Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsLNHSuseCZIUvEtGLIYwF5EiEk.cer
File: ZsLNHSuseCZIUvEtGLIYwF5EiEk.cer (raw, json)
Hash identifier: uEwd5YYWCaThkFXi3HORsoKL0aqWF21cobronmiCI+A=
Subject key identifier: 66:C2:CD:1D:2B:AC:78:26:48:52:F1:2D:18:B2:18:C0:5E:44:88:49
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0205C5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9123DB1/DA2A42BE8BC011E897C79156C4F9AE02/ZsLNHSuseCZIUvEtGLIYwF5EiEk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9123DB1/DA2A42BE8BC011E897C79156C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 08 Aug 2024 13:04:06 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 137912
IP: 103.117.21.0/24
IP: 103.118.123.0/24
IP: 103.118.154.0/23
IP: 2001:df5:9500::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132549 (0x205c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 8 13:04:06 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A9123DB1/serialNumber=66C2CD1D2BAC78264852F12D18B218C05E448849
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:08:13:1d:39:64:d5:68:b3:16:fe:3c:8f:93:
db:89:28:3c:76:04:c3:e1:03:96:e2:27:9b:1c:c0:
45:7c:48:47:36:b6:de:06:73:9f:a6:71:b1:12:c1:
1f:11:a3:e0:a0:5d:5d:3f:46:97:87:76:aa:f3:40:
d5:81:cb:6a:c8:5b:46:76:c1:5f:b9:87:b9:99:ea:
96:98:09:0f:e9:e0:bb:22:95:f3:b9:1f:46:4a:ab:
3d:92:dd:a3:fe:e2:1e:d1:fc:b8:fd:c4:c4:a2:a3:
2f:3b:0c:51:01:e3:4d:f9:63:4f:0c:96:66:31:7e:
95:28:89:44:ec:94:92:d0:21:7b:2f:16:3d:65:45:
0a:a2:86:bc:cb:b1:cc:70:6f:8e:01:41:6b:2f:bf:
74:7e:54:03:ae:06:40:da:e9:a5:ae:16:f0:9c:b0:
72:f9:63:b2:d2:56:44:81:58:6d:fc:f5:5e:4c:db:
3e:44:5f:07:e2:d7:df:b8:ea:4b:a6:f4:28:90:2b:
c5:1f:1f:c8:6d:86:0d:e0:8b:01:09:6d:b3:4f:98:
45:0a:92:a6:e2:75:54:fe:54:90:65:59:e4:40:9d:
da:31:d5:8c:c9:31:95:f5:24:4e:2d:a7:21:73:14:
be:c2:09:f7:92:4b:7b:fe:5b:24:3f:71:b7:25:69:
fd:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:C2:CD:1D:2B:AC:78:26:48:52:F1:2D:18:B2:18:C0:5E:44:88:49
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9123DB1/DA2A42BE8BC011E897C79156C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9123DB1/DA2A42BE8BC011E897C79156C4F9AE02/ZsLNHSuseCZIUvEtGLIYwF5EiEk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137912
sbgp-ipAddrBlock: critical
IPv4:
103.117.21.0/24
103.118.123.0/24
103.118.154.0/23
IPv6:
2001:df5:9500::/48
Signature Algorithm: sha256WithRSAEncryption
