Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WdGXNa3cboCAl6x3G0a7N1vCMOg.cer
File: WdGXNa3cboCAl6x3G0a7N1vCMOg.cer (raw, json)
Hash identifier: 4M1PBAuOC96e6xfLx12Qr4MTDgFIFNHe2C8hYgnDc8g=
Subject key identifier: 59:D1:97:35:AD:DC:6E:80:80:97:AC:77:1B:46:BB:37:5B:C2:30:E8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DADC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/WdGXNa3cboCAl6x3G0a7N1vCMOg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 29 Jan 2024 03:38:47 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 132686
IP: 103.73.236.0/22
IP: 2407:6e80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121564 (0x1dadc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 29 03:38:47 2024 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91422D7/serialNumber=59D19735ADDC6E808097AC771B46BB375BC230E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a8:50:44:e1:9f:38:7c:ff:a3:e1:b3:ec:11:
69:7b:25:dd:77:1f:5e:df:38:bd:59:f7:53:93:35:
bf:09:2b:7c:f0:23:05:eb:70:ba:58:b7:b4:1c:31:
e4:b7:67:c9:84:02:7d:94:54:a3:d6:eb:52:07:21:
36:05:a3:97:4d:75:9d:33:e2:d6:9c:c3:06:cf:3b:
cd:5d:00:4f:2c:47:b1:0f:35:55:c6:10:dc:35:54:
00:05:e0:2a:eb:44:b1:91:4e:98:c9:96:35:82:ec:
83:88:46:62:ee:0c:f1:f8:3f:df:69:99:d7:b0:74:
3c:bb:ba:4e:f2:80:eb:1d:10:ea:9a:1f:cd:2f:6c:
69:8e:f7:75:37:06:96:12:e2:cf:d8:81:46:e8:06:
3e:0c:23:94:01:55:ad:78:63:69:7f:4e:06:56:f8:
50:bf:5a:c8:da:47:1a:3c:9c:08:55:30:63:d5:8d:
b9:e1:99:40:cf:42:c7:18:da:20:a8:15:ee:85:11:
b7:1a:6d:43:d5:9c:6f:78:e2:2e:7a:7a:4f:f0:90:
e0:a4:35:36:eb:17:0e:30:c3:c5:d8:f5:aa:a1:94:
46:91:2c:15:5c:ba:89:77:19:30:ce:68:33:84:8a:
3c:46:b7:26:0d:f0:2b:d6:cb:ec:1c:ce:5e:a2:41:
e4:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:D1:97:35:AD:DC:6E:80:80:97:AC:77:1B:46:BB:37:5B:C2:30:E8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/WdGXNa3cboCAl6x3G0a7N1vCMOg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132686
sbgp-ipAddrBlock: critical
IPv4:
103.73.236.0/22
IPv6:
2407:6e80::/32
Signature Algorithm: sha256WithRSAEncryption
ab:6f:d0:7e:89:51:e3:d3:c6:ae:ce:cc:0f:bd:63:e5:52:a6:
a8:54:f8:40:9c:00:3f:3a:7c:6d:a4:16:5f:a2:23:a4:9e:7b:
28:8a:4b:3f:05:72:ff:29:a7:e1:24:30:2e:96:4c:c7:36:11:
68:32:2b:c3:4c:51:6a:4c:bb:37:59:bd:f3:77:bb:42:02:32:
a6:6b:9f:63:81:8b:43:a2:01:6e:65:b6:8d:ee:a0:d6:41:78:
3b:31:ce:bd:1b:c2:9c:44:8a:0c:80:e1:f9:b7:ea:b1:5c:6a:
08:5d:6d:5f:e0:5e:53:87:03:f4:b7:bd:5e:64:09:ad:d9:f0:
b1:59:38:da:dc:95:e1:72:4e:ef:b9:db:43:31:58:e1:80:01:
f9:bb:24:a7:6d:5a:00:c0:5a:cf:f8:25:f4:db:ce:90:c0:af:
49:01:04:ba:71:57:36:74:85:6e:e1:7b:27:c0:9a:30:5d:75:
cb:7f:a5:b6:7c:1d:c7:e6:ab:a0:7f:e4:1a:28:cf:2e:82:77:
13:f6:5b:3d:02:e0:40:e2:eb:26:e7:0a:86:b9:f3:6b:60:05:
f3:07:0d:52:5c:94:fb:ae:80:55:27:20:64:4b:11:09:55:bf:
80:ad:2a:eb:e8:58:52:61:1f:a6:93:21:17:e6:25:fd:dd:bb:
d3:17:51:2d
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAdrcMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDEyOTAzMzg0N1oXDTI0MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNDIyRDcxMTAvBgNVBAUTKDU5RDE5NzM1QUREQzZFODA4MDk3QUM3
NzFCNDZCQjM3NUJDMjMwRTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDAqFBE4Z84fP+j4bPsEWl7Jd13H17fOL1Z91OTNb8JK3zwIwXrcLpYt7QcMeS3
Z8mEAn2UVKPW61IHITYFo5dNdZ0z4tacwwbPO81dAE8sR7EPNVXGENw1VAAF4Crr
RLGRTpjJljWC7IOIRmLuDPH4P99pmdewdDy7uk7ygOsdEOqaH80vbGmO93U3BpYS
4s/YgUboBj4MI5QBVa14Y2l/TgZW+FC/WsjaRxo8nAhVMGPVjbnhmUDPQscY2iCo
Fe6FEbcabUPVnG944i56ek/wkOCkNTbrFw4ww8XY9aqhlEaRLBVcuol3GTDOaDOE
ijxGtyYN8CvWy+wczl6iQeR5AgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUWdGXNa3c
boCAl6x3G0a7N1vCMOgwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTQyMkQ3LzVCOUY3MUQyRUQzMDExRUNCRjA3RjAxMkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE0MjJENy81QjlGNzFEMkVEMzAxMUVDQkYwN0YwMTJDNEY5QUUwMi9XZEdYTmEz
Y2JvQ0FsNngzRzBhN04xdkNNT2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAgZOMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZ0nsMA0EAgAC
MAcDBQAkB26AMA0GCSqGSIb3DQEBCwUAA4IBAQCrb9B+iVHj08auzswPvWPlUqao
VPhAnAA/OnxtpBZfoiOknnsoiks/BXL/KafhJDAulkzHNhFoMivDTFFqTLs3Wb3z
d7tCAjKma59jgYtDogFuZbaN7qDWQXg7Mc69G8KcRIoMgOH5t+qxXGoIXW1f4F5T
hwP0t71eZAmt2fCxWTja3JXhck7vudtDMVjhgAH5uySnbVoAwFrP+CX0286QwK9J
AQS6cVc2dIVu4XsnwJowXXXLf6W2fB3H5qugf+QaKM8ugncT9ls9AuBA4usm5wqG
ufNrYAXzBw1SXJT7roBVJyBkSxEJVb+ArSrr6FhSYR+mkyEX5iX93bvTF1Et
-----END CERTIFICATE-----
Generated at Fri Apr 26 11:02:59 2024 by rpki-client on console-ams.rpki-client.org