Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.cer
File: ZH0JJ9s7F44vZUoyaFV_5bXWcpw.cer (raw, json)
Hash identifier: RkgUM/MqeeGuX/3ZbbohM9xN4RuExOdmaq/7DitEl8A=
Subject key identifier: 64:7D:09:27:DB:3B:17:8E:2F:65:4A:32:68:55:7F:E5:B5:D6:72:9C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E6D1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 27 Mar 2024 15:31:20 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 134835
AS: 135309
AS: 139859
IP: 45.120.156.0/22
IP: 45.125.164.0/22
IP: 103.56.216.0/22
IP: 103.194.40.0/22
IP: 103.200.96.0/22
IP: 103.204.172.0/22
IP: 122.128.96.0/22
IP: 202.168.152.0/22
IP: 2403:ad80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 04:13:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124625 (0x1e6d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 27 15:31:20 2024 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A919A777/serialNumber=647D0927DB3B178E2F654A3268557FE5B5D6729C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:1f:ef:47:b4:39:27:d7:e4:df:cf:15:67:7e:
27:82:1b:47:a0:c1:b6:86:e7:c4:38:45:a4:71:cf:
3d:d6:18:9f:15:db:6c:59:b4:a2:52:18:ce:28:1b:
53:52:58:7c:b0:46:fc:bc:df:76:d7:5c:33:4d:8f:
6e:94:f9:15:59:31:c4:86:fa:c7:77:d3:46:56:2b:
16:f2:73:aa:b8:5d:06:f7:b1:4d:6d:5c:bf:5a:b0:
88:af:ed:db:f3:19:77:1b:57:50:8d:82:97:35:1f:
06:c5:ef:75:bf:36:14:b3:b7:43:a9:4e:b4:52:f8:
7c:0f:5c:6b:d2:cc:c0:33:98:2c:8d:2c:89:04:30:
e6:18:e3:d6:88:e3:25:43:ec:4e:0f:71:54:73:88:
f6:0d:d1:b2:93:46:ff:bd:50:35:c9:7c:80:e3:23:
c3:f0:65:49:17:27:1b:05:eb:45:c9:71:5e:f7:f9:
54:b3:fd:b0:60:3f:cd:81:85:2c:86:a3:2e:80:94:
e9:a1:e6:2b:c2:2f:9a:ba:a9:c8:d4:0c:c3:52:b5:
b7:75:89:2d:39:6a:4c:85:fd:ff:00:e8:5e:da:c1:
85:8d:40:57:51:f9:a5:c0:13:f3:4d:f4:8a:10:10:
8c:a2:e0:c6:27:e8:3f:30:87:03:46:0b:ec:bd:65:
35:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:7D:09:27:DB:3B:17:8E:2F:65:4A:32:68:55:7F:E5:B5:D6:72:9C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134835
135309
139859
sbgp-ipAddrBlock: critical
IPv4:
45.120.156.0/22
45.125.164.0/22
103.56.216.0/22
103.194.40.0/22
103.200.96.0/22
103.204.172.0/22
122.128.96.0/22
202.168.152.0/22
IPv6:
2403:ad80::/32
Signature Algorithm: sha256WithRSAEncryption
94:84:d2:21:ba:29:85:46:34:d2:a3:8c:f1:b0:b9:23:02:03:
ef:dd:63:8f:72:cb:5a:67:08:f8:ea:43:d6:c5:b7:88:c7:a8:
