Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.cer
File: Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.cer (raw, json)
Hash identifier: GA48RB3wvuu0gZvdcfp7iWJ9vufJRSHr8Vd1zFsPoUg=
Subject key identifier: 43:82:F9:AA:30:16:FC:BF:31:F9:24:CF:13:2E:95:BF:92:70:9A:DD
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CFD4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 05 Dec 2023 07:02:51 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 151986
IP: 43.248.56.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 00:13:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118740 (0x1cfd4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 5 07:02:51 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91237A2/serialNumber=4382F9AA3016FCBF31F924CF132E95BF92709ADD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:60:77:81:55:91:8d:42:3b:07:a0:f4:c2:21:
9c:fb:c8:12:db:b5:b9:45:b6:c9:cd:ec:5a:87:d7:
11:83:1d:b6:f3:22:a2:23:f3:18:af:86:d1:0f:2d:
44:2f:17:eb:cc:3b:74:cc:e2:e7:89:fe:39:e2:2e:
c5:5f:81:c6:3f:fc:b5:3e:5d:54:24:47:43:58:c2:
d9:17:88:10:bc:0e:57:94:59:9e:19:6c:7c:17:ff:
f5:37:21:76:83:48:cc:39:fb:8f:9c:a4:f3:08:80:
2c:bf:13:30:74:85:70:fe:a4:20:2f:a2:0a:2e:d7:
83:6c:26:3b:47:1e:c0:7f:94:9d:90:1b:8b:72:04:
f6:8d:cc:c8:b7:2d:53:d0:d0:44:5f:0a:42:0a:00:
f0:6f:8b:0c:da:60:0c:14:95:ce:35:af:21:af:59:
4a:92:ba:d4:66:fb:20:32:46:87:1c:00:84:e0:55:
78:d3:f9:8b:14:ff:7f:91:c6:1d:7d:3d:71:a5:f8:
18:f6:f2:71:d9:4d:88:d3:08:cb:7c:06:98:7e:a7:
b2:70:44:78:62:69:b9:57:bd:26:0e:20:cb:08:36:
2c:fc:c2:13:e4:ae:a1:dc:86:bc:40:fa:86:0d:85:
2c:87:66:fd:d7:19:e0:bc:f1:49:71:76:07:eb:41:
76:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:82:F9:AA:30:16:FC:BF:31:F9:24:CF:13:2E:95:BF:92:70:9A:DD
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151986
sbgp-ipAddrBlock: critical
IPv4:
43.248.56.0/23
Signature Algorithm: sha256WithRSAEncryption
03:43:a3:66:aa:4e:5d:06:c7:2f:dd:1c:8b:86:2b:41:1a:d9:
38:63:da:33:dc:81:a2:77:ca:07:b3:f7:04:e6:47:16:3e:04:
b3:91:c9:75:c5:54:91:e7:86:de:83:8d:1e:d6:a0:56:f2:3b:
1a:09:85:96:20:61:1e:8d:0a:c2:c2:34:bc:be:57:42:90:00:
84:6d:ce:d1:b8:4e:36:92:19:12:3c:e6:f4:3d:92:3c:72:5e:
e4:09:32:b6:29:57:90:1b:27:9f:c7:67:15:c0:ea:06:98:46:
f2:38:31:9d:1f:9b:44:74:72:82:62:79:85:e1:aa:69:15:0c:
04:5c:5e:6e:9e:b1:d6:17:df:35:6d:88:8a:aa:98:ef:1b:21:
6e:dc:e4:98:a9:26:ad:49:0a:c4:73:6f:cf:15:07:8a:57:7f:
76:ca:34:4a:b3:7c:35:33:7c:77:09:9d:c7:c0:55:1a:34:0c:
43:d4:70:47:05:7a:b1:51:51:78:29:3a:1c:fa:4d:95:62:d8:
28:bc:cf:63:0d:71:83:64:f1:c6:7e:51:be:49:ff:2c:23:fa:
46:a9:3a:e6:0a:51:5f:44:a7:bc:27:e4:d8:d6:56:aa:ff:90:
49:34:35:13:d4:8f:73:17:d0:56:8f:9b:67:b5:81:38:d7:53:
26:72:54:f7
-----BEGIN CERTIFICATE-----
MIIGGjCCBQKgAwIBAgIDAc/UMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMTIwNTA3MDI1MVoXDTI1MDEzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMjM3QTIxMTAvBgNVBAUTKDQzODJGOUFBMzAxNkZDQkYzMUY5MjRD
RjEzMkU5NUJGOTI3MDlBREQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDeYHeBVZGNQjsHoPTCIZz7yBLbtblFtsnN7FqH1xGDHbbzIqIj8xivhtEPLUQv
F+vMO3TM4ueJ/jniLsVfgcY//LU+XVQkR0NYwtkXiBC8DleUWZ4ZbHwX//U3IXaD
SMw5+4+cpPMIgCy/EzB0hXD+pCAvogou14NsJjtHHsB/lJ2QG4tyBPaNzMi3LVPQ
0ERfCkIKAPBviwzaYAwUlc41ryGvWUqSutRm+yAyRoccAITgVXjT+YsU/3+Rxh19
PXGl+Bj28nHZTYjTCMt8Bph+p7JwRHhiablXvSYOIMsINiz8whPkrqHchrxA+oYN
hSyHZv3XGeC88UlxdgfrQXYHAgMBAAGjggMPMIIDCzAdBgNVHQ4EFgQUQ4L5qjAW
/L8x+STPEy6Vv5Jwmt0wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTIzN0EyLzQ5RTZFM0Q2OTMzQzExRUVCNDIxMEYyOUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEyMzdBMi80OUU2RTNENjkzM0MxMUVFQjQyMTBGMjlDNEY5QUUwMi9RNEw1cWpB
V19MOHgtU1RQRXk2VnY1SndtdDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAlGyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBK/g4MA0GCSqG
SIb3DQEBCwUAA4IBAQADQ6Nmqk5dBscv3RyLhitBGtk4Y9oz3IGid8oHs/cE5kcW
PgSzkcl1xVSR54beg40e1qBW8jsaCYWWIGEejQrCwjS8vldCkACEbc7RuE42khkS
POb0PZI8cl7kCTK2KVeQGyefx2cVwOoGmEbyODGdH5tEdHKCYnmF4appFQwEXF5u
nrHWF981bYiKqpjvGyFu3OSYqSatSQrEc2/PFQeKV392yjRKs3w1M3x3CZ3HwFUa
NAxD1HBHBXqxUVF4KToc+k2VYtgovM9jDXGDZPHGflG+Sf8sI/pGqTrmClFfRKe8
J+TY1laq/5BJNDUT1I9zF9BWj5tntYE411MmclT3
-----END CERTIFICATE-----
Generated at Thu May 2 00:53:09 2024 by rpki-client on console-ams.rpki-client.org