Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmmU0Zdivg-YhPpO8NymbD9TAqg.cer
File: YmmU0Zdivg-YhPpO8NymbD9TAqg.cer (raw, json)
Hash identifier: omHannGPVkX25C1wSV0JciFju+B+fpLaTh0TXUwCEo4=
Subject key identifier: 62:69:94:D1:97:62:BE:0F:98:84:FA:4E:F0:DC:A6:6C:3F:53:02:A8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0199DC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9157E6E/830C69700DEB11E79771B666C4F9AE02/YmmU0Zdivg-YhPpO8NymbD9TAqg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9157E6E/830C69700DEB11E79771B666C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 20 Apr 2023 17:32:44 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 18172
IP: 103.87.255.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 03:41:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104924 (0x199dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 20 17:32:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=A9157E6E/serialNumber=626994D19762BE0F9884FA4EF0DCA66C3F5302A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:1c:2b:c2:9f:bb:7a:53:96:13:0c:61:72:0d:
c1:b3:54:26:8b:67:f9:bb:74:6e:bf:52:c2:57:af:
f0:e1:03:60:b0:91:b0:2a:d8:25:97:08:59:78:97:
5a:da:08:55:aa:7f:0b:e7:2e:84:6b:75:5b:67:16:
d0:f9:8c:5b:c7:49:5d:bd:57:00:3d:11:67:1e:43:
f2:fc:16:e7:34:b2:fb:6d:d1:3e:08:bf:4f:b5:d7:
ab:63:92:ae:ce:37:6b:b2:55:49:47:48:ee:88:09:
38:fa:4d:42:3f:a8:cd:8f:23:0d:be:bb:88:5b:7a:
c2:de:f4:5b:52:06:c8:5e:e5:61:54:24:1a:d5:43:
ea:4f:23:70:ad:83:d2:76:89:52:16:bf:b4:1e:b6:
02:74:70:ed:d8:54:3e:dc:32:fc:2e:43:92:b8:81:
25:d9:78:ca:d8:80:e5:18:e1:69:c0:fc:33:9d:9c:
bd:45:66:cf:0d:cf:dc:a8:d5:c5:99:54:e6:e7:71:
4c:bf:d3:b6:0d:70:56:29:dd:18:e2:6d:62:c5:60:
a2:eb:b5:0c:55:c7:50:43:89:c3:ae:fb:cd:b9:e4:
69:8a:df:8c:dd:1c:01:a6:3c:00:24:3c:0b:e1:86:
3c:f1:86:1c:a6:b3:61:20:7a:8f:03:73:a9:a6:6d:
93:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:69:94:D1:97:62:BE:0F:98:84:FA:4E:F0:DC:A6:6C:3F:53:02:A8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9157E6E/830C69700DEB11E79771B666C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9157E6E/830C69700DEB11E79771B666C4F9AE02/YmmU0Zdivg-YhPpO8NymbD9TAqg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
18172
sbgp-ipAddrBlock: critical
IPv4:
103.87.255.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:72:ed:f2:82:9b:41:7d:f7:31:27:b9:b0:c3:e8:4e:5a:8f:
c1:4f:cf:40:a5:83:0d:e6:3f:8d:24:dd:22:5d:13:b8:45:65:
b7:b4:0e:be:d2:e0:1d:cf:8c:c9:8f:ad:2f:e3:3e:5e:20:a3:
95:19:03:95:99:87:24:3c:af:05:63:82:f9:90:fc:33:1c:1f:
4e:24:b5:48:93:3b:6c:4a:28:f2:ef:80:a0:32:71:dd:5d:f4:
24:d4:ea:de:15:45:69:83:15:91:de:e6:b2:61:c3:b9:58:8a:
ca:8c:9f:f5:ab:39:55:04:37:8f:00:aa:63:ad:5e:62:3f:c6:
22:06:ba:9a:b5:44:b2:28:90:71:cb:9a:2c:0b:93:b3:ca:13:
95:9a:ef:08:01:d5:ed:ba:47:57:46:55:d5:12:0d:00:5d:d9:
6f:ea:ad:42:c7:00:1d:a5:9f:be:23:e7:ec:ca:7f:2b:5f:ba:
c1:70:1a:3c:91:68:f8:5c:d1:6e:a4:a2:26:93:bd:6e:9a:15:
c3:8d:78:bc:26:4c:fe:25:97:4f:17:48:67:7d:3a:6e:f1:17:
a5:19:52:92:7d:71:c5:ce:97:9a:5e:f5:fb:3e:fd:7e:3d:61:
40:70:a8:00:59:af:d1:8b:f7:90:aa:97:52:3a:96:04:e9:04:
57:60:01:1e
-----BEGIN CERTIFICATE-----
MIIGGTCCBQGgAwIBAgIDAZncMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDQyMDE3MzI0NFoXDTI0MDcwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNTdFNkUxMTAvBgNVBAUTKDYyNjk5NEQxOTc2MkJFMEY5ODg0RkE0
RUYwRENBNjZDM0Y1MzAyQTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQClHCvCn7t6U5YTDGFyDcGzVCaLZ/m7dG6/UsJXr/DhA2CwkbAq2CWXCFl4l1ra
CFWqfwvnLoRrdVtnFtD5jFvHSV29VwA9EWceQ/L8Fuc0svtt0T4Iv0+116tjkq7O
N2uyVUlHSO6ICTj6TUI/qM2PIw2+u4hbesLe9FtSBshe5WFUJBrVQ+pPI3Ctg9J2
iVIWv7QetgJ0cO3YVD7cMvwuQ5K4gSXZeMrYgOUY4WnA/DOdnL1FZs8Nz9yo1cWZ
VObncUy/07YNcFYp3RjibWLFYKLrtQxVx1BDicOu+8255GmK34zdHAGmPAAkPAvh
hjzxhhyms2Egeo8Dc6mmbZONAgMBAAGjggMOMIIDCjAdBgNVHQ4EFgQUYmmU0Zdi
vg+YhPpO8NymbD9TAqgwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTU3RTZFLzgzMEM2OTcwMERFQjExRTc5NzcxQjY2NkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1N0U2RS84MzBDNjk3MDBERUIxMUU3OTc3MUI2NjZDNEY5QUUwMi9ZbW1VMFpk
aXZnLVloUHBPOE55bWJEOVRBcWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGQYIKwYBBQUHAQgBAf8ECjAI
oAYwBAICRvwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnV/8wDQYJKoZI
hvcNAQELBQADggEBAMdy7fKCm0F99zEnubDD6E5aj8FPz0Clgw3mP40k3SJdE7hF
Zbe0Dr7S4B3PjMmPrS/jPl4go5UZA5WZhyQ8rwVjgvmQ/DMcH04ktUiTO2xKKPLv
gKAycd1d9CTU6t4VRWmDFZHe5rJhw7lYisqMn/WrOVUEN48AqmOtXmI/xiIGupq1
RLIokHHLmiwLk7PKE5Wa7wgB1e26R1dGVdUSDQBd2W/qrULHAB2ln74j5+zKfytf
usFwGjyRaPhc0W6koiaTvW6aFcONeLwmTP4ll08XSGd9Om7xF6UZUpJ9ccXOl5pe
9fs+/X49YUBwqABZr9GL95Cql1I6lgTpBFdgAR4=
-----END CERTIFICATE-----
Generated at Fri Apr 26 06:09:35 2024 by rpki-client on console-ams.rpki-client.org