Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer
File: YbAiM19NheFtR3oAatyOPy_alGA.cer (raw, json)
Hash identifier: r+N0hpBCTHc3kVGrN1UUWntgCLSOKuGvBvfDh3NsBjk=
Subject key identifier: 61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 013148
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 30 Oct 2021 07:42:06 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 142646
IP: 103.171.180.0/23
IP: 2407:c740::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 05:04:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78152 (0x13148)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 30 07:42:06 2021 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91A7C77/serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:87:91:bb:b0:ec:5a:ce:c1:2f:90:bc:57:d4:
67:58:e9:22:9a:2e:be:d5:2c:70:0d:99:a4:6c:ac:
94:3c:36:9d:39:fe:cc:3e:86:bd:0d:a8:de:dc:a1:
d3:2c:99:5f:9c:f1:f9:15:9e:33:e0:9b:07:03:f9:
9c:d2:43:ce:9a:dd:71:4a:5a:cd:ea:ed:59:a7:56:
01:2c:ef:7b:49:05:03:86:f8:04:5f:a9:95:bd:4d:
42:10:fd:a9:15:ad:b4:6b:5d:6e:21:ed:78:ca:3e:
24:b2:23:5e:5f:4e:41:5f:0a:7f:f0:7b:c2:66:03:
1f:c1:aa:9f:d7:17:2d:34:ac:79:06:8a:8a:23:af:
a5:45:ab:35:db:dd:2d:26:a9:cb:da:36:65:19:86:
a8:46:35:58:9f:dc:6a:d6:2b:06:f2:27:60:3b:67:
5b:b6:f3:8a:6a:b0:ff:b2:40:90:f4:72:5b:89:3c:
74:ef:6a:ff:7b:80:e7:fa:23:c2:af:af:82:0a:88:
2f:30:34:1f:99:dc:99:eb:ea:c2:6f:95:7d:e0:79:
f7:fb:75:f2:69:42:e1:7d:f3:3d:3f:7e:f7:b6:49:
07:a2:e7:08:b1:5e:de:66:fb:a4:a4:11:5e:e4:8e:
76:2a:c4:41:8e:a7:2c:b7:1d:0b:7b:32:a3:3a:62:
23:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142646
sbgp-ipAddrBlock: critical
IPv4:
103.171.180.0/23
IPv6:
2407:c740::/32
Signature Algorithm: sha256WithRSAEncryption
c5:f3:65:26:d9:4b:12:0d:06:64:68:94:e2:80:5d:f9:87:55:
d4:1b:86:48:bf:d4:ba:fb:d0:ca:40:85:1f:60:f9:62:2b:19:
b9:fd:8d:c0:7e:1f:da:b3:b2:42:2e:27:cb:cc:6e:bc:a9:83:
36:ae:fd:b1:43:61:2d:69:53:42:a8:ee:ec:95:61:59:bb:e2:
c7:ff:1c:59:06:4a:af:8b:24:69:52:80:70:e6:97:df:89:3d:
c5:c5:6b:5a:23:1e:6f:fa:9b:8f:92:c4:91:e9:6a:96:7d:6a:
25:9f:3a:58:18:85:9e:b2:05:d0:f6:a0:a9:c8:bf:ae:9f:21:
d0:e6:1f:14:b2:61:22:5f:b9:77:6d:8f:bb:33:2b:35:d5:82:
ff:db:2c:1f:c7:f7:58:8b:80:e6:76:a4:c6:5c:9d:bb:7f:3d:
b7:4f:f4:26:81:fd:05:1d:66:b0:7f:64:e2:14:69:d5:f4:04:
3c:3e:29:16:c5:9e:6f:a8:ad:3f:dc:dc:a4:53:b1:3c:2b:7b:
a5:0d:a2:ab:e4:f4:0a:b1:a7:de:c6:1c:37:05:09:03:d3:f2:
27:2b:ed:1b:74:1a:f5:4f:4a:65:56:35:a0:e0:35:82:73:28:
f8:4d:d1:3e:21:d4:6f:4d:cc:48:86:f8:d8:71:22:81:1b:d4:
60:05:a0:78
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDATFIMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIxMTAzMDA3NDIwNloXDTI0MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQTdDNzcxMTAvBgNVBAUTKDYxQjAyMjMzNUY0RDg1RTE2RDQ3N0Ew
MDZBREM4RTNGMkZEQTk0NjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDNh5G7sOxazsEvkLxX1GdY6SKaLr7VLHANmaRsrJQ8Np05/sw+hr0NqN7codMs
mV+c8fkVnjPgmwcD+ZzSQ86a3XFKWs3q7VmnVgEs73tJBQOG+ARfqZW9TUIQ/akV
rbRrXW4h7XjKPiSyI15fTkFfCn/we8JmAx/Bqp/XFy00rHkGioojr6VFqzXb3S0m
qcvaNmUZhqhGNVif3GrWKwbyJ2A7Z1u284pqsP+yQJD0cluJPHTvav97gOf6I8Kv
r4IKiC8wNB+Z3Jnr6sJvlX3geff7dfJpQuF98z0/fve2SQei5wixXt5m+6SkEV7k
jnYqxEGOpyy3HQt7MqM6YiPhAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUYbAiM19N
heFtR3oAatyOPy/alGAwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUE3Qzc3L0RDMjAxQUZFMzk1NDExRUM4MEQ5RDM1OUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFBN0M3Ny9EQzIwMUFGRTM5NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5
TmhlRnRSM29BYXR5T1B5X2FsR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAi02MC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBZ6u0MA0EAgAC
MAcDBQAkB8dAMA0GCSqGSIb3DQEBCwUAA4IBAQDF82Um2UsSDQZkaJTigF35h1XU
G4ZIv9S6+9DKQIUfYPliKxm5/Y3Afh/as7JCLifLzG68qYM2rv2xQ2EtaVNCqO7s
lWFZu+LH/xxZBkqviyRpUoBw5pffiT3FxWtaIx5v+puPksSR6WqWfWolnzpYGIWe
sgXQ9qCpyL+unyHQ5h8UsmEiX7l3bY+7Mys11YL/2ywfx/dYi4DmdqTGXJ27fz23
T/Qmgf0FHWawf2TiFGnV9AQ8PikWxZ5vqK0/3NykU7E8K3ulDaKr5PQKsafexhw3
BQkD0/InK+0bdBr1T0plVjWg4DWCcyj4TdE+IdRvTcxIhvjYcSKBG9RgBaB4
-----END CERTIFICATE-----
Generated at Fri Apr 19 05:37:32 2024 by rpki-client on console-fra.rpki-client.org