Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ru8EvxGYvg4qMTqnrQqw_H4IHEU.cer
File: Ru8EvxGYvg4qMTqnrQqw_H4IHEU.cer (raw, json)
Hash identifier: 6RSg70k8JJwDj4eVaCYc4jBF9IabjUMTk/ThulZxB1U=
Subject key identifier: 46:EF:04:BF:11:98:BE:0E:2A:31:3A:A7:AD:0A:B0:FC:7E:08:1C:45
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D9B5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9188F45/FD996514B8AA11EE99D6C81BC4F9AE02/Ru8EvxGYvg4qMTqnrQqw_H4IHEU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9188F45/FD996514B8AA11EE99D6C81BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 21 Jan 2024 22:18:30 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 23735
IP: 103.233.60.0/22
IP: 116.206.172.0/22
IP: 202.49.164.0/23
IP: 202.49.168.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 00:15:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121269 (0x1d9b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 21 22:18:30 2024 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A9188F45/serialNumber=46EF04BF1198BE0E2A313AA7AD0AB0FC7E081C45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:51:f8:01:c3:8a:39:dc:42:ac:1a:ea:58:08:
59:8e:67:8f:26:f2:92:1d:a6:20:38:70:77:8a:af:
89:be:b0:42:62:3d:da:a9:4f:4a:dc:4b:28:dc:17:
9a:5f:65:86:17:ed:e6:10:c9:53:b7:8e:39:12:72:
cd:39:d4:4b:27:c7:9b:9c:9c:20:4a:d3:1d:54:89:
29:6e:be:c4:74:09:5c:a8:fa:1b:88:33:1e:b4:c8:
1f:bb:36:68:86:24:26:60:2d:a7:2d:f6:8d:fd:85:
30:04:87:e4:1b:2c:28:c0:c7:62:b3:c1:1c:1f:b3:
34:46:9e:8c:a4:cc:43:88:d4:aa:2e:a7:d6:a8:11:
0e:5d:16:6f:75:10:b8:5c:4d:7b:df:cb:4e:5a:fc:
ab:ae:2c:1c:ea:12:80:e2:1c:f4:a2:ea:27:71:9a:
db:09:e1:ad:1c:2a:e4:55:bf:08:d9:cd:4c:90:ab:
85:88:65:fb:da:32:5b:c4:11:15:99:66:b7:e9:d6:
24:3a:bc:c1:ba:22:53:82:99:49:b3:e7:1a:ab:4e:
93:8e:e7:1d:a8:97:05:ce:8b:6f:85:b2:58:fa:f6:
f8:ae:e0:82:8d:64:a7:31:b9:4f:f1:69:26:05:1e:
67:bb:e2:2f:16:99:5d:8d:31:ae:a5:88:5f:b7:a8:
f8:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:EF:04:BF:11:98:BE:0E:2A:31:3A:A7:AD:0A:B0:FC:7E:08:1C:45
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9188F45/FD996514B8AA11EE99D6C81BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9188F45/FD996514B8AA11EE99D6C81BC4F9AE02/Ru8EvxGYvg4qMTqnrQqw_H4IHEU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
23735
sbgp-ipAddrBlock: critical
IPv4:
103.233.60.0/22
116.206.172.0/22
202.49.164.0/23
202.49.168.0/24
Signature Algorithm: sha256WithRSAEncryption
