Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WvNFwiKwmlVcfmqlpXNhAwuTF6Y.cer
File: WvNFwiKwmlVcfmqlpXNhAwuTF6Y.cer (raw, json)
Hash identifier: ciNPbEe/oDqFmq0nwF8q9hJ4OYw5ejxUCoMk2L1PK4E=
Subject key identifier: 5A:F3:45:C2:22:B0:9A:55:5C:7E:6A:A5:A5:73:61:03:0B:93:17:A6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E4C0
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9158322/55AC0666DF5811EE9F4CCF5EC4F9AE02/WvNFwiKwmlVcfmqlpXNhAwuTF6Y.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9158322/55AC0666DF5811EE9F4CCF5EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 15 Mar 2024 15:11:02 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 134066
IP: 103.50.164.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 03:13:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124096 (0x1e4c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 15 15:11:02 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A9158322/serialNumber=5AF345C222B09A555C7E6AA5A57361030B9317A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:ff:4d:e9:34:97:bd:0a:ce:ab:7c:59:1c:c1:
d2:da:92:fb:43:b2:7c:4e:a4:be:f5:02:82:55:31:
8d:c6:1b:1c:27:fb:e0:18:04:84:b4:3a:a2:68:3f:
54:67:90:3f:69:10:a1:72:ad:c2:f5:ba:53:76:b0:
af:c0:be:03:ce:8f:61:ba:cb:54:44:1b:f3:eb:13:
05:8e:e6:75:0a:f2:32:92:86:29:40:b5:3d:29:f3:
c6:22:f7:7c:ef:ac:a4:3c:e6:32:f6:6c:48:ac:dc:
83:a3:9b:5d:ed:62:d3:fd:84:0a:5f:58:c3:bf:03:
a1:9e:d9:94:65:90:e9:e2:c3:d7:8a:97:09:84:8e:
18:d8:89:52:7f:98:33:a2:41:84:1e:39:2d:e3:27:
70:a1:12:50:61:1c:c9:cc:68:ae:d8:c2:e3:9e:2c:
39:8e:48:8e:d2:ef:f0:2c:ff:71:ed:f9:56:a6:f4:
98:a3:16:5f:c5:11:26:21:e3:67:20:7f:57:ba:3f:
52:a2:db:c2:f2:45:10:f6:5b:71:83:d0:29:08:80:
c8:98:de:39:eb:e3:28:4f:2d:3b:c3:32:47:6b:dc:
25:11:65:07:a4:30:3d:61:cb:08:d5:12:17:05:67:
e5:e5:b7:a5:ec:eb:d5:ac:46:b4:e5:cc:fb:93:34:
83:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:F3:45:C2:22:B0:9A:55:5C:7E:6A:A5:A5:73:61:03:0B:93:17:A6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9158322/55AC0666DF5811EE9F4CCF5EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9158322/55AC0666DF5811EE9F4CCF5EC4F9AE02/WvNFwiKwmlVcfmqlpXNhAwuTF6Y.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134066
sbgp-ipAddrBlock: critical
IPv4:
103.50.164.0/22
Signature Algorithm: sha256WithRSAEncryption
50:b2:19:f9:6a:79:64:cf:a7:1d:7d:4c:5f:2c:03:a0:9d:96:
31:f0:4a:8f:0b:30:cf:c1:80:44:0b:0d:cf:0d:e3:d1:15:ba:
5e:4a:3d:bb:1a:2a:e5:38:e4:c4:a1:10:b7:99:c5:01:ef:6f:
89:0c:c1:e4:d8:93:35:ad:64:00:c3:e3:c6:39:5e:74:3c:6c:
bb:67:bd:c8:9f:cb:ff:f2:f9:b3:3d:e3:56:55:89:27:2c:46:
94:50:88:e6:a1:64:31:77:43:ce:96:1e:c4:dc:eb:9b:61:4e:
4d:04:c0:0d:15:77:00:7a:c7:a2:28:ea:1a:fc:f2:07:35:17:
be:ca:b7:06:48:76:d9:3e:48:c3:44:fe:85:e4:0f:8c:1a:e0:
ba:29:94:a9:c7:4f:19:97:f5:c9:e5:9f:c5:5c:97:3f:63:f0:
07:08:12:68:7c:95:b7:b4:6b:ad:5e:a4:64:31:2b:4b:dc:1e:
39:9b:69:f9:3d:3a:39:93:0a:e8:d1:4f:a4:0e:ab:30:1e:99:
d8:77:09:fb:6c:28:02:ba:2f:31:0b:6f:b2:f1:cb:97:5b:bc:
26:9f:b1:85:1b:09:7f:be:13:95:90:6b:80:cb:0a:1b:59:8d:
bb:c5:b3:c7:09:70:26:e9:37:b1:11:f0:44:e5:80:55:80:96:
c6:88:e7:fc
-----BEGIN CERTIFICATE-----
MIIGGjCCBQKgAwIBAgIDAeTAMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDMxNTE1MTEwMloXDTI1MDUyODAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNTgzMjIxMTAvBgNVBAUTKDVBRjM0NUMyMjJCMDlBNTU1QzdFNkFB
NUE1NzM2MTAzMEI5MzE3QTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDs/03pNJe9Cs6rfFkcwdLakvtDsnxOpL71AoJVMY3GGxwn++AYBIS0OqJoP1Rn
kD9pEKFyrcL1ulN2sK/AvgPOj2G6y1REG/PrEwWO5nUK8jKShilAtT0p88Yi93zv
rKQ85jL2bEis3IOjm13tYtP9hApfWMO/A6Ge2ZRlkOniw9eKlwmEjhjYiVJ/mDOi
QYQeOS3jJ3ChElBhHMnMaK7YwuOeLDmOSI7S7/As/3Ht+Vam9JijFl/FESYh42cg
f1e6P1Ki28LyRRD2W3GD0CkIgMiY3jnr4yhPLTvDMkdr3CURZQekMD1hywjVEhcF
Z+Xlt6Xs69WsRrTlzPuTNINpAgMBAAGjggMPMIIDCzAdBgNVHQ4EFgQUWvNFwiKw
mlVcfmqlpXNhAwuTF6YwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTU4MzIyLzU1QUMwNjY2REY1ODExRUU5RjRDQ0Y1RUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1ODMyMi81NUFDMDY2NkRGNTgxMUVFOUY0Q0NGNUVDNEY5QUUwMi9Xdk5Gd2lL
d21sVmNmbXFscFhOaEF3dVRGNlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAguyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZzKkMA0GCSqG
SIb3DQEBCwUAA4IBAQBQshn5anlkz6cdfUxfLAOgnZYx8EqPCzDPwYBECw3PDePR
FbpeSj27GirlOOTEoRC3mcUB72+JDMHk2JM1rWQAw+PGOV50PGy7Z73In8v/8vmz
PeNWVYknLEaUUIjmoWQxd0POlh7E3OubYU5NBMANFXcAeseiKOoa/PIHNRe+yrcG
SHbZPkjDRP6F5A+MGuC6KZSpx08Zl/XJ5Z/FXJc/Y/AHCBJofJW3tGutXqRkMStL
3B45m2n5PTo5kwro0U+kDqswHpnYdwn7bCgCui8xC2+y8cuXW7wmn7GFGwl/vhOV
kGuAywobWY27xbPHCXAm6TexEfBE5YBVgJbGiOf8
-----END CERTIFICATE-----
Generated at Thu May 2 04:05:04 2024 by rpki-client on console-fra.rpki-client.org