Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoJBeVOzWp-LWaQuyUb00CTYd2s.cer
File: XoJBeVOzWp-LWaQuyUb00CTYd2s.cer (raw, json)
Hash identifier: 6cKhU4kt0pwkPgC8oiJxe5doDBUGJzNQs9gUnkwS6Us=
Subject key identifier: 5E:82:41:79:53:B3:5A:9F:8B:59:A4:2E:C9:46:F4:D0:24:D8:77:6B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CB29
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915B2F1/26007FB68DF111EB8D0EA511C4F9AE02/XoJBeVOzWp-LWaQuyUb00CTYd2s.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915B2F1/26007FB68DF111EB8D0EA511C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 15 Nov 2023 14:54:09 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 137258
IP: 103.103.112.0/24
IP: 2001:df3:700::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117545 (0x1cb29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 15 14:54:09 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A915B2F1/serialNumber=5E82417953B35A9F8B59A42EC946F4D024D8776B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:5e:13:59:8c:19:55:4f:ab:3b:88:7d:fa:18:
63:b6:49:99:ae:31:2d:66:10:40:7d:54:5d:dc:f6:
87:56:c3:1f:02:38:87:07:c1:bb:19:24:7e:cd:06:
32:73:da:f6:64:98:52:28:87:d7:d8:30:f8:ba:86:
40:3b:8a:51:a3:98:1e:d0:05:0f:24:82:4b:d1:2f:
af:da:ac:7b:80:f3:23:63:95:2e:0a:0c:ae:43:19:
8f:2c:2b:c7:2f:39:08:43:18:70:b1:e5:d7:2a:04:
01:0f:32:26:18:df:b4:95:e8:21:43:dd:e1:53:7b:
58:24:0b:e8:4a:1c:26:85:82:5b:3e:e7:0f:ab:31:
10:10:d0:75:e0:a7:d5:5b:80:4a:6e:bf:22:d7:a9:
5e:86:d4:c5:85:ef:21:a6:f2:3b:4b:30:6a:3b:0e:
5a:f1:a1:67:cf:76:ae:46:fc:55:49:21:d0:71:56:
60:f1:1b:8f:4b:b4:ae:a8:80:31:8e:40:b9:21:9e:
66:a4:a7:4b:f4:00:3b:25:5b:ea:0c:71:b4:a9:88:
dc:2d:28:b9:2a:a9:cd:07:10:69:0c:b3:dc:b0:60:
ba:b3:65:a8:78:68:e2:a5:e2:a3:b7:b4:2e:9f:c5:
30:c0:bb:af:53:14:81:8c:ce:02:b2:51:21:8a:f9:
10:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:82:41:79:53:B3:5A:9F:8B:59:A4:2E:C9:46:F4:D0:24:D8:77:6B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915B2F1/26007FB68DF111EB8D0EA511C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915B2F1/26007FB68DF111EB8D0EA511C4F9AE02/XoJBeVOzWp-LWaQuyUb00CTYd2s.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137258
sbgp-ipAddrBlock: critical
IPv4:
103.103.112.0/24
IPv6:
2001:df3:700::/48
Signature Algorithm: sha256WithRSAEncryption
3f:a7:9f:2f:31:1b:33:2b:87:b2:81:84:47:ad:94:cb:9a:37:
ec:43:a2:de:a1:25:16:e2:58:a3:f1:72:e7:89:f9:19:cc:16:
8c:f1:a3:39:43:5c:d9:de:05:97:8f:86:a6:e7:23:3b:ec:c1:
09:76:e4:b8:a0:b4:76:ac:ed:64:98:01:68:4a:95:f4:9f:5c:
b6:38:ad:51:ea:e6:0b:d9:6d:02:9d:d0:e8:a7:bf:4e:74:2b:
80:13:98:66:69:f9:5e:15:86:e0:5d:22:30:ea:2c:3a:1e:23:
4f:f6:fc:11:2f:7c:73:5c:6c:d2:6b:7e:15:ee:a7:57:28:e4:
44:c8:a2:1e:6a:b2:3e:0d:cf:d5:3b:4a:da:a0:6c:6f:d4:b4:
5d:74:4d:fd:51:bd:40:cd:81:18:92:58:93:e9:96:27:7f:13:
37:ce:28:e8:50:f9:aa:63:f2:39:02:db:ce:eb:5e:77:ca:97:
ce:c7:1f:9b:34:62:5c:be:21:76:6d:31:c9:71:27:da:e0:ca:
61:a9:01:dc:d9:03:9e:ab:bc:d8:a4:45:4f:38:22:8d:22:72:
6f:c9:c9:bf:b5:81:4e:64:75:16:0e:bc:06:7d:61:78:08:1f:
a6:52:32:13:dc:85:5c:2a:36:7b:d4:6f:6a:e7:66:3b:a9:e6:
1f:d3:1a:d9
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAcspMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMTExNTE0NTQwOVoXDTI1MDEzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNUIyRjExMTAvBgNVBAUTKDVFODI0MTc5NTNCMzVBOUY4QjU5QTQy
RUM5NDZGNEQwMjREODc3NkIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDXXhNZjBlVT6s7iH36GGO2SZmuMS1mEEB9VF3c9odWwx8COIcHwbsZJH7NBjJz
2vZkmFIoh9fYMPi6hkA7ilGjmB7QBQ8kgkvRL6/arHuA8yNjlS4KDK5DGY8sK8cv
OQhDGHCx5dcqBAEPMiYY37SV6CFD3eFTe1gkC+hKHCaFgls+5w+rMRAQ0HXgp9Vb
gEpuvyLXqV6G1MWF7yGm8jtLMGo7DlrxoWfPdq5G/FVJIdBxVmDxG49LtK6ogDGO
QLkhnmakp0v0ADslW+oMcbSpiNwtKLkqqc0HEGkMs9ywYLqzZah4aOKl4qO3tC6f
xTDAu69TFIGMzgKyUSGK+RBXAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUXoJBeVOz
Wp+LWaQuyUb00CTYd2swHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTVCMkYxLzI2MDA3RkI2OERGMTExRUI4RDBFQTUxMUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1QjJGMS8yNjAwN0ZCNjhERjExMUVCOEQwRUE1MTFDNEY5QUUwMi9Yb0pCZVZP
eldwLUxXYVF1eVViMDBDVFlkMnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhgqMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAZ2dwMA8EAgAC
MAkDBwAgAQ3zBwAwDQYJKoZIhvcNAQELBQADggEBAD+nny8xGzMrh7KBhEetlMua
N+xDot6hJRbiWKPxcueJ+RnMFozxozlDXNneBZePhqbnIzvswQl25LigtHas7WSY
AWhKlfSfXLY4rVHq5gvZbQKd0Oinv050K4ATmGZp+V4VhuBdIjDqLDoeI0/2/BEv
fHNcbNJrfhXup1co5ETIoh5qsj4Nz9U7StqgbG/UtF10Tf1RvUDNgRiSWJPplid/
EzfOKOhQ+apj8jkC287rXnfKl87HH5s0Yly+IXZtMclxJ9rgymGpAdzZA56rvNik
RU84Io0icm/Jyb+1gU5kdRYOvAZ9YXgIH6ZSMhPchVwqNnvUb2rnZjup5h/TGtk=
-----END CERTIFICATE-----
Generated at Sat Apr 20 05:37:06 2024 by rpki-client on console-ams.rpki-client.org