IPv6:
2001:df0:20c0::/48
Signature Algorithm: sha256WithRSAEncryption
91:2d:3d:c2:65:e5:d2:84:4b:23:5f:db:07:75:26:28:5c:db:
88:27:3a:20:93:ae:7f:e4:12:c6:09:e9:bb:63:bc:02:1a:ce:
bd:c2:57:3a:49:37:ee:5f:2e:7e:1f:b9:7a:76:81:9d:f1:ed:
e3:ea:9b:78:4c:e7:44:3b:46:78:a3:26:71:f3:49:d5:e2:8d:
70:ac:3d:03:4e:6f:f2:3f:97:a4:54:ed:3c:96:46:74:78:d0:
5b:25:87:91:2f:6c:92:c2:87:a1:82:07:68:43:d7:64:f4:46:
33:96:fb:18:02:7a:aa:1d:a5:1e:04:e4:fc:8a:47:37:5a:c8:
87:f9:23:62:02:3e:75:25:c3:a7:fb:c2:eb:2b:d1:12:c3:d5:
e6:7e:02:67:ac:92:a2:16:3a:e3:bb:8d:9c:3b:82:a5:e6:46:
aa:1a:48:81:b0:ae:1e:20:3d:5c:04:f7:71:55:05:37:6e:bb:
4e:cb:e8:6f:41:16:e8:7e:a1:29:62:29:f4:f9:94:f5:b5:6a:
c6:60:11:cf:4e:d4:85:30:ba:5a:82:b1:f2:b7:be:28:43:81:
0c:82:a9:92:7e:b6:cd:60:63:9c:e6:2b:02:63:78:ff:5f:c9:
ab:dc:ca:d6:15:b1:fd:80:3d:43:74:3f:9e:ac:e6:f0:a3:f1:
35:e1:8b:af
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIDAhvFMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTExNjE0MDY1MloXDTI1MTIzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNUZDMEIxMTAvBgNVBAUTKDE3OTQ4Qzg3NzlDNTlFNjVDQUZDRTJF
RkRDQjFDQjUwOTExMzg0NEMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDeNIvpzXeB0mYyMbiPzeiwVAmXl9CylwJyKuVleEtYXDVRH9FmuJ7Q1VZkmH8O
363fMSZji+hB/W43MUGLvj+PHho7JsYJ2z+dvQodiJbIxwT1Jo1C07aJ4MnNyvmm
Svzd/OvrD8T6m7HGHhkDR4yA5uKyqyuWASmwYUCQRTFlZF0/fCstFsINtNW6kdUI
imryMRpDka1MwnAFebzUYSavQxtPUJYLE3OY5NnXAuRVTrX//X3/QVZ1yhyAYjmL
Dxq60cKjXt5UF6HwSMO3Jk/MMjzP6xJfuwERa72YKvpzcVvEva+GKiov+azHXUsj
cXfmufrbqTq0LPuP8uAqVjXxAgMBAAGjggMmMIIDIjAdBgNVHQ4EFgQUF5SMh3nF
nmXK/OLv3LHLUJEThEwwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTVGQzBCL0JFRTc1NTgwNDVCMDExRUJBMzY5NkQ2M0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1RkMwQi9CRUU3NTU4MDQ1QjAxMUVCQTM2OTZENjNDNEY5QUUwMi9GNVNNaDNu
Rm5tWEtfT0x2M0xITFVKRVRoRXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAiGUMDYGCCsGAQUFBwEHAQH/BCcwJTASBAIAATAMAwQAZ49bAwQAZ7ET
MA8EAgACMAkDBwAgAQ3wIMAwDQYJKoZIhvcNAQELBQADggEBAJEtPcJl5dKESyNf
2wd1Jihc24gnOiCTrn/kEsYJ6btjvAIazr3CVzpJN+5fLn4fuXp2gZ3x7ePqm3hM
50Q7RnijJnHzSdXijXCsPQNOb/I/l6RU7TyWRnR40Fslh5EvbJLCh6GCB2hD12T0
RjOW+xgCeqodpR4E5PyKRzdayIf5I2ICPnUlw6f7wusr0RLD1eZ+AmeskqIWOuO7
jZw7gqXmRqoaSIGwrh4gPVwE93FVBTduu07L6G9BFuh+oSliKfT5lPW1asZgEc9O
1IUwulqCsfK3vihDgQyCqZJ+ts1gY5zmKwJjeP9fyavcytYVsf2APUN0P56s5vCj
8TXhi68=
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:31 2024 by rpki-client on console-ams.rpki-client.org