Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYkRMAEE18WLMm5WZLPXmi1GRuA.cer
File: OYkRMAEE18WLMm5WZLPXmi1GRuA.cer (raw, json)
Hash identifier: th+ZBlgSJH7jRcXOmYGIED7I5aspP0gdUctGe3XGlE8=
Subject key identifier: 39:89:11:30:01:04:D7:C5:8B:32:6E:56:64:B3:D7:9A:2D:46:46:E0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C547
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 20 Oct 2023 17:22:50 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 138167
IP: 103.121.224.0/22
IP: 2403:72c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Apr 2024 22:43:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116039 (0x1c547)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 20 17:22:50 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A918F1C9/serialNumber=398911300104D7C58B326E5664B3D79A2D4646E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:20:b2:0f:65:13:ae:93:40:7a:3a:60:b6:8a:
7b:15:72:62:28:2f:d3:a0:ce:74:c3:18:36:f9:c7:
0e:c2:b9:8e:50:e7:5c:d6:4d:84:ab:5c:82:a3:fd:
bf:df:5f:0e:96:b1:ac:83:a5:e5:80:26:6f:5a:17:
c0:69:df:6d:7b:f4:2e:29:d1:ce:04:69:16:6e:fd:
0e:6e:88:aa:dc:04:50:43:b3:6a:8e:94:58:ed:4a:
18:db:82:e5:08:bd:d5:c4:cb:68:61:3e:f4:ec:96:
18:4f:70:db:bd:0f:b2:1b:47:12:d4:2b:2a:4a:ab:
71:50:41:2e:32:12:6f:a2:37:e0:4b:f7:03:4f:93:
2f:12:5e:0b:e2:8f:4a:99:59:56:4f:7c:76:7d:e2:
a5:cb:57:9a:1e:87:a6:58:3c:0d:50:d5:4c:61:07:
9d:84:ff:e4:d7:9b:5e:5d:25:4b:6b:50:9b:83:d8:
ed:d4:eb:50:c4:7e:85:a7:3b:3a:fd:c6:16:5d:79:
ee:34:89:b9:6b:f9:be:72:93:0b:8b:38:ff:5f:f2:
6a:1c:09:d4:be:d7:a6:cf:a1:56:5a:06:81:86:04:
cc:ff:c8:11:c4:5c:2d:5c:52:bd:53:6f:76:e7:cf:
57:2c:ef:cc:54:ac:6d:4e:8f:01:00:ce:a8:0c:76:
dd:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:89:11:30:01:04:D7:C5:8B:32:6E:56:64:B3:D7:9A:2D:46:46:E0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138167
sbgp-ipAddrBlock: critical
IPv4:
103.121.224.0/22
IPv6:
2403:72c0::/32
Signature Algorithm: sha256WithRSAEncryption
3b:11:e9:b6:98:e0:73:34:44:79:84:ef:b1:50:df:3d:5d:cd:
6a:85:f2:b6:57:4f:17:94:92:1c:f7:f0:cb:33:33:fb:00:90:
03:0e:f0:33:bf:0f:c9:9e:ad:c9:6b:79:8a:c4:93:41:d0:6d:
80:c7:fb:66:90:e1:62:35:b3:d8:55:c5:8c:70:3f:ab:d0:1b:
8f:1a:b6:d5:0f:70:b8:b5:36:f5:83:1e:b0:f0:6b:53:e4:42:
ef:53:61:c9:11:e2:ec:12:95:1a:25:cf:e3:01:2e:47:fa:93:
c4:79:20:10:11:db:a2:6f:a9:d6:63:66:c0:bb:74:13:ef:5d:
b2:11:20:6b:2c:64:24:c6:7a:c6:b9:2a:5a:9b:76:d0:15:40:
0e:2d:36:1f:c6:6a:2a:fe:cf:7c:a8:c3:04:6b:6f:29:c3:bc:
cc:6b:54:e4:f3:ce:c6:29:eb:89:81:e7:ae:85:6e:18:27:f1:
39:55:da:1d:45:92:fd:3c:ab:04:05:ad:18:0d:30:b7:e7:d4:
74:9c:d3:2b:70:e6:38:62:b8:35:a9:72:c8:d5:52:8d:71:ba:
ca:6f:93:12:02:d5:24:3a:25:7e:9d:79:6c:07:74:f3:e4:21:
03:4b:39:48:da:1e:1c:5d:a0:41:c0:ca:86:2d:f2:65:3f:d8:
95:19:b1:af
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAcVHMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMTAyMDE3MjI1MFoXDTI0MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxOEYxQzkxMTAvBgNVBAUTKDM5ODkxMTMwMDEwNEQ3QzU4QjMyNkU1
NjY0QjNENzlBMkQ0NjQ2RTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDNILIPZROuk0B6OmC2insVcmIoL9OgznTDGDb5xw7CuY5Q51zWTYSrXIKj/b/f
Xw6WsayDpeWAJm9aF8Bp32179C4p0c4EaRZu/Q5uiKrcBFBDs2qOlFjtShjbguUI
vdXEy2hhPvTslhhPcNu9D7IbRxLUKypKq3FQQS4yEm+iN+BL9wNPky8SXgvij0qZ
WVZPfHZ94qXLV5oeh6ZYPA1Q1UxhB52E/+TXm15dJUtrUJuD2O3U61DEfoWnOzr9
xhZdee40iblr+b5ykwuLOP9f8mocCdS+16bPoVZaBoGGBMz/yBHEXC1cUr1Tb3bn
z1cs78xUrG1OjwEAzqgMdt3VAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUOYkRMAEE
18WLMm5WZLPXmi1GRuAwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MThGMUM5LzZBNTdBQjhDN0Y5NTExRUFCMEVEODUzN0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE4RjFDOS82QTU3QUI4QzdGOTUxMUVBQjBFRDg1MzdDNEY5QUUwMi9PWWtSTUFF
RTE4V0xNbTVXWkxQWG1pMUdSdUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhu3MC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZ3ngMA0EAgAC
MAcDBQAkA3LAMA0GCSqGSIb3DQEBCwUAA4IBAQA7Eem2mOBzNER5hO+xUN89Xc1q
hfK2V08XlJIc9/DLMzP7AJADDvAzvw/Jnq3Ja3mKxJNB0G2Ax/tmkOFiNbPYVcWM
cD+r0BuPGrbVD3C4tTb1gx6w8GtT5ELvU2HJEeLsEpUaJc/jAS5H+pPEeSAQEdui
b6nWY2bAu3QT712yESBrLGQkxnrGuSpam3bQFUAOLTYfxmoq/s98qMMEa28pw7zM
a1Tk887GKeuJgeeuhW4YJ/E5VdodRZL9PKsEBa0YDTC359R0nNMrcOY4Yrg1qXLI
1VKNcbrKb5MSAtUkOiV+nXlsB3Tz5CEDSzlI2h4cXaBBwMqGLfJlP9iVGbGv
-----END CERTIFICATE-----
Generated at Thu Apr 18 23:21:58 2024 by rpki-client on console-fra.rpki-client.org