Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WCfkvYcCd-3w6xBWOptBweS-fIE.cer
File: WCfkvYcCd-3w6xBWOptBweS-fIE.cer (raw, json)
Hash identifier: NJ6aL0yoxKrYSWj5LXac+0O6YkQ9DsXStLc0ld98Bnw=
Subject key identifier: 58:27:E4:BD:87:02:77:ED:F0:EB:10:56:3A:9B:41:C1:E4:BE:7C:81
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01AF15
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A7D85/62CED48E33E211EAA4932884C4F9AE02/WCfkvYcCd-3w6xBWOptBweS-fIE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A7D85/62CED48E33E211EAA4932884C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 07 Jul 2023 18:03:12 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 58980
AS: 136469
IP: 103.15.177.0/24
IP: 103.20.245.0/24
IP: 203.24.148.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 08:06:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110357 (0x1af15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 7 18:03:12 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A91A7D85/serialNumber=5827E4BD870277EDF0EB10563A9B41C1E4BE7C81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:7d:d6:7b:0d:d2:24:ee:ad:87:c7:5d:1d:1a:
9f:68:46:15:e6:c1:2b:3e:ee:db:e4:76:a7:13:3f:
72:fb:77:32:12:1b:1d:60:01:25:91:0d:b6:4e:d1:
0e:19:30:6a:1b:e5:b7:e3:85:ca:48:3a:ff:0d:18:
42:a6:4f:63:97:4f:ce:75:4e:e0:5e:4a:81:b1:3f:
fe:ec:7d:a0:f1:d7:91:f8:59:b5:66:e8:c0:41:f1:
04:af:6a:85:ad:0f:94:63:82:5d:14:65:42:2c:38:
10:f3:33:d3:ab:be:ce:90:88:a2:79:8b:7e:b7:99:
17:4d:26:47:08:5e:c0:5b:fb:3e:6d:d4:09:d3:60:
ab:66:9c:2f:7c:b6:c1:58:71:65:7d:b9:95:94:e6:
87:74:13:94:4b:d8:30:19:85:c9:8d:d2:a5:16:7a:
84:22:f2:3f:37:eb:5f:3b:2e:a9:5c:71:59:3e:03:
51:8e:66:4e:8c:9f:cf:29:7b:5a:16:6d:a2:1e:57:
8c:ed:28:1c:ea:93:60:10:84:7a:52:52:e9:5a:b1:
09:8c:6c:88:4f:a8:a5:6e:98:9a:af:6d:ca:a4:89:
3f:4b:74:80:b0:a2:bc:18:34:6b:ba:93:b7:7a:c6:
1e:54:52:0e:d1:03:5d:a5:95:c7:70:c2:1b:70:ec:
ce:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:27:E4:BD:87:02:77:ED:F0:EB:10:56:3A:9B:41:C1:E4:BE:7C:81
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A7D85/62CED48E33E211EAA4932884C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A7D85/62CED48E33E211EAA4932884C4F9AE02/WCfkvYcCd-3w6xBWOptBweS-fIE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58980
136469
sbgp-ipAddrBlock: critical
IPv4:
103.15.177.0/24
103.20.245.0/24
203.24.148.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:be:23:a0:5d:0b:50:2f:32:b8:2d:0a:06:5f:29:27:49:91:
1a:91:dd:a0:83:47:a7:49:03:83:d5:1e:d5:b9:bd:c8:1f:8c:
25:63:fd:09:23:0e:aa:dd:a0:39:33:08:d2:0f:57:ac:ca:24:
9f:7d:1f:11:6b:04:fa:e8:df:2f:c3:d9:23:70:31:c3:bf:c3:
f9:c5:c2:b7:fb:f2:46:dc:62:81:36:32:31:bc:ac:89:89:4b:
0e:eb:4e:37:a7:7a:f7:1f:0d:69:49:27:52:48:09:87:8a:03:
5d:02:83:47:b1:ac:6e:83:a9:ac:a4:0e:2b:06:fe:91:e3:f3:
23:0e:da:1d:9a:48:b6:09:ba:01:81:a9:50:48:57:af:3c:85:
b3:9b:b0:e8:f1:f5:46:b0:08:f3:85:96:7d:df:c3:0c:de:fd:
4a:b1:3d:e5:65:e0:9a:0d:97:70:d4:52:d2:2f:ac:1c:a1:c3:
64:df:66:13:ab:5c:c5:33:5f:63:f1:ba:83:87:a4:70:02:31:
79:8b:ec:a6:df:56:03:44:33:71:3a:86:49:1e:32:c3:5f:6f:
00:4b:40:1b:17:ac:68:5b:4b:a9:c9:76:49:a3:3c:8b:11:01:
65:69:c9:cf:28:3c:41:0e:f5:59:7e:bd:fc:2e:89:87:8c:72:
3e:6f:2d:a6
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAa8VMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDcwNzE4MDMxMloXDTI0MDgzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQTdEODUxMTAvBgNVBAUTKDU4MjdFNEJEODcwMjc3RURGMEVCMTA1
NjNBOUI0MUMxRTRCRTdDODEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCZfdZ7DdIk7q2Hx10dGp9oRhXmwSs+7tvkdqcTP3L7dzISGx1gASWRDbZO0Q4Z
MGob5bfjhcpIOv8NGEKmT2OXT851TuBeSoGxP/7sfaDx15H4WbVm6MBB8QSvaoWt
D5Rjgl0UZUIsOBDzM9Orvs6QiKJ5i363mRdNJkcIXsBb+z5t1AnTYKtmnC98tsFY
cWV9uZWU5od0E5RL2DAZhcmN0qUWeoQi8j836187LqlccVk+A1GOZk6Mn88pe1oW
baIeV4ztKBzqk2AQhHpSUulasQmMbIhPqKVumJqvbcqkiT9LdICworwYNGu6k7d6
xh5UUg7RA12llcdwwhtw7M4FAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUWCfkvYcC
d+3w6xBWOptBweS+fIEwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUE3RDg1LzYyQ0VENDhFMzNFMjExRUFBNDkzMjg4NEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFBN0Q4NS82MkNFRDQ4RTMzRTIxMUVBQTQ5MzI4ODRDNEY5QUUwMi9XQ2Zrdllj
Q2QtM3c2eEJXT3B0QndlUy1mSUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQgBAf8EEDAO
oAwwCgIDAOZkAgMCFRUwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBIDBABnD7ED
BABnFPUDBAHLGJQwDQYJKoZIhvcNAQELBQADggEBAB2+I6BdC1AvMrgtCgZfKSdJ
kRqR3aCDR6dJA4PVHtW5vcgfjCVj/QkjDqrdoDkzCNIPV6zKJJ99HxFrBPro3y/D
2SNwMcO/w/nFwrf78kbcYoE2MjG8rImJSw7rTjenevcfDWlJJ1JICYeKA10Cg0ex
rG6DqaykDisG/pHj8yMO2h2aSLYJugGBqVBIV688hbObsOjx9UawCPOFln3fwwze
/UqxPeVl4JoNl3DUUtIvrByhw2TfZhOrXMUzX2PxuoOHpHACMXmL7KbfVgNEM3E6
hkkeMsNfbwBLQBsXrGhbS6nJdkmjPIsRAWVpyc8oPEEO9Vl+vfwuiYeMcj5vLaY=
-----END CERTIFICATE-----
Generated at Wed Apr 24 08:35:44 2024 by rpki-client on console-fra.rpki-client.org