51:70:36:54:f8:da:49:c3:2c:bd:75:8f:a8:02:8c:79:ca:12:
9a:16:86:dd:9c:3e:67:34:5e:b1:d0:df:e5:05:bd:24:79:c9:
9c:ee:52:8c:67:72:38:0e:19:3b:28:b3:d7:83:0c:af:90:5c:
c4:24:b1:8a:e3:cb:e2:9f:99:ac:5f:77:90:94:15:3a:70:4d:
20:eb:d3:14:73:4e:41:28:29:da:10:6a:77:18:e2:ca:c0:8f:
60:77:6f:48:d0:c3:5f:2b:7e:d2:f9:02:5e:00:08:37:6c:5c:
68:70:fb:2d:7f:08:4d:87:98:76:ec:e6:99:d3:1e:35:70:f6:
77:e3:a1:b9:46:5f:fa:52:2a:40:61:19:80:d7:2c:f7:99:2b:
7b:ea:e7:b7:45:58:32:de:8d:7f:0c:5a:31:3a:cf:d1:e8:12:
2d:1f:0d:d3:19:9e:2a:8a:37:d9:46:b1:b9:da:e9:c6:b4:e5:
fb:ad:a5:80:e6:cd:43:df:96:4f:b0:a1:b6:c5:1c:1f:60:31:
9f:5c:95:49:a1:dd:15:14:40:38:30:25:61:33:32:ac:22:91:
4f:a0:2f:6a:a3:85:d3:fa:83:43:1d:c0:3b:ef:99:9d:a1:46:
11:14:ce:b7:cf:8c:f0:42:db:02:c8:b7:ef:71:ad:32:25:f4:
99:73:67:56
-----BEGIN CERTIFICATE-----
MIIGNzCCBR+gAwIBAgIDAgXFMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDgwODEzMDQwNloXDTI1MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMjNEQjExMTAvBgNVBAUTKDY2QzJDRDFEMkJBQzc4MjY0ODUyRjEy
RDE4QjIxOEMwNUU0NDg4NDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQChCBMdOWTVaLMW/jyPk9uJKDx2BMPhA5biJ5scwEV8SEc2tt4Gc5+mcbESwR8R
o+CgXV0/RpeHdqrzQNWBy2rIW0Z2wV+5h7mZ6paYCQ/p4LsilfO5H0ZKqz2S3aP+
4h7R/Lj9xMSioy87DFEB4035Y08MlmYxfpUoiUTslJLQIXsvFj1lRQqihrzLscxw
b44BQWsvv3R+VAOuBkDa6aWuFvCcsHL5Y7LSVkSBWG389V5M2z5EXwfi19+46kum
9CiQK8UfH8hthg3giwEJbbNPmEUKkqbidVT+VJBlWeRAndox1YzJMZX1JE4tpyFz
FL7CCfeSS3v+WyQ/cbclaf2nAgMBAAGjggMsMIIDKDAdBgNVHQ4EFgQUZsLNHSus
eCZIUvEtGLIYwF5EiEkwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTIzREIxL0RBMkE0MkJFOEJDMDExRTg5N0M3OTE1NkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEyM0RCMS9EQTJBNDJCRThCQzAxMUU4OTdDNzkxNTZDNEY5QUUwMi9ac0xOSFN1
c2VDWklVdkV0R0xJWXdGNUVpRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhq4MDwGCCsGAQUFBwEHAQH/BC0wKzAYBAIAATASAwQAZ3UVAwQAZ3Z7
AwQBZ3aaMA8EAgACMAkDBwAgAQ31lQAwDQYJKoZIhvcNAQELBQADggEBAFFwNlT4
2knDLL11j6gCjHnKEpoWht2cPmc0XrHQ3+UFvSR5yZzuUoxncjgOGTsos9eDDK+Q
XMQksYrjy+Kfmaxfd5CUFTpwTSDr0xRzTkEoKdoQancY4srAj2B3b0jQw18rftL5
Al4ACDdsXGhw+y1/CE2HmHbs5pnTHjVw9nfjoblGX/pSKkBhGYDXLPeZK3vq57dF
WDLejX8MWjE6z9HoEi0fDdMZniqKN9lGsbna6ca05futpYDmzUPflk+wobbFHB9g
MZ9clUmh3RUUQDgwJWEzMqwikU+gL2qjhdP6g0MdwDvvmZ2hRhEUzrfPjPBC2wLI
t+9xrTIl9JlzZ1Y=
-----END CERTIFICATE-----
Generated at Wed Nov 27 04:03:43 2024 by rpki-client on console-fra.rpki-client.org