Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer
File: PqQ0fS2f1utqAbROVXH4iwiswls.cer (raw, json)
Hash identifier: hnvRCWMRN59h55LdYTlsH26uW/CTIi9nCfHdCEtP/JU=
Subject key identifier: 3E:A4:34:7D:2D:9F:D6:EB:6A:01:B4:4E:55:71:F8:8B:08:AC:C2:5B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DD9F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 06 Feb 2024 06:22:54 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 134375
IP: 43.230.64.0/22
IP: 45.122.120.0/22
IP: 103.62.236.0/22
IP: 103.77.0.0/22
IP: 103.251.140.0/22
IP: 116.206.156.0/22
IP: 203.189.252.0/22
IP: 2402:8a80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 10:14:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122271 (0x1dd9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 6 06:22:54 2024 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A917BB51/serialNumber=3EA4347D2D9FD6EB6A01B44E5571F88B08ACC25B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:00:3e:70:80:a0:10:06:55:ca:b9:31:79:b0:
3b:f5:17:1c:59:e7:7f:24:04:ed:ba:83:d6:16:00:
64:65:0b:58:d2:a3:9e:ab:c7:d3:be:0e:94:d9:f3:
61:4a:2e:f3:22:10:ee:27:90:f6:98:39:04:25:b6:
21:d3:04:de:5a:14:d7:52:bb:9c:50:e4:00:49:10:
ab:4d:bd:d9:4b:0c:e1:42:4d:a7:2b:d9:d5:66:81:
28:fa:53:c5:7c:e6:33:48:83:af:e3:fd:26:74:58:
31:70:a4:be:85:06:df:cc:ab:9c:06:81:30:14:5d:
70:0a:20:46:ff:45:3a:ad:6d:03:76:1d:95:d7:7d:
ed:db:c0:50:ce:21:41:5d:3f:26:3c:33:c9:e8:e6:
af:12:e6:df:79:b4:fc:f3:57:b6:88:7a:b8:71:dd:
44:a6:b4:87:78:1c:a9:9c:5b:a4:4f:41:b6:99:47:
7a:3e:30:07:a1:36:f7:56:82:33:f2:a9:56:c2:b6:
38:0a:e6:64:ee:9a:47:f0:68:0f:4c:36:54:5d:fc:
ee:d5:96:6e:b2:38:49:c7:d6:fe:76:8e:91:b9:7a:
1c:03:2f:21:9b:02:36:80:01:64:0f:a5:68:ae:0b:
2b:48:6b:e1:3a:cf:f8:54:13:fe:b6:24:f5:d4:d3:
28:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:A4:34:7D:2D:9F:D6:EB:6A:01:B4:4E:55:71:F8:8B:08:AC:C2:5B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134375
sbgp-ipAddrBlock: critical
IPv4:
43.230.64.0/22
45.122.120.0/22
103.62.236.0/22
103.77.0.0/22
103.251.140.0/22
116.206.156.0/22
203.189.252.0/22
IPv6:
2402:8a80::/32
Signature Algorithm: sha256WithRSAEncryption
12:45:a3:d9:d3:da:1a:97:61:9d:cf:7b:9c:14:2b:20:c9:bd:
b9:fc:61:88:1e:8d:98:b9:e8:bd:84:08:6d:ea:2b:87:ef:8a:
