Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WdGXNa3cboCAl6x3G0a7N1vCMOg.cer
File: WdGXNa3cboCAl6x3G0a7N1vCMOg.cer (raw, json)
Hash identifier: Kjbfc/qU/E+Iv02bcRqxlDHVY1mz4NnOMIVIyaF1V3I=
Subject key identifier: 59:D1:97:35:AD:DC:6E:80:80:97:AC:77:1B:46:BB:37:5B:C2:30:E8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0216A5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/WdGXNa3cboCAl6x3G0a7N1vCMOg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 28 Oct 2024 14:47:39 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 132686
IP: 103.73.236.0/22
IP: 2407:6e80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 01:13:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136869 (0x216a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 28 14:47:39 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91422D7/serialNumber=59D19735ADDC6E808097AC771B46BB375BC230E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a8:50:44:e1:9f:38:7c:ff:a3:e1:b3:ec:11:
69:7b:25:dd:77:1f:5e:df:38:bd:59:f7:53:93:35:
bf:09:2b:7c:f0:23:05:eb:70:ba:58:b7:b4:1c:31:
e4:b7:67:c9:84:02:7d:94:54:a3:d6:eb:52:07:21:
36:05:a3:97:4d:75:9d:33:e2:d6:9c:c3:06:cf:3b:
cd:5d:00:4f:2c:47:b1:0f:35:55:c6:10:dc:35:54:
00:05:e0:2a:eb:44:b1:91:4e:98:c9:96:35:82:ec:
83:88:46:62:ee:0c:f1:f8:3f:df:69:99:d7:b0:74:
3c:bb:ba:4e:f2:80:eb:1d:10:ea:9a:1f:cd:2f:6c:
69:8e:f7:75:37:06:96:12:e2:cf:d8:81:46:e8:06:
3e:0c:23:94:01:55:ad:78:63:69:7f:4e:06:56:f8:
50:bf:5a:c8:da:47:1a:3c:9c:08:55:30:63:d5:8d:
b9:e1:99:40:cf:42:c7:18:da:20:a8:15:ee:85:11:
b7:1a:6d:43:d5:9c:6f:78:e2:2e:7a:7a:4f:f0:90:
e0:a4:35:36:eb:17:0e:30:c3:c5:d8:f5:aa:a1:94:
46:91:2c:15:5c:ba:89:77:19:30:ce:68:33:84:8a:
3c:46:b7:26:0d:f0:2b:d6:cb:ec:1c:ce:5e:a2:41:
e4:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:D1:97:35:AD:DC:6E:80:80:97:AC:77:1B:46:BB:37:5B:C2:30:E8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/WdGXNa3cboCAl6x3G0a7N1vCMOg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132686
sbgp-ipAddrBlock: critical
IPv4:
103.73.236.0/22
IPv6:
2407:6e80::/32
Signature Algorithm: sha256WithRSAEncryption
b4:f5:b1:f8:60:1f:a4:ee:f5:7c:53:97:7e:5d:2a:d7:96:45:
1f:a0:1e:61:06:de:ac:a3:5a:2c:47:36:df:0d:10:77:f1:f3:
bc:65:21:58:c3:db:75:38:11:db:1d:ef:e5:ad:fa:06:d2:54:
83:ee:15:a2:dc:d5:28:84:0f:f4:e9:72:72:0c:cd:ee:4d:38:
bd:62:3a:ce:25:33:4b:83:d0:1f:2a:fb:65:9b:84:5e:9f:ea:
91:c3:6f:b2:bd:f6:0e:33:ef:3c:ab:30:6a:b0:92:58:a7:25:
2c:c6:d2:53:59:50:cb:43:5c:6e:df:06:71:23:0f:53:63:bf:
1a:de:ae:d4:52:f6:04:7c:ea:81:b6:3f:c4:e2:ac:b2:cc:a9:
f7:3c:b2:99:62:55:09:5f:41:c0:20:dd:e2:71:5f:b6:9b:15:
43:07:18:4a:65:1a:da:9c:d4:58:04:0e:c4:79:4d:76:27:8c:
aa:b2:04:c4:df:f1:0d:46:50:9d:c5:d2:ce:46:31:df:8a:ca:
cd:3f:5b:9c:d4:f7:04:c0:07:78:10:6a:9d:58:da:38:a9:d0:
f5:1f:89:02:d3:0f:9a:4c:dc:10:bc:d4:05:25:68:d3:77:03:
da:6e:73:e3:bd:7d:65:48:2d:43:fe:bd:92:03:ec:2c:c7:42:
89:f8:dc:a2
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAhalMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTAyODE0NDczOVoXDTI1MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNDIyRDcxMTAvBgNVBAUTKDU5RDE5NzM1QUREQzZFODA4MDk3QUM3
NzFCNDZCQjM3NUJDMjMwRTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDAqFBE4Z84fP+j4bPsEWl7Jd13H17fOL1Z91OTNb8JK3zwIwXrcLpYt7QcMeS3
Z8mEAn2UVKPW61IHITYFo5dNdZ0z4tacwwbPO81dAE8sR7EPNVXGENw1VAAF4Crr
RLGRTpjJljWC7IOIRmLuDPH4P99pmdewdDy7uk7ygOsdEOqaH80vbGmO93U3BpYS
4s/YgUboBj4MI5QBVa14Y2l/TgZW+FC/WsjaRxo8nAhVMGPVjbnhmUDPQscY2iCo
Fe6FEbcabUPVnG944i56ek/wkOCkNTbrFw4ww8XY9aqhlEaRLBVcuol3GTDOaDOE
ijxGtyYN8CvWy+wczl6iQeR5AgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUWdGXNa3c
boCAl6x3G0a7N1vCMOgwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTQyMkQ3LzVCOUY3MUQyRUQzMDExRUNCRjA3RjAxMkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE0MjJENy81QjlGNzFEMkVEMzAxMUVDQkYwN0YwMTJDNEY5QUUwMi9XZEdYTmEz
Y2JvQ0FsNngzRzBhN04xdkNNT2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAgZOMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZ0nsMA0EAgAC
MAcDBQAkB26AMA0GCSqGSIb3DQEBCwUAA4IBAQC09bH4YB+k7vV8U5d+XSrXlkUf
oB5hBt6so1osRzbfDRB38fO8ZSFYw9t1OBHbHe/lrfoG0lSD7hWi3NUohA/06XJy
DM3uTTi9YjrOJTNLg9AfKvtlm4Ren+qRw2+yvfYOM+88qzBqsJJYpyUsxtJTWVDL
Q1xu3wZxIw9TY78a3q7UUvYEfOqBtj/E4qyyzKn3PLKZYlUJX0HAIN3icV+2mxVD
BxhKZRranNRYBA7EeU12J4yqsgTE3/ENRlCdxdLORjHfisrNP1uc1PcEwAd4EGqd
WNo4qdD1H4kC0w+aTNwQvNQFJWjTdwPabnPjvX1lSC1D/r2SA+wsx0KJ+Nyi
-----END CERTIFICATE-----
Generated at Wed Nov 27 02:21:52 2024 by rpki-client on console-fra.rpki-client.org