36:3e:dd:4e:d1:9c:1c:09:66:2e:a0:17:6c:07:18:5b:69:62:
21:70:c5:46:d6:f7:e9:73:f1:83:31:4d:f9:d7:72:bc:28:10:
1b:ca:d6:f6:a5:0b:ed:32:7d:85:65:cf:7b:ed:c2:30:e9:b2:
66:bc:f2:6b:81:03:61:31:e3:a9:ae:7b:91:cf:36:f7:b1:72:
35:60:bc:a1:e5:a9:36:98:cf:be:4b:63:e3:81:c7:0a:9c:71:
54:dc:b9:ca:48:61:2b:4d:53:f7:66:6d:b4:c9:50:3f:d6:b7:
1b:62:fa:0c:0e:ae:70:6b:ec:16:85:be:fc:08:3e:3d:91:7f:
1d:bf:fe:14:d3:b2:59:77:fa:6b:51:ca:ab:f6:10:3d:8e:4a:
e7:d4:9b:b8:f7:bb:47:81:05:3a:fb:cf:54:00:c5:dd:89:4e:
8b:68:e4:ee:30:da:1d:24:ca:82:e9:f1:77:ac:1d:f4:50:02:
b0:77:3e:0a:c4:e2:dd:fd:1c:16:3f:62:d7:b6:e0:1b:09:6c:
26:23:5d:df:2b:3b:3b:57:6a:7f:25:3d:7e:8d:9e:25:4f:f4:
b9:a5:64:4c:c8:09:57:05:90:7d:d8:2b:e0:dc:03:98:59:27:
31:13:78:2d:49:3f:c5:87:97:a1:ee:60:8b:cc:60:06:ee:2b:
7a:7c:24:ae
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAdm1MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDEyMTIyMTgzMFoXDTI0MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxODhGNDUxMTAvBgNVBAUTKDQ2RUYwNEJGMTE5OEJFMEUyQTMxM0FB
N0FEMEFCMEZDN0UwODFDNDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC6UfgBw4o53EKsGupYCFmOZ48m8pIdpiA4cHeKr4m+sEJiPdqpT0rcSyjcF5pf
ZYYX7eYQyVO3jjkScs051Esnx5ucnCBK0x1UiSluvsR0CVyo+huIMx60yB+7NmiG
JCZgLact9o39hTAEh+QbLCjAx2KzwRwfszRGnoykzEOI1Koup9aoEQ5dFm91ELhc
TXvfy05a/KuuLBzqEoDiHPSi6idxmtsJ4a0cKuRVvwjZzUyQq4WIZfvaMlvEERWZ
Zrfp1iQ6vMG6IlOCmUmz5xqrTpOO5x2olwXOi2+Fslj69viu4IKNZKcxuU/xaSYF
Hme74i8WmV2NMa6liF+3qPgpAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQURu8EvxGY
vg4qMTqnrQqw/H4IHEUwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTg4RjQ1L0ZEOTk2NTE0QjhBQTExRUU5OUQ2QzgxQkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE4OEY0NS9GRDk5NjUxNEI4QUExMUVFOTlENkM4MUJDNEY5QUUwMi9SdThFdnhH
WXZnNHFNVHFuclFxd19INElIRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGQYIKwYBBQUHAQgBAf8ECjAI
oAYwBAICXLcwMQYIKwYBBQUHAQcBAf8EIjAgMB4EAgABMBgDBAJn6TwDBAJ0zqwD
BAHKMaQDBADKMagwDQYJKoZIhvcNAQELBQADggEBADY+3U7RnBwJZi6gF2wHGFtp
YiFwxUbW9+lz8YMxTfnXcrwoEBvK1valC+0yfYVlz3vtwjDpsma88muBA2Ex46mu
e5HPNvexcjVgvKHlqTaYz75LY+OBxwqccVTcucpIYStNU/dmbbTJUD/Wtxti+gwO
rnBr7BaFvvwIPj2Rfx2//hTTsll3+mtRyqv2ED2OSufUm7j3u0eBBTr7z1QAxd2J
Toto5O4w2h0kyoLp8XesHfRQArB3PgrE4t39HBY/Yte24BsJbCYjXd8rOztXan8l
PX6NniVP9LmlZEzICVcFkH3YK+DcA5hZJzETeC1JP8WHl6HuYIvMYAbuK3p8JK4=
-----END CERTIFICATE-----
Generated at Thu May 2 01:07:05 2024 by rpki-client on console-fra.rpki-client.org