Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NLH5jq_8ZuNBzHCYT87YI3iDSck.cer
File: NLH5jq_8ZuNBzHCYT87YI3iDSck.cer (raw, json)
Hash identifier: MsrZD4iA21fhRuih3/gvW9x9omjUpNdbnYSWjHQtEeQ=
Subject key identifier: 34:B1:F9:8E:AF:FC:66:E3:41:CC:70:98:4F:CE:D8:23:78:83:49:C9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DD3C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D21E3/EC3B1DA4FB2B11EDA8299B4DC4F9AE02/NLH5jq_8ZuNBzHCYT87YI3iDSck.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D21E3/EC3B1DA4FB2B11EDA8299B4DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 02 Feb 2024 20:47:27 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: IP: 103.147.170.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 13:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122172 (0x1dd3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 2 20:47:27 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91D21E3/serialNumber=34B1F98EAFFC66E341CC70984FCED823788349C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:f7:66:0e:9c:0f:c7:4e:3a:f3:24:e4:18:4d:
39:bc:d2:46:27:72:eb:11:b0:d8:2b:2b:ab:ef:3a:
33:e4:5c:0d:08:a2:2e:99:96:77:bd:90:3e:39:00:
ae:aa:bc:3b:20:ad:f5:34:9b:0b:87:a0:8b:84:8f:
0b:41:54:43:ba:2e:22:df:a8:cc:7a:23:72:ab:0d:
b0:3b:10:50:3a:77:f3:62:4a:1b:f8:58:2f:f0:d2:
44:56:ef:fa:d0:f3:74:c2:65:4b:76:8e:2d:54:4a:
62:89:37:69:49:e2:66:79:d6:3f:1b:8c:36:96:c8:
bc:d2:b0:c1:bc:a0:aa:aa:ef:79:77:eb:ee:f5:34:
20:35:b6:ab:9a:2f:a2:35:11:22:dd:f3:f2:3e:e4:
87:c3:ae:24:0d:1c:b7:1c:4c:ca:3c:2b:b9:02:6f:
3f:86:64:04:89:87:51:9e:bb:b0:ce:7b:21:f8:32:
dd:59:09:f6:9d:21:00:63:f5:71:ee:92:f0:fc:d5:
78:15:a5:67:2e:65:b9:b3:ca:08:5c:98:aa:08:41:
07:0b:b4:54:98:f0:b2:10:83:90:bd:69:ca:7e:d6:
b5:7e:85:99:9b:dc:e8:1f:7c:1d:71:7d:f4:af:b1:
1a:2f:1b:b8:5e:39:7c:35:98:11:21:b2:b8:65:a3:
52:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:B1:F9:8E:AF:FC:66:E3:41:CC:70:98:4F:CE:D8:23:78:83:49:C9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D21E3/EC3B1DA4FB2B11EDA8299B4DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D21E3/EC3B1DA4FB2B11EDA8299B4DC4F9AE02/NLH5jq_8ZuNBzHCYT87YI3iDSck.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.147.170.0/23
Signature Algorithm: sha256WithRSAEncryption
40:32:63:f9:d4:c4:04:a5:7c:c6:6c:dd:d4:3a:d0:c9:8f:90:
e8:54:bb:21:8e:52:dc:1f:22:f6:ff:fa:ac:ec:ca:f0:8c:86:
10:f2:1f:21:87:01:ca:ce:05:61:ce:2d:cb:23:6c:03:0c:f8:
75:3b:2b:be:d4:51:70:fb:03:b9:b1:af:a6:1b:5f:27:b6:1f:
f9:45:bc:29:ab:c2:8a:ce:04:99:53:24:ec:cc:23:98:a3:38:
32:a8:1b:ab:af:db:a0:fd:05:60:bd:aa:8e:34:b5:80:ad:35:
0c:3b:44:2e:cc:cf:7e:ba:7e:01:ee:6f:4e:17:69:52:48:80:
2d:f8:bc:fb:dc:6c:d7:e2:76:40:93:a6:69:2d:11:28:05:b0:
06:37:e9:3c:bc:10:26:18:24:f0:fa:89:f3:9e:e5:9c:fd:c2:
2e:b8:50:d0:03:d9:00:85:75:c9:27:af:3c:56:d7:19:08:d0:
7a:76:2c:b6:3f:d7:8f:e4:f7:ad:48:c0:c1:51:cc:6d:14:d8:
ac:d7:81:39:85:95:45:1e:f1:e6:a6:69:df:f4:84:af:2f:37:
a9:e9:27:bd:cc:3a:1c:97:7a:48:8e:96:3d:80:77:fa:43:03:
f3:35:a8:ac:56:4c:e8:83:66:34:9c:e3:78:6f:c1:9f:ea:83:
0b:ea:58:10
-----BEGIN CERTIFICATE-----
MIIF/jCCBOagAwIBAgIDAd08MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDIwMjIwNDcyN1oXDTI1MDUwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRDIxRTMxMTAvBgNVBAUTKDM0QjFGOThFQUZGQzY2RTM0MUNDNzA5
ODRGQ0VEODIzNzg4MzQ5QzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDT92YOnA/HTjrzJOQYTTm80kYncusRsNgrK6vvOjPkXA0Ioi6Zlne9kD45AK6q
vDsgrfU0mwuHoIuEjwtBVEO6LiLfqMx6I3KrDbA7EFA6d/NiShv4WC/w0kRW7/rQ
83TCZUt2ji1USmKJN2lJ4mZ51j8bjDaWyLzSsMG8oKqq73l36+71NCA1tquaL6I1
ESLd8/I+5IfDriQNHLccTMo8K7kCbz+GZASJh1Geu7DOeyH4Mt1ZCfadIQBj9XHu
kvD81XgVpWcuZbmzyghcmKoIQQcLtFSY8LIQg5C9acp+1rV+hZmb3OgffB1xffSv
sRovG7heOXw1mBEhsrhlo1IdAgMBAAGjggLzMIIC7zAdBgNVHQ4EFgQUNLH5jq/8
ZuNBzHCYT87YI3iDSckwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUQyMUUzL0VDM0IxREE0RkIyQjExRURBODI5OUI0REM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFEMjFFMy9FQzNCMURBNEZCMkIxMUVEQTgyOTlCNERDNEY5QUUwMi9OTEg1anFf
OFp1TkJ6SENZVDg3WUkzaURTY2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAO
MAwEAgABMAYDBAFnk6owDQYJKoZIhvcNAQELBQADggEBAEAyY/nUxASlfMZs3dQ6
0MmPkOhUuyGOUtwfIvb/+qzsyvCMhhDyHyGHAcrOBWHOLcsjbAMM+HU7K77UUXD7
A7mxr6YbXye2H/lFvCmrworOBJlTJOzMI5ijODKoG6uv26D9BWC9qo40tYCtNQw7
RC7Mz366fgHub04XaVJIgC34vPvcbNfidkCTpmktESgFsAY36Ty8ECYYJPD6ifOe
5Zz9wi64UNAD2QCFdcknrzxW1xkI0Hp2LLY/14/k961IwMFRzG0U2KzXgTmFlUUe
8eamad/0hK8vN6npJ73MOhyXekiOlj2Ad/pDA/M1qKxWTOiDZjSc43hvwZ/qgwvq
WBA=
-----END CERTIFICATE-----
Generated at Thu Apr 25 14:08:33 2024 by rpki-client on console-ams.rpki-client.org