25:05:26:e0:c8:e5:72:3c:20:4a:8b:94:f1:79:b0:ea:c6:7b:
e7:79:64:0d:3b:c8:6d:7e:57:a1:a3:36:5b:66:d0:63:75:a5:
3f:24:6a:ce:d0:c9:77:c0:c2:ca:d0:db:7d:df:ff:61:fa:81:
c2:46:ad:23:f0:a8:ac:78:9a:27:65:b4:23:d9:bc:00:43:27:
e3:55:6c:3c:72:09:cf:f6:51:bf:ec:7a:1b:f0:60:5c:3b:89:
16:97:f8:6d:c4:56:6d:93:bd:b6:c9:3f:0e:52:c4:ea:ed:06:
9f:fc:65:40:72:26:a6:01:b5:c3:21:a7:2a:a3:c9:07:8e:6d:
31:8e:d5:df:9c:63:2e:be:4e:f9:9f:58:94:03:ca:4b:86:16:
0c:74:05:4a:5a:7d:1b:93:1a:c8:80:a2:f0:e3:0a:9f:5c:3a:
c6:82:f7:89:3c:94:8b:ec:48:fb:70:9b:f5:83:53:a3:c0:e4:
3e:be:17:91:52:57:7d:21:e6:2e:b2:3f:29:6f:37:86:8a:84:
94:1b:e7:88:bf:38:c7:1e:c7:8b:ba:5b:55:6e:5a:0d:f1:b2:
dc:37:4b:06
-----BEGIN CERTIFICATE-----
MIIGTTCCBTWgAwIBAgIDAd2fMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDIwNjA2MjI1NFoXDTI0MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxN0JCNTExMTAvBgNVBAUTKDNFQTQzNDdEMkQ5RkQ2RUI2QTAxQjQ0
RTU1NzFGODhCMDhBQ0MyNUIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQD4AD5wgKAQBlXKuTF5sDv1FxxZ538kBO26g9YWAGRlC1jSo56rx9O+DpTZ82FK
LvMiEO4nkPaYOQQltiHTBN5aFNdSu5xQ5ABJEKtNvdlLDOFCTacr2dVmgSj6U8V8
5jNIg6/j/SZ0WDFwpL6FBt/Mq5wGgTAUXXAKIEb/RTqtbQN2HZXXfe3bwFDOIUFd
PyY8M8no5q8S5t95tPzzV7aIerhx3USmtId4HKmcW6RPQbaZR3o+MAehNvdWgjPy
qVbCtjgK5mTumkfwaA9MNlRd/O7Vlm6yOEnH1v52jpG5ehwDLyGbAjaAAWQPpWiu
CytIa+E6z/hUE/62JPXU0yirAgMBAAGjggNCMIIDPjAdBgNVHQ4EFgQUPqQ0fS2f
1utqAbROVXH4iwiswlswHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTdCQjUxLzI1QUNGNUMwQzRCODExRUVCRDcxQzQ0NkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE3QkI1MS8yNUFDRjVDMEM0QjgxMUVFQkQ3MUM0NDZDNEY5QUUwMi9QcVEwZlMy
ZjF1dHFBYlJPVlhINGl3aXN3bHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAgznMFIGCCsGAQUFBwEHAQH/BEMwQTAwBAIAATAqAwQCK+ZAAwQCLXp4
AwQCZz7sAwQCZ00AAwQCZ/uMAwQCdM6cAwQCy738MA0EAgACMAcDBQAkAoqAMA0G
CSqGSIb3DQEBCwUAA4IBAQASRaPZ09oal2Gdz3ucFCsgyb25/GGIHo2Yuei9hAht
6iuH74olBSbgyOVyPCBKi5TxebDqxnvneWQNO8htflehozZbZtBjdaU/JGrO0Ml3
wMLK0Nt93/9h+oHCRq0j8KiseJonZbQj2bwAQyfjVWw8cgnP9lG/7Hob8GBcO4kW
l/htxFZtk722yT8OUsTq7Qaf/GVAciamAbXDIacqo8kHjm0xjtXfnGMuvk75n1iU
A8pLhhYMdAVKWn0bkxrIgKLw4wqfXDrGgveJPJSL7Ej7cJv1g1OjwOQ+vheRUld9
IeYusj8pbzeGioSUG+eIvzjHHseLultVbloN8bLcN0sG
-----END CERTIFICATE-----
Generated at Thu May 2 11:35:17 2024 by rpki-client on console-fra.rpki-client.org