Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JNqnqbrGVI2Kxs0QWBxLe_0HZGU.cer
File: JNqnqbrGVI2Kxs0QWBxLe_0HZGU.cer (raw, json)
Hash identifier: w+CZjh9tW97bZ2P16VqKK30jatLaCX4t3i7nf6/q/aY=
Subject key identifier: 24:DA:A7:A9:BA:C6:54:8D:8A:C6:CD:10:58:1C:4B:7B:FD:07:64:65
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BFB3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9119A40/0BD45622007A11EAB8B31B10C4F9AE02/JNqnqbrGVI2Kxs0QWBxLe_0HZGU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9119A40/0BD45622007A11EAB8B31B10C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 26 Sep 2023 12:55:06 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 138205
IP: 103.129.236.0/22
IP: 2403:8b40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Apr 2024 08:35:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114611 (0x1bfb3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 26 12:55:06 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A9119A40/serialNumber=24DAA7A9BAC6548D8AC6CD10581C4B7BFD076465
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:0f:af:c0:c6:c0:1f:0a:e2:cb:29:34:17:2e:
a8:a4:b0:43:eb:d2:5b:3e:e6:d4:4d:26:6c:50:6f:
41:13:92:49:dc:33:2b:96:ea:5e:b5:84:e7:0c:e9:
11:96:74:05:d7:a8:ef:12:ed:c1:a9:76:9c:aa:79:
64:cd:9b:a3:8d:7d:d3:4d:d5:fa:d6:a4:ba:5a:9c:
95:e9:d1:39:d6:c4:ad:9a:20:ad:b7:b9:89:70:30:
1f:be:de:a0:7f:a8:7d:a7:33:a2:e4:52:4d:e5:15:
b5:c1:96:ca:da:f8:eb:dc:90:d7:27:d8:4e:2f:e4:
83:9c:5e:18:20:34:7e:d8:42:26:52:15:30:8a:44:
3f:85:b8:7e:da:b5:2b:c0:b1:66:db:93:b6:ec:3f:
2e:86:93:e1:09:42:81:f8:d8:7c:e5:24:c4:87:3d:
25:4a:dc:af:df:84:8d:4f:77:84:db:95:4a:a4:2f:
61:60:55:6c:60:04:df:c3:8a:8c:3d:da:b7:d9:60:
03:cd:8e:65:b5:33:ae:e9:1f:ac:87:d6:04:d3:7b:
cc:56:50:c8:0b:15:24:ec:31:e3:c6:69:ec:4c:72:
50:39:11:16:b7:62:8e:03:37:a1:4b:f7:cf:7f:da:
32:cb:57:67:58:06:2e:0e:c0:69:1f:b2:aa:e8:8e:
78:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:DA:A7:A9:BA:C6:54:8D:8A:C6:CD:10:58:1C:4B:7B:FD:07:64:65
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9119A40/0BD45622007A11EAB8B31B10C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9119A40/0BD45622007A11EAB8B31B10C4F9AE02/JNqnqbrGVI2Kxs0QWBxLe_0HZGU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138205
sbgp-ipAddrBlock: critical
IPv4:
103.129.236.0/22
IPv6:
2403:8b40::/32
Signature Algorithm: sha256WithRSAEncryption
4f:2c:ae:bc:4e:f6:e7:7a:46:e2:77:18:c9:31:6e:ac:31:13:
56:6e:40:a2:08:f3:23:22:ee:dc:36:8b:d0:66:2b:50:32:53:
a8:62:bd:1d:07:81:6d:c2:51:41:67:07:c7:fa:28:67:46:40:
60:f4:04:cd:12:a3:1f:a2:85:7f:aa:4f:9d:b2:a3:c5:59:f0:
28:45:5c:0e:e2:94:c5:29:04:65:e3:d0:c9:7b:21:28:62:8f:
ad:76:90:fd:d8:09:7d:de:d6:3e:70:4b:40:68:77:da:94:31:
d3:ac:1e:b8:37:5f:17:90:f8:33:6e:40:2f:8c:6b:c3:8c:2c:
e3:a3:b2:3d:03:b2:93:bc:72:af:7e:66:30:07:b7:14:9c:73:
fd:be:ca:a4:7b:dc:7b:c4:27:f5:c4:40:55:65:7a:a8:e2:9f:
0f:de:3e:3a:f5:62:ac:76:75:c2:bc:a1:60:21:7b:49:7f:a9:
68:3f:19:9d:82:71:92:a7:ed:9f:67:dd:b8:55:42:3a:b3:03:
c3:72:50:37:70:45:99:b5:f9:0f:90:aa:4b:bc:ec:bd:28:e3:
1b:a7:4b:92:83:eb:c6:d4:a1:80:5d:cb:ff:cc:4d:17:63:3f:
e3:37:50:16:95:ef:fb:f6:76:a7:0c:af:fa:d1:50:7d:23:c2:
d4:82:3f:fb
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAb+zMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDkyNjEyNTUwNloXDTI0MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMTlBNDAxMTAvBgNVBAUTKDI0REFBN0E5QkFDNjU0OEQ4QUM2Q0Qx
MDU4MUM0QjdCRkQwNzY0NjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDaD6/AxsAfCuLLKTQXLqiksEPr0ls+5tRNJmxQb0ETkkncMyuW6l61hOcM6RGW
dAXXqO8S7cGpdpyqeWTNm6ONfdNN1frWpLpanJXp0TnWxK2aIK23uYlwMB++3qB/
qH2nM6LkUk3lFbXBlsra+OvckNcn2E4v5IOcXhggNH7YQiZSFTCKRD+FuH7atSvA
sWbbk7bsPy6Gk+EJQoH42HzlJMSHPSVK3K/fhI1Pd4TblUqkL2FgVWxgBN/Diow9
2rfZYAPNjmW1M67pH6yH1gTTe8xWUMgLFSTsMePGaexMclA5ERa3Yo4DN6FL989/
2jLLV2dYBi4OwGkfsqrojngVAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUJNqnqbrG
VI2Kxs0QWBxLe/0HZGUwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTE5QTQwLzBCRDQ1NjIyMDA3QTExRUFCOEIzMUIxMEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTExOUE0MC8wQkQ0NTYyMjAwN0ExMUVBQjhCMzFCMTBDNEY5QUUwMi9KTnFucWJy
R1ZJMkt4czBRV0J4TGVfMEhaR1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhvdMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZ4HsMA0EAgAC
MAcDBQAkA4tAMA0GCSqGSIb3DQEBCwUAA4IBAQBPLK68TvbnekbidxjJMW6sMRNW
bkCiCPMjIu7cNovQZitQMlOoYr0dB4FtwlFBZwfH+ihnRkBg9ATNEqMfooV/qk+d
sqPFWfAoRVwO4pTFKQRl49DJeyEoYo+tdpD92Al93tY+cEtAaHfalDHTrB64N18X
kPgzbkAvjGvDjCzjo7I9A7KTvHKvfmYwB7cUnHP9vsqke9x7xCf1xEBVZXqo4p8P
3j469WKsdnXCvKFgIXtJf6loPxmdgnGSp+2fZ924VUI6swPDclA3cEWZtfkPkKpL
vOy9KOMbp0uSg+vG1KGAXcv/zE0XYz/jN1AWle/79nanDK/60VB9I8LUgj/7
-----END CERTIFICATE-----
Generated at Thu Apr 18 11:22:04 2024 by rpki-client on console-ams.rpki-client.org