Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gb5b5jVV8RtzQdxOHLyfRMntoPc.cer
File: Gb5b5jVV8RtzQdxOHLyfRMntoPc.cer (raw, json)
Hash identifier: i40qH1zlN4vpG3H3kV2/Zf6PKFUx9QJ7laDf650OOYE=
Subject key identifier: 19:BE:5B:E6:35:55:F1:1B:73:41:DC:4E:1C:BC:9F:44:C9:ED:A0:F7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01AA70
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91753AE/F32998BCE1E211EAABEEC528C4F9AE02/Gb5b5jVV8RtzQdxOHLyfRMntoPc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91753AE/F32998BCE1E211EAABEEC528C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 16 Jun 2023 15:33:22 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 140670
IP: 103.151.144.0/24
IP: 2001:df3:c580::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109168 (0x1aa70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 16 15:33:22 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A91753AE/serialNumber=19BE5BE63555F11B7341DC4E1CBC9F44C9EDA0F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:43:17:8e:f8:33:e5:9a:12:65:cb:9c:f9:ac:
33:04:f9:3a:d0:2c:8c:66:e9:40:9d:b1:ac:60:ca:
b9:af:52:2c:c8:9e:68:a3:a2:fc:09:79:a9:2f:34:
12:83:4f:21:2e:46:83:98:29:81:41:f3:b1:98:28:
57:ca:15:b6:88:59:69:d8:1e:b3:83:ba:94:2a:4b:
02:1b:6c:93:f3:8a:33:b3:19:23:dd:2e:09:9e:25:
71:63:27:c9:6c:80:64:cd:1b:be:a2:c6:08:b3:61:
24:a7:fd:73:2a:91:4a:a5:1a:16:94:93:e9:3f:de:
27:6c:38:52:2b:a0:ad:cc:ed:21:c3:dd:2b:75:c6:
a7:b7:4d:dd:0a:df:96:24:87:62:63:f4:61:e3:43:
89:21:a1:85:7d:f7:1a:f2:02:50:ee:86:fb:fb:b6:
a4:43:bb:7f:9b:da:bc:25:a1:42:dd:d6:68:c1:f9:
31:a9:c5:35:6a:78:1b:28:40:2f:22:62:e7:f4:5e:
15:a6:29:47:34:98:90:03:d2:60:95:53:a4:0b:65:
cf:7b:12:8c:59:6e:8b:c4:ba:d3:d8:94:5b:26:53:
59:b8:1d:10:f9:1d:c5:84:de:f0:64:9c:06:b2:29:
7f:a7:e3:77:39:bf:6e:45:db:10:d7:2b:1f:0e:80:
c4:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:BE:5B:E6:35:55:F1:1B:73:41:DC:4E:1C:BC:9F:44:C9:ED:A0:F7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91753AE/F32998BCE1E211EAABEEC528C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91753AE/F32998BCE1E211EAABEEC528C4F9AE02/Gb5b5jVV8RtzQdxOHLyfRMntoPc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140670
sbgp-ipAddrBlock: critical
IPv4:
103.151.144.0/24
IPv6:
2001:df3:c580::/48
Signature Algorithm: sha256WithRSAEncryption
8c:99:28:34:47:6b:93:bb:21:1a:7b:a1:96:07:02:e0:57:8f:
11:98:91:b8:0c:c0:82:0d:04:6f:57:15:d5:e5:61:25:0a:00:
52:c5:e1:10:d9:84:c2:98:00:4f:de:ad:2f:a8:dc:b8:66:0b:
10:fd:cd:c5:ed:b4:2e:26:d7:e0:b7:c2:12:28:2c:bd:c9:e4:
98:fa:78:7f:b4:3f:e6:32:a2:c4:d3:73:f5:60:be:94:e1:56:
0d:50:e8:45:6d:ad:d0:93:a9:63:57:58:64:9e:1c:e7:a4:c3:
f6:21:e8:c6:ce:18:a1:a0:1a:1c:e5:18:2c:1b:91:93:c3:64:
1d:0c:f8:88:e8:d6:c4:11:8f:69:02:d7:cb:88:74:e0:05:15:
79:17:eb:6f:11:9a:37:f4:18:1f:48:b2:14:c4:18:5e:a6:cd:
a3:94:24:eb:d4:b5:fc:fd:9c:41:34:79:19:c0:fd:3b:29:2f:
c8:2f:56:13:77:de:ea:07:3a:5a:98:84:06:4f:eb:dc:26:8e:
c4:c4:e4:bc:08:86:34:ef:a3:bb:67:cf:fc:b0:42:3d:97:83:
0e:f4:35:89:b0:92:f2:c2:a0:7b:9e:bd:94:cc:7c:ab:10:02:
1f:99:ae:26:f5:1b:d9:16:d2:d0:22:fa:53:7e:53:00:c7:b5:
58:18:20:b3
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAapwMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDYxNjE1MzMyMloXDTI0MDgzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNzUzQUUxMTAvBgNVBAUTKDE5QkU1QkU2MzU1NUYxMUI3MzQxREM0
RTFDQkM5RjQ0QzlFREEwRjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDGQxeO+DPlmhJly5z5rDME+TrQLIxm6UCdsaxgyrmvUizInmijovwJeakvNBKD
TyEuRoOYKYFB87GYKFfKFbaIWWnYHrODupQqSwIbbJPzijOzGSPdLgmeJXFjJ8ls
gGTNG76ixgizYSSn/XMqkUqlGhaUk+k/3idsOFIroK3M7SHD3St1xqe3Td0K35Yk
h2Jj9GHjQ4khoYV99xryAlDuhvv7tqRDu3+b2rwloULd1mjB+TGpxTVqeBsoQC8i
Yuf0XhWmKUc0mJAD0mCVU6QLZc97EoxZbovEutPYlFsmU1m4HRD5HcWE3vBknAay
KX+n43c5v25F2xDXKx8OgMTLAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUGb5b5jVV
8RtzQdxOHLyfRMntoPcwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTc1M0FFL0YzMjk5OEJDRTFFMjExRUFBQkVFQzUyOEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE3NTNBRS9GMzI5OThCQ0UxRTIxMUVBQUJFRUM1MjhDNEY5QUUwMi9HYjViNWpW
VjhSdHpRZHhPSEx5ZlJNbnRvUGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAiV+MDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAZ5eQMA8EAgAC
MAkDBwAgAQ3zxYAwDQYJKoZIhvcNAQELBQADggEBAIyZKDRHa5O7IRp7oZYHAuBX
jxGYkbgMwIINBG9XFdXlYSUKAFLF4RDZhMKYAE/erS+o3LhmCxD9zcXttC4m1+C3
whIoLL3J5Jj6eH+0P+YyosTTc/VgvpThVg1Q6EVtrdCTqWNXWGSeHOekw/Yh6MbO
GKGgGhzlGCwbkZPDZB0M+Ijo1sQRj2kC18uIdOAFFXkX628Rmjf0GB9IshTEGF6m
zaOUJOvUtfz9nEE0eRnA/TspL8gvVhN33uoHOlqYhAZP69wmjsTE5LwIhjTvo7tn
z/ywQj2Xgw70NYmwkvLCoHuevZTMfKsQAh+Zrib1G9kW0tAi+lN+UwDHtVgYILM=
-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:17 2024 by rpki-client on console-fra.rpki-client.org