78:6f:f4:ec:e4:e0:fe:f7:68:e4:cf:8c:28:50:d7:f8:31:f0:
cc:69:b6:48:36:55:fc:1a:ce:95:88:9b:ce:61:cf:dd:34:e2:
04:7d:ae:81:e9:c7:e3:ef:69:06:e6:bf:fa:98:57:58:4e:5f:
9f:fc:ee:6e:a1:28:8e:2e:f3:87:d8:16:cd:7e:bb:b5:12:c9:
6d:68:80:17:fe:ed:da:b0:ec:44:f9:9c:47:4f:d0:91:f3:ef:
5e:93:e0:6e:94:50:b2:52:39:12:5e:2b:3f:91:70:1c:4a:0f:
b7:5d:92:c0:c7:4e:77:eb:f7:ca:88:6c:ab:15:08:be:24:54:
80:19:f4:e1:63:9b:98:35:f5:dc:c5:22:29:eb:e1:da:a3:81:
e4:fa:aa:c0:bf:8e:d2:59:b8:b5:ae:ef:39:5d:74:c6:33:c2:
ec:10:55:d4:de:e5:f9:6e:ed:1f:4c:b3:24:3c:62:4b:d8:33:
19:75:df:02:d6:9d:31:6d:ed:86:58:75:d2:72:f0:94:50:fa:
d5:2a:d3:3f:18:6d:89:dc:cf:32:46:d5:47:46:45:9d:e6:6a:
75:9d:3f:f5
-----BEGIN CERTIFICATE-----
MIIGXTCCBUWgAwIBAgIDAebRMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDMyNzE1MzEyMFoXDTI0MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxOUE3NzcxMTAvBgNVBAUTKDY0N0QwOTI3REIzQjE3OEUyRjY1NEEz
MjY4NTU3RkU1QjVENjcyOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCTH+9HtDkn1+TfzxVnfieCG0egwbaG58Q4RaRxzz3WGJ8V22xZtKJSGM4oG1NS
WHywRvy833bXXDNNj26U+RVZMcSG+sd300ZWKxbyc6q4XQb3sU1tXL9asIiv7dvz
GXcbV1CNgpc1HwbF73W/NhSzt0OpTrRS+HwPXGvSzMAzmCyNLIkEMOYY49aI4yVD
7E4PcVRziPYN0bKTRv+9UDXJfIDjI8PwZUkXJxsF60XJcV73+VSz/bBgP82BhSyG
oy6AlOmh5ivCL5q6qcjUDMNStbd1iS05akyF/f8A6F7awYWNQFdR+aXAE/NN9IoQ
EIyi4MYn6D8whwNGC+y9ZTVXAgMBAAGjggNSMIIDTjAdBgNVHQ4EFgQUZH0JJ9s7
F44vZUoyaFV/5bXWcpwwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTlBNzc3LzBCQTU3MkIwRUM0RjExRUVBMUIzODg2NkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE5QTc3Ny8wQkE1NzJCMEVDNEYxMUVFQTFCMzg4NjZDNEY5QUUwMi9aSDBKSjlz
N0Y0NHZaVW95YUZWXzViWFdjcHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQgBAf8EFTAT
oBEwDwIDAg6zAgMCEI0CAwIiUzBYBggrBgEFBQcBBwEB/wRJMEcwNgQCAAEwMAME
Ai14nAMEAi19pAMEAmc42AMEAmfCKAMEAmfIYAMEAmfMrAMEAnqAYAMEAsqomDAN
BAIAAjAHAwUAJAOtgDANBgkqhkiG9w0BAQsFAAOCAQEAlITSIbophUY00qOM8bC5
IwID791jj3LLWmcI+OpD1sW3iMeoeG/07OTg/vdo5M+MKFDX+DHwzGm2SDZV/BrO
lYibzmHP3TTiBH2ugenH4+9pBua/+phXWE5fn/zubqEoji7zh9gWzX67tRLJbWiA
F/7t2rDsRPmcR0/QkfPvXpPgbpRQslI5El4rP5FwHEoPt12SwMdOd+v3yohsqxUI
viRUgBn04WObmDX13MUiKevh2qOB5PqqwL+O0lm4ta7vOV10xjPC7BBV1N7l+W7t
H0yzJDxiS9gzGXXfAtadMW3thlh10nLwlFD61SrTPxhtidzPMkbVR0ZFneZqdZ0/
9Q==
-----END CERTIFICATE-----
Generated at Thu May 2 05:10:56 2024 by rpki-client on console-ams.rpki-client.org