Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-G3qHKaDsu-yLL9mpe3SCbM28U.cer
File: _-G3qHKaDsu-yLL9mpe3SCbM28U.cer (raw, json)
Hash identifier: /bHVxuib9O6fnwAikKx15F1+kaT/E/hTtd3T7rD7ECQ=
Subject key identifier: FF:E1:B7:A8:72:9A:0E:CB:BE:C8:B2:FD:9A:97:B7:48:26:CC:DB:C5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CA98
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AE3F2/86A0FB28461611ED92EAAD20C4F9AE02/_-G3qHKaDsu-yLL9mpe3SCbM28U.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AE3F2/86A0FB28461611ED92EAAD20C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 13 Nov 2023 18:01:01 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 150345
IP: 103.17.6.0/23
IP: 2400:b3a0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 03:16:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117400 (0x1ca98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 13 18:01:01 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91AE3F2/serialNumber=FFE1B7A8729A0ECBBEC8B2FD9A97B74826CCDBC5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:91:9a:6d:ae:ae:83:e6:0d:1d:59:8c:7e:11:
23:a6:d7:f4:8f:05:42:de:fb:7f:92:37:2f:c6:87:
6e:cb:9e:e0:b3:6a:64:77:8c:16:b8:5e:76:9a:ca:
dd:d3:57:73:90:c9:5c:7d:4d:db:a0:9c:d2:f6:3a:
81:12:33:ff:6d:80:2a:36:c4:fb:d8:05:24:03:21:
af:a9:85:fe:3f:b8:81:58:03:5a:75:88:79:9f:e0:
f6:67:6b:36:25:cf:c5:b7:70:39:85:07:71:1d:aa:
11:26:2c:48:48:85:86:b6:48:b7:d7:1d:af:7a:46:
4b:2f:e6:9b:4b:6f:37:ab:e2:93:a6:2c:30:d1:dd:
ad:6a:68:53:df:99:ab:3e:cb:d5:d5:e5:3d:76:cb:
98:6b:9a:33:83:ba:b4:ed:b4:14:8d:df:83:19:fc:
76:94:25:15:04:39:17:bf:9f:8d:26:2c:2d:a9:80:
e3:25:8c:f5:9b:f4:55:04:9e:38:ab:d1:a9:42:8e:
95:16:bb:93:d9:4d:15:65:28:1a:ba:1a:f7:e6:b1:
e1:c7:4c:28:0c:55:63:49:bd:97:9e:9b:99:43:85:
a6:08:c0:42:ba:65:87:91:ca:c1:ac:0e:d8:27:70:
3f:81:46:35:59:8c:3c:72:80:ec:44:31:bb:63:ed:
91:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:E1:B7:A8:72:9A:0E:CB:BE:C8:B2:FD:9A:97:B7:48:26:CC:DB:C5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AE3F2/86A0FB28461611ED92EAAD20C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AE3F2/86A0FB28461611ED92EAAD20C4F9AE02/_-G3qHKaDsu-yLL9mpe3SCbM28U.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150345
sbgp-ipAddrBlock: critical
IPv4:
103.17.6.0/23
IPv6:
2400:b3a0::/32
Signature Algorithm: sha256WithRSAEncryption
51:4b:34:db:08:00:1e:90:dd:d0:f4:d3:ba:5c:1f:13:f5:46:
c0:11:0d:37:0b:53:4b:1a:1f:a4:0d:2d:32:30:36:41:a7:00:
de:a2:f2:db:5f:6e:c5:fe:45:47:67:88:3b:25:12:7f:d6:db:
11:a0:d5:bb:41:6e:55:be:e8:81:a4:91:fb:bc:d4:a6:fc:38:
d1:71:ac:62:3f:76:0e:f1:57:01:33:77:4a:61:cc:81:f9:2b:
b8:a6:92:be:3b:b7:27:f5:0e:2f:4b:aa:8e:e5:e2:fc:30:49:
d1:39:0f:08:bc:8c:a1:1a:ad:85:8d:7f:5d:51:99:a8:8d:68:
be:a9:c1:01:79:6b:60:96:51:92:ba:c2:53:61:23:af:f6:1d:
9f:3a:08:49:e3:07:80:75:75:3a:51:23:13:3b:00:a6:6e:2c:
33:63:09:bf:d6:b5:e0:47:b2:80:8d:d6:f3:70:3f:20:8a:3c:
4c:4b:7a:f9:f0:0b:07:43:5f:c3:a1:e9:97:cf:3d:0d:14:91:
31:40:b7:24:bc:2a:84:c6:19:c3:b6:01:cb:09:ce:2b:0e:74:
82:ab:35:e9:80:75:f3:8f:87:ee:d1:3b:5f:c9:c2:72:85:f1:
11:f5:07:06:eb:32:51:d0:72:5a:f7:a9:c1:b3:42:a2:9e:05:
6b:b3:2f:1d
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAcqYMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMTExMzE4MDEwMVoXDTI1MDEzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQUUzRjIxMTAvBgNVBAUTKEZGRTFCN0E4NzI5QTBFQ0JCRUM4QjJG
RDlBOTdCNzQ4MjZDQ0RCQzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQD6kZptrq6D5g0dWYx+ESOm1/SPBULe+3+SNy/Gh27LnuCzamR3jBa4Xnaayt3T
V3OQyVx9TdugnNL2OoESM/9tgCo2xPvYBSQDIa+phf4/uIFYA1p1iHmf4PZnazYl
z8W3cDmFB3EdqhEmLEhIhYa2SLfXHa96Rksv5ptLbzer4pOmLDDR3a1qaFPfmas+
y9XV5T12y5hrmjODurTttBSN34MZ/HaUJRUEORe/n40mLC2pgOMljPWb9FUEnjir
0alCjpUWu5PZTRVlKBq6GvfmseHHTCgMVWNJvZeem5lDhaYIwEK6ZYeRysGsDtgn
cD+BRjVZjDxygOxEMbtj7ZGrAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQU/+G3qHKa
Dsu+yLL9mpe3SCbM28UwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUFFM0YyLzg2QTBGQjI4NDYxNjExRUQ5MkVBQUQyMEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFBRTNGMi84NkEwRkIyODQ2MTYxMUVEOTJFQUFEMjBDNEY5QUUwMi9fLUczcUhL
YURzdS15TEw5bXBlM1NDYk0yOFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAktJMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBZxEGMA0EAgAC
MAcDBQAkALOgMA0GCSqGSIb3DQEBCwUAA4IBAQBRSzTbCAAekN3Q9NO6XB8T9UbA
EQ03C1NLGh+kDS0yMDZBpwDeovLbX27F/kVHZ4g7JRJ/1tsRoNW7QW5VvuiBpJH7
vNSm/DjRcaxiP3YO8VcBM3dKYcyB+Su4ppK+O7cn9Q4vS6qO5eL8MEnROQ8IvIyh
Gq2FjX9dUZmojWi+qcEBeWtgllGSusJTYSOv9h2fOghJ4weAdXU6USMTOwCmbiwz
Ywm/1rXgR7KAjdbzcD8gijxMS3r58AsHQ1/DoemXzz0NFJExQLckvCqExhnDtgHL
Cc4rDnSCqzXpgHXzj4fu0TtfycJyhfER9QcG6zJR0HJa96nBs0KingVrsy8d
-----END CERTIFICATE-----
Generated at Thu Apr 25 04:07:13 2024 by rpki-client on console-ams.rpki-client.org