Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QzjOPAYxCnqU8JuxNvrLwoNVr8s.cer
File: QzjOPAYxCnqU8JuxNvrLwoNVr8s.cer (raw, json)
Hash identifier: D1mipmjFp3e7q7U0owbCMzdnMinHW625xJTY5giGLHw=
Subject key identifier: 43:38:CE:3C:06:31:0A:7A:94:F0:9B:B1:36:FA:CB:C2:83:55:AF:CB
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E4C9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A1946/C67ED1FE17EF11EBA57F5135C4F9AE02/QzjOPAYxCnqU8JuxNvrLwoNVr8s.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A1946/C67ED1FE17EF11EBA57F5135C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 15 Mar 2024 18:17:32 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 138644
IP: 103.135.128.0/23
IP: 2001:df1:bf80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 23:35:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124105 (0x1e4c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 15 18:17:32 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91A1946/serialNumber=4338CE3C06310A7A94F09BB136FACBC28355AFCB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:f3:70:19:fe:ab:56:f8:5c:b5:19:ef:2b:0f:
2f:2d:6f:76:e2:3a:32:fa:ae:cc:96:74:13:77:fa:
1c:91:df:bc:22:f4:7c:db:09:78:20:ac:28:5e:52:
cd:11:95:77:2f:a1:51:87:ea:76:1b:7f:ab:93:d5:
c3:5b:90:1a:a5:e6:07:42:56:c0:8c:ec:0e:bf:98:
3d:b7:a5:63:2f:8d:68:99:ac:23:b3:30:bb:c5:75:
46:38:d3:4e:1c:ce:d4:72:09:96:28:36:0b:a5:2a:
fa:fc:83:bd:44:c7:d3:33:6f:dc:48:7e:01:91:9e:
3a:c4:ca:2e:eb:d2:bf:eb:ad:b7:6f:41:e2:0e:06:
bf:1b:58:e4:c6:88:73:9e:7c:18:61:ed:3e:c7:a2:
9f:da:21:4c:45:cd:39:ae:fa:c8:01:1d:69:60:ec:
22:09:28:bb:6c:34:21:1f:c2:d8:81:1b:23:e1:ae:
c3:0f:bb:cd:95:95:3c:ba:e3:6b:e2:cf:eb:01:7a:
46:23:2e:30:e9:65:7f:d5:79:8d:1f:5b:6d:84:8d:
47:d5:11:d8:4a:bf:98:65:24:06:4e:bd:d8:c1:1b:
91:ee:06:b6:28:f7:9f:4e:e7:7b:27:06:ac:db:3a:
e6:cc:6b:a6:5d:11:0d:ac:b7:fd:48:75:cc:ce:93:
80:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:38:CE:3C:06:31:0A:7A:94:F0:9B:B1:36:FA:CB:C2:83:55:AF:CB
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A1946/C67ED1FE17EF11EBA57F5135C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A1946/C67ED1FE17EF11EBA57F5135C4F9AE02/QzjOPAYxCnqU8JuxNvrLwoNVr8s.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138644
sbgp-ipAddrBlock: critical
IPv4:
103.135.128.0/23
IPv6:
2001:df1:bf80::/48
Signature Algorithm: sha256WithRSAEncryption
22:ea:52:c7:18:82:5b:84:2c:f1:94:93:5f:3e:1c:de:c3:28:
56:b4:23:5e:8e:a7:1b:97:e8:85:0e:f7:20:99:fc:c9:65:aa:
35:00:c7:76:38:82:56:c6:73:5c:38:95:c5:37:d8:dd:40:66:
70:75:24:94:2b:8b:1f:e3:0a:cf:92:28:70:b4:cb:12:5f:53:
7c:1c:a2:84:0f:f4:f4:70:b4:c5:40:19:e3:06:75:c9:b7:b1:
16:fe:2f:b6:01:70:c6:03:14:db:87:a1:38:52:39:b2:b7:7f:
9f:47:d3:ea:72:00:61:9b:32:88:9f:27:a5:40:4f:d0:b6:cf:
7e:a1:6b:ac:4b:de:8d:74:1f:3b:58:d1:02:d7:d8:b4:cc:0c:
a7:ef:62:f1:34:0c:a5:e8:9f:0e:20:6a:52:b0:1a:d7:b3:c9:
95:5d:e7:4b:b4:ca:9c:b8:f5:00:97:6e:25:e0:d6:2e:b5:19:
d4:c8:23:73:b5:77:f6:a3:24:f3:34:ca:49:91:98:46:ef:58:
ad:3a:1e:31:64:74:0f:ba:d4:6c:0d:9b:f8:99:99:f9:8c:fc:
3b:7e:16:44:21:dd:bd:e5:bf:f7:7a:fd:f6:b7:92:94:fe:d1:
0a:d4:6c:e2:19:21:06:e7:eb:17:b1:c6:dd:68:5e:8f:86:29:
ef:4f:7c:5b
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAeTJMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDMxNTE4MTczMloXDTI1MDUwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQTE5NDYxMTAvBgNVBAUTKDQzMzhDRTNDMDYzMTBBN0E5NEYwOUJC
MTM2RkFDQkMyODM1NUFGQ0IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDr83AZ/qtW+Fy1Ge8rDy8tb3biOjL6rsyWdBN3+hyR37wi9HzbCXggrCheUs0R
lXcvoVGH6nYbf6uT1cNbkBql5gdCVsCM7A6/mD23pWMvjWiZrCOzMLvFdUY4004c
ztRyCZYoNgulKvr8g71Ex9Mzb9xIfgGRnjrEyi7r0r/rrbdvQeIOBr8bWOTGiHOe
fBhh7T7Hop/aIUxFzTmu+sgBHWlg7CIJKLtsNCEfwtiBGyPhrsMPu82VlTy642vi
z+sBekYjLjDpZX/VeY0fW22EjUfVEdhKv5hlJAZOvdjBG5HuBrYo959O53snBqzb
OubMa6ZdEQ2st/1IdczOk4DVAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUQzjOPAYx
CnqU8JuxNvrLwoNVr8swHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUExOTQ2L0M2N0VEMUZFMTdFRjExRUJBNTdGNTEzNUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFBMTk0Ni9DNjdFRDFGRTE3RUYxMUVCQTU3RjUxMzVDNEY5QUUwMi9RempPUEFZ
eENucVU4SnV4TnZyTHdvTlZyOHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAh2UMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ4eAMA8EAgAC
MAkDBwAgAQ3xv4AwDQYJKoZIhvcNAQELBQADggEBACLqUscYgluELPGUk18+HN7D
KFa0I16OpxuX6IUO9yCZ/MllqjUAx3Y4glbGc1w4lcU32N1AZnB1JJQrix/jCs+S
KHC0yxJfU3wcooQP9PRwtMVAGeMGdcm3sRb+L7YBcMYDFNuHoThSObK3f59H0+py
AGGbMoifJ6VAT9C2z36ha6xL3o10HztY0QLX2LTMDKfvYvE0DKXonw4galKwGtez
yZVd50u0ypy49QCXbiXg1i61GdTII3O1d/ajJPM0ykmRmEbvWK06HjFkdA+61GwN
m/iZmfmM/Dt+FkQh3b3lv/d6/fa3kpT+0QrUbOIZIQbn6xexxt1oXo+GKe9PfFs=
-----END CERTIFICATE-----
Generated at Sat Apr 20 01:10:15 2024 by rpki-client on console-ams.rpki-client.org