Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z15jpMF4xvVmAmQCRHJGTrmOG10.cer
File: Z15jpMF4xvVmAmQCRHJGTrmOG10.cer (raw, json)
Hash identifier: MEdkqwLt8yS5LaD+JVaPDNC7RXJbwW6kzOjLItYCxyw=
Subject key identifier: 67:5E:63:A4:C1:78:C6:F5:66:02:64:02:44:72:46:4E:B9:8E:1B:5D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021A02
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B01FF/B8C1E7D4412111ECAC525483C4F9AE02/Z15jpMF4xvVmAmQCRHJGTrmOG10.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B01FF/B8C1E7D4412111ECAC525483C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 06 Nov 2024 17:55:09 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 141151
IP: 103.155.100.0/23
IP: 2001:df4:c180::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 06:14:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137730 (0x21a02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 6 17:55:09 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91B01FF/serialNumber=675E63A4C178C6F5660264024472464EB98E1B5D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:71:37:22:ba:63:75:6b:88:df:05:ae:d2:58:
f1:c8:b1:7f:68:f9:8c:ea:b4:d6:ac:bc:93:c2:cc:
62:b5:bb:55:e0:1b:a5:0d:93:03:ce:ce:40:12:e8:
95:28:96:2c:83:6c:23:c2:11:9f:1c:52:e6:a2:4f:
d4:30:81:c3:ca:55:9e:29:c7:15:0c:d8:51:15:54:
7a:b6:55:42:5a:f1:b0:29:e5:97:92:71:73:27:f1:
b5:a1:10:8d:af:a5:58:aa:64:75:b6:26:0b:85:50:
c3:90:fa:b6:22:2f:57:a0:12:f2:d6:5d:94:8d:b4:
ac:e2:3e:48:39:73:cf:b2:1e:c9:9a:50:90:cd:4c:
a5:f8:38:14:a0:2a:2a:e2:5a:a2:29:88:cb:3b:90:
d4:f8:0d:90:be:bc:d6:ca:4b:d4:36:ab:c9:cb:d5:
0b:95:45:f6:78:fb:08:3d:83:59:7f:1c:c1:13:e6:
cc:39:86:02:ff:d2:30:89:fd:a7:5d:24:60:c6:9d:
46:2a:3c:68:88:0a:54:2f:57:a8:39:16:49:df:c2:
20:b5:49:6b:3b:90:48:87:bd:db:ab:f8:c6:f4:c5:
26:c0:dc:39:c2:15:f4:48:85:1f:b3:cd:3e:77:c9:
13:0a:d1:63:a8:9e:1a:38:87:37:26:e1:b6:49:2c:
a3:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:5E:63:A4:C1:78:C6:F5:66:02:64:02:44:72:46:4E:B9:8E:1B:5D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B01FF/B8C1E7D4412111ECAC525483C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B01FF/B8C1E7D4412111ECAC525483C4F9AE02/Z15jpMF4xvVmAmQCRHJGTrmOG10.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141151
sbgp-ipAddrBlock: critical
IPv4:
103.155.100.0/23
IPv6:
2001:df4:c180::/48
Signature Algorithm: sha256WithRSAEncryption
a0:60:47:e3:5a:48:69:86:0f:17:0b:6e:f2:84:26:82:f9:ab:
da:d3:cc:c9:de:97:90:7c:e7:82:ea:ca:56:1e:42:10:2d:1f:
f6:c7:41:fc:62:f3:15:00:1e:3c:bc:b9:e5:76:5a:87:55:65:
98:97:8b:78:1a:df:78:4e:2d:ba:54:fd:bc:a0:b7:c2:fb:17:
bd:31:09:ff:72:49:ab:87:38:dd:37:44:cf:7f:75:e2:a8:50:
33:8d:d0:cb:7c:c7:aa:d9:0f:68:fe:91:55:61:2b:79:65:a4:
90:90:bf:bb:4d:f9:8a:ca:94:01:b5:f3:1b:3f:e9:27:cc:44:
d8:11:82:5d:aa:10:06:cb:00:46:10:0a:0e:af:75:24:b6:aa:
23:33:19:00:fd:ac:03:ca:71:f2:c5:f3:99:83:92:35:44:a0:
c7:be:8f:95:c3:da:a8:06:4a:ff:5e:8a:51:c3:58:39:88:6e:
f2:bf:cc:58:56:6e:fb:c9:0a:40:b9:1f:c6:6c:df:87:7f:2b:
ce:2e:80:95:6d:11:71:cd:b5:2c:3e:89:bf:f0:60:1b:36:fb:
b7:fe:7c:e3:55:02:79:5a:b5:26:5d:32:a3:d9:0b:d5:f1:86:
0d:a9:bf:f3:2c:61:8d:66:14:77:e4:02:40:96:a3:a3:c9:73:
d0:ce:26:b5
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAhoCMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTEwNjE3NTUwOVoXDTI1MTIzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQjAxRkYxMTAvBgNVBAUTKDY3NUU2M0E0QzE3OEM2RjU2NjAyNjQw
MjQ0NzI0NjRFQjk4RTFCNUQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDEcTciumN1a4jfBa7SWPHIsX9o+YzqtNasvJPCzGK1u1XgG6UNkwPOzkAS6JUo
liyDbCPCEZ8cUuaiT9QwgcPKVZ4pxxUM2FEVVHq2VUJa8bAp5ZeScXMn8bWhEI2v
pViqZHW2JguFUMOQ+rYiL1egEvLWXZSNtKziPkg5c8+yHsmaUJDNTKX4OBSgKiri
WqIpiMs7kNT4DZC+vNbKS9Q2q8nL1QuVRfZ4+wg9g1l/HMET5sw5hgL/0jCJ/add
JGDGnUYqPGiIClQvV6g5FknfwiC1SWs7kEiHvdur+Mb0xSbA3DnCFfRIhR+zzT53
yRMK0WOonho4hzcm4bZJLKODAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUZ15jpMF4
xvVmAmQCRHJGTrmOG10wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUIwMUZGL0I4QzFFN0Q0NDEyMTExRUNBQzUyNTQ4M0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFCMDFGRi9COEMxRTdENDQxMjExMUVDQUM1MjU0ODNDNEY5QUUwMi9aMTVqcE1G
NHh2Vm1BbVFDUkhKR1RybU9HMTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAidfMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ5tkMA8EAgAC
MAkDBwAgAQ30wYAwDQYJKoZIhvcNAQELBQADggEBAKBgR+NaSGmGDxcLbvKEJoL5
q9rTzMnel5B854LqylYeQhAtH/bHQfxi8xUAHjy8ueV2WodVZZiXi3ga33hOLbpU
/bygt8L7F70xCf9ySauHON03RM9/deKoUDON0Mt8x6rZD2j+kVVhK3llpJCQv7tN
+YrKlAG18xs/6SfMRNgRgl2qEAbLAEYQCg6vdSS2qiMzGQD9rAPKcfLF85mDkjVE
oMe+j5XD2qgGSv9eilHDWDmIbvK/zFhWbvvJCkC5H8Zs34d/K84ugJVtEXHNtSw+
ib/wYBs2+7f+fONVAnlatSZdMqPZC9Xxhg2pv/MsYY1mFHfkAkCWo6PJc9DOJrU=
-----END CERTIFICATE-----
Generated at Fri Nov 22 06:58:51 2024 by rpki-client on console-fra.rpki-client.org