Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer
File: YBi5hcOZywcxwWNM_ktHkS8q9dE.cer (raw, json)
Hash identifier: R/EY8l5O0/eIn/yDeR1qA0FeDvvz71u/5SWHTpRGz2A=
Subject key identifier: 60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0202ED
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 29 Jul 2024 17:12:25 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 139076
IP: 103.139.110.0/23
IP: 2001:df0:7480::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131821 (0x202ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 29 17:12:25 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A9183BA5/serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:4c:99:77:6c:f6:87:ed:ef:59:93:0f:da:2f:
6b:6c:7a:84:2c:d0:07:e0:4d:24:b7:18:69:35:9b:
96:ff:97:ba:e0:59:c4:2d:34:7f:7a:ce:34:3b:f3:
2d:da:ff:ff:4f:30:7b:73:12:b2:7c:2f:4b:5e:fc:
9b:c0:ca:7c:9b:66:1f:ad:38:93:5a:64:0a:ef:09:
94:b7:96:18:5a:09:e5:81:e8:ba:18:d0:41:dc:e9:
7e:a0:e2:b1:d5:e8:e4:ae:78:83:ee:6f:46:0a:44:
23:2d:ba:30:ca:a9:0d:77:5d:f2:b4:3b:b5:39:30:
58:fc:a6:e5:8e:23:d8:76:f6:ca:f3:82:2a:cd:5a:
c4:2b:8d:3d:58:cb:06:e0:a6:cd:b4:83:b9:11:8a:
e6:5c:12:40:07:c4:a9:08:ea:79:22:19:1f:23:3d:
f8:0d:ff:f0:d1:43:15:ad:76:bd:67:56:3d:ba:15:
55:fa:c6:2c:8a:ed:62:0e:3e:99:cc:eb:e1:10:d9:
5e:99:04:d1:b5:a4:1f:83:0f:b8:57:0a:ff:3f:20:
80:55:bd:35:b4:56:cc:69:76:ba:ba:16:03:7e:d8:
1a:05:10:4a:c2:97:73:35:82:11:c9:ce:c2:37:07:
d8:47:80:ee:6b:a5:c3:da:ab:b1:7e:5c:fc:47:71:
7f:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139076
sbgp-ipAddrBlock: critical
IPv4:
103.139.110.0/23
IPv6:
2001:df0:7480::/48
Signature Algorithm: sha256WithRSAEncryption
81:af:82:01:11:e4:5a:87:fc:b2:a2:53:2a:d1:e8:f2:bd:e4:
ec:ec:60:55:09:ac:10:17:2f:fa:cd:01:62:10:86:92:81:cb:
7c:50:a2:a3:d4:a9:de:ca:6e:3c:82:2f:80:00:4e:76:26:16:
ea:89:e3:dc:0b:58:76:4f:b4:ff:59:21:62:08:87:78:ac:c6:
0c:ef:2b:09:81:5d:2e:51:1c:00:66:35:39:2f:33:8f:52:8b:
16:20:86:53:a4:b1:ae:c9:38:72:ea:ec:63:33:0b:5e:03:3b:
93:f6:78:83:2f:de:35:70:6b:4f:b2:a6:13:af:eb:3c:aa:65:
8a:bb:dc:2e:5b:d0:0c:4a:ae:67:e1:a7:83:81:85:35:17:13:
1f:56:5c:5c:58:1c:f0:3e:cf:1f:0f:ea:4f:a4:be:ea:a4:62:
fd:6b:89:ba:d7:ee:f9:3d:6b:7a:f0:e2:ac:dc:3c:f8:52:90:
5f:c2:44:67:1a:9b:ff:b7:97:bc:06:35:69:9e:d2:5f:66:8c:
cd:ec:77:03:e6:40:cf:7a:93:98:5b:bd:c8:5e:09:20:6f:e3:
f2:f0:a8:87:94:0b:7d:03:c4:fb:1d:2c:e8:73:30:da:8b:0f:
76:0e:6d:78:1f:86:e5:d3:05:f6:2b:a8:52:3c:59:0f:08:6f:
0b:ed:ae:c1
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAgLtMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDcyOTE3MTIyNVoXDTI1MDgzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxODNCQTUxMTAvBgNVBAUTKDYwMThCOTg1QzM5OUNCMDczMUMxNjM0
Q0ZFNEI0NzkxMkYyQUY1RDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCwTJl3bPaH7e9Zkw/aL2tseoQs0AfgTSS3GGk1m5b/l7rgWcQtNH96zjQ78y3a
//9PMHtzErJ8L0te/JvAynybZh+tOJNaZArvCZS3lhhaCeWB6LoY0EHc6X6g4rHV
6OSueIPub0YKRCMtujDKqQ13XfK0O7U5MFj8puWOI9h29srzgirNWsQrjT1Yywbg
ps20g7kRiuZcEkAHxKkI6nkiGR8jPfgN//DRQxWtdr1nVj26FVX6xiyK7WIOPpnM
6+EQ2V6ZBNG1pB+DD7hXCv8/IIBVvTW0Vsxpdrq6FgN+2BoFEErCl3M1ghHJzsI3
B9hHgO5rpcPaq7F+XPxHcX/DAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUYBi5hcOZ
ywcxwWNM/ktHkS8q9dEwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTgzQkE1LzI4NjIwQ0M0NzA1RTExRURCQzA3RjE1OEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE4M0JBNS8yODYyMENDNDcwNUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNP
Wnl3Y3h3V05NX2t0SGtTOHE5ZEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAh9EMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ4tuMA8EAgAC
MAkDBwAgAQ3wdIAwDQYJKoZIhvcNAQELBQADggEBAIGvggER5FqH/LKiUyrR6PK9
5OzsYFUJrBAXL/rNAWIQhpKBy3xQoqPUqd7KbjyCL4AATnYmFuqJ49wLWHZPtP9Z
IWIIh3isxgzvKwmBXS5RHABmNTkvM49SixYghlOksa7JOHLq7GMzC14DO5P2eIMv
3jVwa0+yphOv6zyqZYq73C5b0AxKrmfhp4OBhTUXEx9WXFxYHPA+zx8P6k+kvuqk
Yv1ribrX7vk9a3rw4qzcPPhSkF/CRGcam/+3l7wGNWme0l9mjM3sdwPmQM96k5hb
vcheCSBv4/LwqIeUC30DxPsdLOhzMNqLD3YObXgfhuXTBfYrqFI8WQ8IbwvtrsE=
-----END CERTIFICATE-----
Generated at Fri Nov 22 22:24:47 2024 by rpki-client on console-fra.rpki-client.org