Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8daraClG-4avm9zNZ95tqNG9qQ.cer
File: H8daraClG-4avm9zNZ95tqNG9qQ.cer (raw, json)
Hash identifier: LbO3VH1nx5bshV8IOPpQKEHjHFz5MwduWb/4tIsOCQs=
Subject key identifier: 1F:C7:5A:AD:A0:A5:1B:EE:1A:BE:6F:73:35:9F:79:B6:A3:46:F6:A4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C1F3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912372F/9326C790776F11EC82642461C4F9AE02/H8daraClG-4avm9zNZ95tqNG9qQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912372F/9326C790776F11EC82642461C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 04 Oct 2023 12:59:32 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 135525
IP: 103.155.50.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 01:18:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115187 (0x1c1f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 4 12:59:32 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A912372F/serialNumber=1FC75AADA0A51BEE1ABE6F73359F79B6A346F6A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:79:bc:79:50:f6:61:e6:13:de:04:b4:25:24:
58:02:a4:9d:f6:8f:c6:74:87:66:6e:cf:33:6e:30:
fb:01:8e:b7:1f:d5:bd:4d:2f:10:d6:a9:77:cd:77:
42:e4:21:97:5b:ce:59:d4:07:11:85:14:9e:50:94:
af:1d:a4:14:d0:65:fc:70:8e:9f:6d:94:07:99:d5:
2e:c3:45:f5:80:e6:00:86:a9:4c:49:d1:00:bb:b6:
fa:a0:2d:60:3a:08:82:54:d5:f2:fc:8e:4d:4a:8c:
92:fa:54:d2:4f:ff:63:d3:60:b0:40:a6:df:0b:7f:
67:cc:8a:b7:d3:66:f6:f6:73:3d:5d:af:59:80:da:
b5:f3:37:21:61:60:b5:3d:47:2d:03:b6:9c:ac:b5:
97:46:95:70:09:ff:34:5d:81:7d:1a:47:0d:95:c1:
d8:e5:22:6e:1c:22:f7:a2:75:cd:b4:36:69:82:11:
b2:ea:bf:19:12:bf:62:0b:c9:6e:f4:e2:7a:85:0c:
85:89:4a:ed:46:46:4c:71:32:cf:9e:9b:27:c0:4b:
56:13:be:a9:cf:e9:e5:30:78:1e:b6:ed:5a:d0:2d:
e6:af:13:7a:5c:e6:af:f7:b7:19:47:b5:03:15:eb:
cc:6a:be:0b:b0:32:80:8f:67:20:ee:2c:c9:4e:8c:
4a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:C7:5A:AD:A0:A5:1B:EE:1A:BE:6F:73:35:9F:79:B6:A3:46:F6:A4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912372F/9326C790776F11EC82642461C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912372F/9326C790776F11EC82642461C4F9AE02/H8daraClG-4avm9zNZ95tqNG9qQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135525
sbgp-ipAddrBlock: critical
IPv4:
103.155.50.0/23
Signature Algorithm: sha256WithRSAEncryption
89:57:eb:ba:c2:be:35:a8:8e:30:ab:e3:2e:48:c0:ff:a7:bb:
63:68:c1:f4:d8:06:d0:a5:12:2a:3f:a0:ec:67:e6:08:57:22:
8a:48:b4:a9:89:78:09:d8:c3:15:63:57:43:3e:c6:07:91:1b:
75:89:6f:11:f1:44:3c:51:07:b1:d7:57:25:fc:4a:f1:46:67:
e1:1b:af:45:96:e9:71:9e:9a:a8:ad:d2:25:44:fa:e2:f4:64:
97:df:e7:b3:ae:c9:d6:d0:76:41:17:8d:89:22:77:d8:86:7d:
49:78:ac:18:fe:6b:5f:13:5c:2d:08:21:c4:e0:7c:03:73:c8:
a7:3b:0e:63:6d:da:cf:81:e6:27:84:4b:46:e3:20:b9:21:c1:
c2:b2:6e:6f:e9:df:42:ab:1c:a7:7d:da:f8:d0:ac:b6:4d:ae:
3d:ca:6d:f3:0e:1e:1e:7d:50:25:1d:20:4d:67:a0:23:b4:56:
de:6c:90:cc:08:69:0b:90:af:0e:ca:65:a5:2e:ae:27:63:fb:
35:79:6b:ea:90:17:02:b0:7d:9d:13:6b:8c:25:51:fc:f6:a7:
f4:87:b2:be:45:cb:7b:7c:da:9e:4d:e9:8c:f2:9b:cd:76:77:
29:87:aa:86:e9:e1:20:be:92:1b:17:33:cd:82:71:c5:3d:0b:
b5:a9:b2:36
-----BEGIN CERTIFICATE-----
MIIGGjCCBQKgAwIBAgIDAcHzMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMTAwNDEyNTkzMloXDTI0MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMjM3MkYxMTAvBgNVBAUTKDFGQzc1QUFEQTBBNTFCRUUxQUJFNkY3
MzM1OUY3OUI2QTM0NkY2QTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCUebx5UPZh5hPeBLQlJFgCpJ32j8Z0h2ZuzzNuMPsBjrcf1b1NLxDWqXfNd0Lk
IZdbzlnUBxGFFJ5QlK8dpBTQZfxwjp9tlAeZ1S7DRfWA5gCGqUxJ0QC7tvqgLWA6
CIJU1fL8jk1KjJL6VNJP/2PTYLBApt8Lf2fMirfTZvb2cz1dr1mA2rXzNyFhYLU9
Ry0DtpystZdGlXAJ/zRdgX0aRw2VwdjlIm4cIveidc20NmmCEbLqvxkSv2ILyW70
4nqFDIWJSu1GRkxxMs+emyfAS1YTvqnP6eUweB627VrQLeavE3pc5q/3txlHtQMV
68xqvguwMoCPZyDuLMlOjEoTAgMBAAGjggMPMIIDCzAdBgNVHQ4EFgQUH8daraCl
G+4avm9zNZ95tqNG9qQwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTIzNzJGLzkzMjZDNzkwNzc2RjExRUM4MjY0MjQ2MUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEyMzcyRi85MzI2Qzc5MDc3NkYxMUVDODI2NDI0NjFDNEY5QUUwMi9IOGRhcmFD
bEctNGF2bTl6Tlo5NXRxTkc5cVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhFlMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5syMA0GCSqG
SIb3DQEBCwUAA4IBAQCJV+u6wr41qI4wq+MuSMD/p7tjaMH02AbQpRIqP6DsZ+YI
VyKKSLSpiXgJ2MMVY1dDPsYHkRt1iW8R8UQ8UQex11cl/ErxRmfhG69Flulxnpqo
rdIlRPri9GSX3+ezrsnW0HZBF42JInfYhn1JeKwY/mtfE1wtCCHE4HwDc8inOw5j
bdrPgeYnhEtG4yC5IcHCsm5v6d9Cqxynfdr40Ky2Ta49ym3zDh4efVAlHSBNZ6Aj
tFbebJDMCGkLkK8OymWlLq4nY/s1eWvqkBcCsH2dE2uMJVH89qf0h7K+Rct7fNqe
TemM8pvNdncph6qG6eEgvpIbFzPNgnHFPQu1qbI2
-----END CERTIFICATE-----
Generated at Fri Apr 19 02:02:43 2024 by rpki-client on console-fra.rpki-client.org