Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVHtxDo5mbE3HOXAQUIIP-KH0PI.cer
File: PVHtxDo5mbE3HOXAQUIIP-KH0PI.cer (raw, json)
Hash identifier: 4E5jfjSjYEiA8cIXhT//q2MrOTq+JkCxCTMmqiQqebA=
Subject key identifier: 3D:51:ED:C4:3A:39:99:B1:37:1C:E5:C0:41:42:08:3F:E2:87:D0:F2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E1A7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 01 Mar 2024 00:43:08 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 141459
IP: 103.160.22.0/23
IP: 2406:e1c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 03:13:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123303 (0x1e1a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 1 00:43:08 2024 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=A914E6AA/serialNumber=3D51EDC43A3999B1371CE5C04142083FE287D0F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:fc:3d:a0:10:fe:d5:f0:76:b8:e3:7d:6b:63:
cd:b9:d7:be:6e:66:15:b9:28:cf:8e:37:b2:e4:eb:
f9:a2:a9:8a:f3:e7:f9:e7:26:f3:3a:19:08:7e:1e:
74:89:e1:40:ed:57:e4:f9:ac:60:dd:88:c0:fb:e7:
08:c0:0c:35:52:27:7b:9e:b4:dd:d2:01:5d:18:e4:
82:fe:0f:22:46:6a:33:5a:3b:88:4f:c6:c7:12:40:
5c:4b:5d:e9:75:ff:a6:f2:4f:39:88:6f:75:43:9e:
35:8b:ce:8b:5c:f0:87:54:3d:e1:b6:3f:cd:12:ca:
aa:da:57:28:7d:da:4f:1c:3f:3c:9d:9b:c6:61:fd:
13:45:de:a6:55:b7:bf:37:13:a3:46:a0:47:49:41:
8c:9f:c5:5c:b0:29:27:64:bd:0e:7c:90:bc:aa:92:
c6:92:4f:e4:fc:8c:1a:08:75:9a:b3:03:66:0d:55:
c2:84:84:1c:48:86:47:54:f6:a5:17:8f:12:44:f1:
e5:45:90:ae:5c:68:eb:d3:1c:c2:3d:a5:4f:16:14:
4f:d2:ff:4f:c6:ae:56:e7:a2:fc:6f:77:c0:86:e8:
77:03:0b:ff:a9:8d:0f:af:21:24:88:f5:d5:98:f0:
c4:28:a0:c8:58:e7:76:f7:63:44:09:63:1f:10:d5:
76:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:51:ED:C4:3A:39:99:B1:37:1C:E5:C0:41:42:08:3F:E2:87:D0:F2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141459
sbgp-ipAddrBlock: critical
IPv4:
103.160.22.0/23
IPv6:
2406:e1c0::/32
Signature Algorithm: sha256WithRSAEncryption
cf:01:94:0d:f6:36:1b:f0:9d:29:78:df:06:88:bb:23:43:92:
92:eb:46:d4:8f:6e:4a:10:8c:75:16:e3:65:6c:65:26:50:de:
6e:99:e8:34:ec:72:24:85:b7:d9:75:1f:da:15:97:af:1d:54:
10:17:11:5e:d1:65:7d:bb:d6:9b:3d:fc:86:ed:ed:14:be:17:
d5:2c:b7:1d:7d:e7:ee:0f:07:a3:b0:58:dd:4a:74:bd:56:f6:
45:9f:1c:6a:a5:69:4c:e6:27:fb:77:4e:72:59:ec:3c:63:5e:
6c:53:80:2d:83:1c:bb:6f:66:9a:b4:c0:64:43:16:60:a4:c4:
a7:2d:d0:13:49:93:5b:4c:62:d0:bc:07:e7:44:5b:62:14:e1:
2c:74:2c:c4:7d:d3:49:9f:96:ab:bb:3b:cd:62:05:2f:4f:07:
77:c1:fa:a3:2b:41:25:6d:3c:83:22:c1:11:bb:34:cf:05:80:
08:ef:10:d7:83:fa:f2:0b:35:78:d4:32:61:7c:78:84:44:09:
37:4c:08:ca:d3:6f:e9:bd:f8:a7:a9:95:d5:75:3f:b5:91:9c:
c1:45:45:7f:84:7f:19:98:80:dc:6c:7c:13:d2:f8:6f:c7:0f:
de:64:48:d1:e9:90:ce:ab:c7:e8:fe:71:4e:a5:c5:2a:89:7a:
87:57:39:2d
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAeGnMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDMwMTAwNDMwOFoXDTI0MDcwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNEU2QUExMTAvBgNVBAUTKDNENTFFREM0M0EzOTk5QjEzNzFDRTVD
MDQxNDIwODNGRTI4N0QwRjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDj/D2gEP7V8Ha4431rY825175uZhW5KM+ON7Lk6/miqYrz5/nnJvM6GQh+HnSJ
4UDtV+T5rGDdiMD75wjADDVSJ3uetN3SAV0Y5IL+DyJGajNaO4hPxscSQFxLXel1
/6byTzmIb3VDnjWLzotc8IdUPeG2P80SyqraVyh92k8cPzydm8Zh/RNF3qZVt783
E6NGoEdJQYyfxVywKSdkvQ58kLyqksaST+T8jBoIdZqzA2YNVcKEhBxIhkdU9qUX
jxJE8eVFkK5caOvTHMI9pU8WFE/S/0/Grlbnovxvd8CG6HcDC/+pjQ+vISSI9dWY
8MQooMhY53b3Y0QJYx8Q1XZzAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUPVHtxDo5
mbE3HOXAQUIIP+KH0PIwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTRFNkFBLzhFREIxMDdFQURBODExRUJBN0M5RjU2N0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE0RTZBQS84RURCMTA3RUFEQTgxMUVCQTdDOUY1NjdDNEY5QUUwMi9QVkh0eERv
NW1iRTNIT1hBUVVJSVAtS0gwUEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAiiTMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBZ6AWMA0EAgAC
MAcDBQAkBuHAMA0GCSqGSIb3DQEBCwUAA4IBAQDPAZQN9jYb8J0peN8GiLsjQ5KS
60bUj25KEIx1FuNlbGUmUN5umeg07HIkhbfZdR/aFZevHVQQFxFe0WV9u9abPfyG
7e0UvhfVLLcdfefuDwejsFjdSnS9VvZFnxxqpWlM5if7d05yWew8Y15sU4Atgxy7
b2aatMBkQxZgpMSnLdATSZNbTGLQvAfnRFtiFOEsdCzEfdNJn5aruzvNYgUvTwd3
wfqjK0ElbTyDIsERuzTPBYAI7xDXg/ryCzV41DJhfHiERAk3TAjK02/pvfinqZXV
dT+1kZzBRUV/hH8ZmIDcbHwT0vhvxw/eZEjR6ZDOq8fo/nFOpcUqiXqHVzkt
-----END CERTIFICATE-----
Generated at Thu May 2 04:04:58 2024 by rpki-client on console-fra.rpki-client.org