Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XdRoWi6WsUFvfNM1zetK0YIvfes.cer
File: XdRoWi6WsUFvfNM1zetK0YIvfes.cer (raw, json)
Hash identifier: aiyAE29bCibe7U67i39HswDP98104lTy1oAsvbwqWJY=
Subject key identifier: 5D:D4:68:5A:2E:96:B1:41:6F:7C:D3:35:CD:EB:4A:D1:82:2F:7D:EB
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F508
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 30 May 2024 22:40:16 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 138611
IP: 103.206.16.0/23
IP: 2401:160::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128264 (0x1f508)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 30 22:40:16 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91AF01C/serialNumber=5DD4685A2E96B1416F7CD335CDEB4AD1822F7DEB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:00:d7:a2:bc:9d:43:e8:95:ad:aa:0d:9d:65:
0d:c0:7a:19:b4:22:e2:e9:4f:88:e1:4d:68:ac:a3:
35:16:8d:b5:70:97:7c:df:19:56:fe:3b:5d:ae:1b:
79:0d:ef:ab:f8:ba:a0:2d:ba:0b:ce:60:04:2a:2b:
a1:13:93:b5:12:91:95:f9:cf:f0:8d:46:15:9a:44:
76:d7:40:e6:f7:f7:16:38:27:7f:69:d1:b7:32:7f:
5e:2b:ee:63:ec:88:bb:f5:3b:22:01:c6:28:cb:97:
1b:40:75:1a:5c:6a:00:00:96:fd:be:68:b2:8c:df:
e0:ef:76:14:b5:91:ed:ba:1f:af:e1:f6:d5:9a:f4:
af:27:f1:4a:42:73:9b:2f:01:99:f2:aa:44:f8:49:
ed:1c:96:aa:4f:8e:15:0a:64:df:f2:53:f6:7f:97:
4b:7f:ac:d7:1d:8e:43:b0:90:bd:21:de:ce:ee:90:
40:34:36:97:38:80:a4:7b:67:30:5a:c9:26:3a:19:
4c:69:4f:67:4d:fb:61:31:44:04:39:fc:0a:85:07:
5d:a0:58:e6:23:47:61:e0:ad:04:79:a6:00:a0:c3:
67:87:f7:87:45:4f:37:49:25:e4:63:9f:7d:a3:3b:
e1:e6:d7:1c:d2:7d:43:8e:f6:2e:23:13:58:d9:bb:
8e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:D4:68:5A:2E:96:B1:41:6F:7C:D3:35:CD:EB:4A:D1:82:2F:7D:EB
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138611
sbgp-ipAddrBlock: critical
IPv4:
103.206.16.0/23
IPv6:
2401:160::/32
Signature Algorithm: sha256WithRSAEncryption
a8:51:e8:6b:5d:cf:a3:a8:b8:9e:a0:c0:83:7a:7c:e3:68:a5:
f3:72:53:5b:10:da:78:6f:59:19:a9:68:61:3e:25:0a:64:d2:
49:6c:6d:23:b4:20:38:5e:82:39:30:7b:c3:b5:81:b1:2b:61:
f5:47:4c:99:37:c4:0a:b5:27:11:65:7a:4b:82:98:c4:8c:b8:
84:cd:b9:76:e9:c7:d7:b0:45:19:c0:6c:56:32:5b:64:2e:19:
e4:6c:71:2d:fc:df:97:a5:72:e8:5e:30:e4:dc:24:d7:57:71:
89:29:85:ee:ce:01:c2:25:91:ab:a7:ae:d4:5c:d4:53:d5:61:
1d:22:36:e7:b2:64:44:27:55:c9:f9:e3:fd:b6:28:a0:71:8f:
b3:41:e5:a2:61:11:96:84:e1:95:48:6b:dc:56:8c:21:6e:13:
4b:64:39:00:7a:1c:cc:6b:9a:16:75:0d:a5:38:eb:ac:52:f7:
e1:91:11:8c:e2:19:e4:1b:51:0d:3e:82:59:21:82:21:ab:76:
8b:ae:f7:c4:18:f0:a4:ef:c1:80:d6:75:50:c9:30:3a:ed:6e:
4e:56:f2:fb:1a:7f:fc:33:30:f9:ce:2b:ae:8a:b5:0a:a4:c1:
61:23:8e:9e:ae:bd:31:c8:62:e0:b4:d3:22:c7:7f:09:26:94:
e2:d7:92:96
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAfUIMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDUzMDIyNDAxNloXDTI1MDczMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQUYwMUMxMTAvBgNVBAUTKDVERDQ2ODVBMkU5NkIxNDE2RjdDRDMz
NUNERUI0QUQxODIyRjdERUIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDGANeivJ1D6JWtqg2dZQ3Aehm0IuLpT4jhTWisozUWjbVwl3zfGVb+O12uG3kN
76v4uqAtugvOYAQqK6ETk7USkZX5z/CNRhWaRHbXQOb39xY4J39p0bcyf14r7mPs
iLv1OyIBxijLlxtAdRpcagAAlv2+aLKM3+DvdhS1ke26H6/h9tWa9K8n8UpCc5sv
AZnyqkT4Se0clqpPjhUKZN/yU/Z/l0t/rNcdjkOwkL0h3s7ukEA0Npc4gKR7ZzBa
ySY6GUxpT2dN+2ExRAQ5/AqFB12gWOYjR2HgrQR5pgCgw2eH94dFTzdJJeRjn32j
O+Hm1xzSfUOO9i4jE1jZu45vAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUXdRoWi6W
sUFvfNM1zetK0YIvfeswHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUFGMDFDL0U1RDlFNzM0RkFDQjExRURCOEY5N0Q4NUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFBRjAxQy9FNUQ5RTczNEZBQ0IxMUVEQjhGOTdEODVDNEY5QUUwMi9YZFJvV2k2
V3NVRnZmTk0xemV0SzBZSXZmZXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAh1zMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBZ84QMA0EAgAC
MAcDBQAkAQFgMA0GCSqGSIb3DQEBCwUAA4IBAQCoUehrXc+jqLieoMCDenzjaKXz
clNbENp4b1kZqWhhPiUKZNJJbG0jtCA4XoI5MHvDtYGxK2H1R0yZN8QKtScRZXpL
gpjEjLiEzbl26cfXsEUZwGxWMltkLhnkbHEt/N+XpXLoXjDk3CTXV3GJKYXuzgHC
JZGrp67UXNRT1WEdIjbnsmREJ1XJ+eP9tiigcY+zQeWiYRGWhOGVSGvcVowhbhNL
ZDkAehzMa5oWdQ2lOOusUvfhkRGM4hnkG1ENPoJZIYIhq3aLrvfEGPCk78GA1nVQ
yTA67W5OVvL7Gn/8MzD5ziuuirUKpMFhI46err0xyGLgtNMix38JJpTi15KW
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:34 2024 by rpki-client on console-fra.rpki-client.org