Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer
File: XUXapVj_ZfZmNblniAm4rPBAc9I.cer (raw, json)
Hash identifier: fUsoODTftRW38CVcqE2eAx01k0uMfdxfOUFIRF0ojCo=
Subject key identifier: 5D:45:DA:A5:58:FF:65:F6:66:35:B9:67:88:09:B8:AC:F0:40:73:D2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01AD80
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 01 Jul 2023 20:32:29 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 136562
IP: 103.92.212.0/22
IP: 2401:2140::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109952 (0x1ad80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 1 20:32:29 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A91F52FD/serialNumber=5D45DAA558FF65F66635B9678809B8ACF04073D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:07:15:38:20:6e:d5:ed:f8:c8:08:43:6f:a0:
93:42:bf:c6:19:48:e4:f8:36:97:26:93:cc:8b:6c:
e7:34:31:cb:d5:55:47:17:6f:16:1d:82:40:49:da:
ff:d7:28:48:1d:6a:ce:82:9d:3e:2a:df:e3:8c:b3:
2a:6f:79:ac:7e:28:16:c0:6c:fb:d0:9b:b6:69:c0:
85:6e:bf:b2:2a:3a:db:0e:ff:a2:03:09:8d:49:c1:
b3:3b:89:67:e7:93:63:ff:73:c9:53:3d:6c:ff:a0:
2f:37:89:2f:07:28:dd:e4:97:87:60:a3:3e:5b:9f:
eb:ad:6a:65:e8:a3:e1:4a:d3:72:76:2e:c6:2b:0f:
d3:ef:51:60:38:35:8b:c2:c2:18:76:6e:d7:29:07:
60:7b:1f:d0:31:49:c0:85:c6:df:19:7b:15:d3:5d:
35:d1:31:08:0d:64:43:69:61:54:15:07:a0:4f:af:
58:ec:cb:d9:a0:19:05:4b:9b:2c:fe:27:67:b2:03:
56:13:77:07:cb:d7:90:31:4f:e8:5d:69:a1:bc:f8:
96:d8:b8:77:2b:1a:ef:38:94:eb:6b:b7:da:c6:fa:
d1:71:b5:d0:fb:63:30:ba:c7:a7:28:93:cf:e6:e5:
46:96:83:f7:df:1e:ad:7a:5f:83:97:ec:71:63:09:
9d:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:45:DA:A5:58:FF:65:F6:66:35:B9:67:88:09:B8:AC:F0:40:73:D2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136562
sbgp-ipAddrBlock: critical
IPv4:
103.92.212.0/22
IPv6:
2401:2140::/32
Signature Algorithm: sha256WithRSAEncryption
c2:39:c8:38:ba:04:d6:42:6d:f6:d5:1c:4f:fc:3e:8e:c9:59:
05:f1:b4:9f:5d:17:38:6a:de:bb:b7:0a:53:49:05:e2:e0:0c:
ad:94:1d:f0:b4:c2:dd:9e:83:e0:37:c1:48:b1:2c:21:73:98:
0e:ca:4c:0c:c5:b7:24:4e:5b:e6:5e:f3:2d:21:26:0b:03:7e:
37:57:21:3d:cc:3e:56:57:a7:80:af:7f:1c:69:df:11:4a:cd:
34:01:d3:05:6d:55:f3:08:41:0e:c5:07:b6:71:b6:52:73:23:
8e:c0:b7:10:49:b8:9b:c9:13:b9:b3:99:8c:de:25:81:60:18:
e1:ef:50:5b:2f:b6:36:96:ad:18:df:ce:05:63:b3:f0:46:64:
41:ec:37:fd:b1:20:4d:a7:b4:dd:f4:81:1a:cf:d8:c8:b0:55:
d9:f0:60:70:6e:40:77:80:a1:84:0d:89:1b:88:17:8f:74:17:
80:e6:be:70:d5:fc:7e:d8:ff:27:bd:91:f0:57:82:45:b8:f1:
44:76:df:d6:30:48:7f:be:b2:2e:f6:a6:fb:aa:d1:2b:a7:ec:
5e:2e:85:1a:84:22:b8:70:1a:22:a6:f8:be:32:db:3e:d3:77:
87:51:94:c7:6c:c4:ed:3f:df:6b:50:de:32:37:7a:05:91:56:
0a:89:55:03
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAa2AMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDcwMTIwMzIyOVoXDTI0MDgzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRjUyRkQxMTAvBgNVBAUTKDVENDVEQUE1NThGRjY1RjY2NjM1Qjk2
Nzg4MDlCOEFDRjA0MDczRDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCUBxU4IG7V7fjICENvoJNCv8YZSOT4Npcmk8yLbOc0McvVVUcXbxYdgkBJ2v/X
KEgdas6CnT4q3+OMsypveax+KBbAbPvQm7ZpwIVuv7IqOtsO/6IDCY1JwbM7iWfn
k2P/c8lTPWz/oC83iS8HKN3kl4dgoz5bn+utamXoo+FK03J2LsYrD9PvUWA4NYvC
whh2btcpB2B7H9AxScCFxt8ZexXTXTXRMQgNZENpYVQVB6BPr1jsy9mgGQVLmyz+
J2eyA1YTdwfL15AxT+hdaaG8+JbYuHcrGu84lOtrt9rG+tFxtdD7YzC6x6cok8/m
5UaWg/ffHq16X4OX7HFjCZ2rAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUXUXapVj/
ZfZmNblniAm4rPBAc9IwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUY1MkZELzYyNUYwRjBBQkFDRDExRUJBQTIzOTc2REM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFGNTJGRC82MjVGMEYwQUJBQ0QxMUVCQUEyMzk3NkRDNEY5QUUwMi9YVVhhcFZq
X1pmWm1OYmxuaUFtNHJQQkFjOUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhVyMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZ1zUMA0EAgAC
MAcDBQAkASFAMA0GCSqGSIb3DQEBCwUAA4IBAQDCOcg4ugTWQm321RxP/D6OyVkF
8bSfXRc4at67twpTSQXi4AytlB3wtMLdnoPgN8FIsSwhc5gOykwMxbckTlvmXvMt
ISYLA343VyE9zD5WV6eAr38cad8RSs00AdMFbVXzCEEOxQe2cbZScyOOwLcQSbib
yRO5s5mM3iWBYBjh71BbL7Y2lq0Y384FY7PwRmRB7Df9sSBNp7Td9IEaz9jIsFXZ
8GBwbkB3gKGEDYkbiBePdBeA5r5w1fx+2P8nvZHwV4JFuPFEdt/WMEh/vrIu9qb7
qtErp+xeLoUahCK4cBoipvi+Mts+03eHUZTHbMTtP99rUN4yN3oFkVYKiVUD
-----END CERTIFICATE-----
Generated at Fri Apr 26 11:02:59 2024 by rpki-client on console-ams.rpki-client.org