Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W2r-ya7p6tTclkY7oanLJyM9bf8.cer
File: W2r-ya7p6tTclkY7oanLJyM9bf8.cer (raw, json)
Hash identifier: FlxRHfEnQ4pHjQhuR0EsYh6fWJSWH6/X36vCAAG1sLY=
Subject key identifier: 5B:6A:FE:C9:AE:E9:EA:D4:DC:96:46:3B:A1:A9:CB:27:23:3D:6D:FF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021896
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D81D4/DAE382AA1D9A11E288D06C8808B02CD2/W2r-ya7p6tTclkY7oanLJyM9bf8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D81D4/DAE382AA1D9A11E288D06C8808B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 02 Nov 2024 13:19:20 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 45518
IP: 103.161.82.0/23
IP: 203.153.210.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137366 (0x21896)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 2 13:19:20 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91D81D4/serialNumber=5B6AFEC9AEE9EAD4DC96463BA1A9CB27233D6DFF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:d9:71:76:1c:fa:16:45:45:4b:85:b2:45:7a:
17:fa:ea:2a:a0:f5:50:27:c6:d5:56:11:1b:66:0c:
77:3e:6f:02:e2:03:b5:f9:ac:90:bc:3d:0e:fc:be:
54:ec:d5:de:8c:15:92:30:20:a2:d0:5e:49:d7:04:
b9:7d:eb:41:9f:ed:2c:98:02:17:39:3a:7d:47:f2:
da:fc:7e:9f:c3:2a:ff:60:33:e1:d5:20:cd:3c:54:
3e:98:b2:42:4e:ed:7c:96:f4:21:6e:61:47:77:86:
e5:65:97:03:39:4f:33:5a:83:df:3d:c0:8a:79:98:
c0:2d:2c:2d:f0:3d:cb:96:7a:61:e0:85:26:d2:a0:
79:8e:1f:07:a4:ac:fc:e5:b7:98:bc:0e:b6:97:15:
3f:05:69:19:2f:b6:4c:68:b7:16:57:0e:15:89:63:
31:34:40:5f:26:f4:6b:85:57:0a:b7:06:13:36:5b:
07:36:cd:c7:30:29:d5:28:87:a9:71:83:1e:75:95:
4f:f3:25:2f:b8:99:f0:d6:5c:5f:bc:87:6a:4e:91:
b4:6f:0a:f5:b8:86:a9:f4:8b:01:0d:03:82:09:13:
9c:c7:02:e2:41:6c:d1:e2:c7:d8:b6:cd:86:d4:57:
9e:99:43:f8:0b:99:a0:20:f2:00:c6:9e:65:32:12:
17:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:6A:FE:C9:AE:E9:EA:D4:DC:96:46:3B:A1:A9:CB:27:23:3D:6D:FF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D81D4/DAE382AA1D9A11E288D06C8808B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D81D4/DAE382AA1D9A11E288D06C8808B02CD2/W2r-ya7p6tTclkY7oanLJyM9bf8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
45518
sbgp-ipAddrBlock: critical
IPv4:
103.161.82.0/23
203.153.210.0/23
Signature Algorithm: sha256WithRSAEncryption
1b:ca:ff:c7:38:3b:c3:f6:16:b0:2e:bd:7b:29:40:11:f3:60:
9a:1c:a1:f5:2d:cf:43:5b:40:b1:a3:d7:7a:84:19:0a:61:9d:
c7:1e:d5:2c:c6:1d:94:32:c3:ab:38:7b:78:75:e3:f4:59:5d:
c3:ce:87:6f:db:a1:17:2f:8c:ae:d4:06:8f:c4:89:bd:34:ac:
36:f7:8a:a3:93:9d:96:62:3b:a2:9d:28:fd:8c:a2:38:3a:f7:
c0:39:f3:3a:b2:a6:b3:6e:57:5b:0e:3e:3f:53:e5:40:96:dc:
82:80:bd:a3:bc:4c:50:b9:c4:80:74:2c:42:ee:cf:c9:4d:88:
7a:a7:09:f7:93:4b:e2:57:d7:e3:94:bc:61:5c:34:56:ba:ff:
4a:5e:63:c0:f1:8b:8f:7f:6f:87:8f:fc:94:cd:8e:a0:fb:c2:
21:0a:ec:6a:3f:89:d3:42:a7:86:37:f7:ac:69:e8:63:22:22:
0d:c9:26:ab:2b:4a:01:23:14:dc:39:0a:7e:9f:92:83:f8:30:
ed:37:22:6e:9f:42:06:64:24:09:f4:fe:a1:22:6b:85:d8:92:
1d:b9:69:9a:2a:98:80:03:2a:da:6f:15:ac:48:39:fe:12:6b:
09:0e:11:ad:e3:87:bf:2a:ab:e4:ca:c5:b8:52:2a:83:86:07:
70:9d:83:bb
-----BEGIN CERTIFICATE-----
MIIGIDCCBQigAwIBAgIDAhiWMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTEwMjEzMTkyMFoXDTI2MDEzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRDgxRDQxMTAvBgNVBAUTKDVCNkFGRUM5QUVFOUVBRDREQzk2NDYz
QkExQTlDQjI3MjMzRDZERkYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDb2XF2HPoWRUVLhbJFehf66iqg9VAnxtVWERtmDHc+bwLiA7X5rJC8PQ78vlTs
1d6MFZIwIKLQXknXBLl960Gf7SyYAhc5On1H8tr8fp/DKv9gM+HVIM08VD6YskJO
7XyW9CFuYUd3huVllwM5TzNag989wIp5mMAtLC3wPcuWemHghSbSoHmOHwekrPzl
t5i8DraXFT8FaRkvtkxotxZXDhWJYzE0QF8m9GuFVwq3BhM2Wwc2zccwKdUoh6lx
gx51lU/zJS+4mfDWXF+8h2pOkbRvCvW4hqn0iwENA4IJE5zHAuJBbNHix9i2zYbU
V56ZQ/gLmaAg8gDGnmUyEhc5AgMBAAGjggMVMIIDETAdBgNVHQ4EFgQUW2r+ya7p
6tTclkY7oanLJyM9bf8wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUQ4MUQ0L0RBRTM4MkFBMUQ5QTExRTI4OEQwNkM4ODA4QjAyQ0QyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFEODFENC9EQUUzODJBQTFEOUExMUUyODhEMDZDODgwOEIwMkNEMi9XMnIteWE3
cDZ0VGNsa1k3b2FuTEp5TTliZjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDALHOMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBZ6FSAwQBy5nS
MA0GCSqGSIb3DQEBCwUAA4IBAQAbyv/HODvD9hawLr17KUAR82CaHKH1Lc9DW0Cx
o9d6hBkKYZ3HHtUsxh2UMsOrOHt4deP0WV3Dzodv26EXL4yu1AaPxIm9NKw294qj
k52WYjuinSj9jKI4OvfAOfM6sqazbldbDj4/U+VAltyCgL2jvExQucSAdCxC7s/J
TYh6pwn3k0viV9fjlLxhXDRWuv9KXmPA8YuPf2+Hj/yUzY6g+8IhCuxqP4nTQqeG
N/esaehjIiINySarK0oBIxTcOQp+n5KD+DDtNyJun0IGZCQJ9P6hImuF2JIduWma
KpiAAyrabxWsSDn+EmsJDhGt44e/KqvkysW4UiqDhgdwnYO7
-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:44 2024 by rpki-client on console-ams.rpki-client.org