Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ak27o21Mdn1b1ytu6XCoAA_FSV4.cer
File: ak27o21Mdn1b1ytu6XCoAA_FSV4.cer (raw, json)
Hash identifier: oQeh3GnK4S1CGIm0h3/XjcJ7VQfV8njjr1OaZ4CaCBs=
Subject key identifier: 6A:4D:BB:A3:6D:4C:76:7D:5B:D7:2B:6E:E9:70:A8:00:0F:C5:49:5E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C89C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BF8C3/D0E33FA402C311EB8ADC3238C4F9AE02/ak27o21Mdn1b1ytu6XCoAA_FSV4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BF8C3/D0E33FA402C311EB8ADC3238C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 02 Nov 2023 22:06:01 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 141226
IP: 103.5.108.0/22
IP: 103.156.192.0/23
IP: 118.67.192.0/21
IP: 163.47.188.0/22
IP: 202.36.209.0/24
IP: 2407:c9c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 14:31:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116892 (0x1c89c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 2 22:06:01 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A91BF8C3/serialNumber=6A4DBBA36D4C767D5BD72B6EE970A8000FC5495E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:48:f8:ef:83:de:da:55:b6:e9:99:a2:47:bd:
b8:78:68:30:5c:52:25:cc:44:db:ee:ef:9f:b4:c5:
67:f9:56:b2:10:af:34:03:b2:3e:81:f7:d5:ff:eb:
38:eb:0c:d7:2a:16:7c:38:24:68:6f:89:d3:9a:bb:
d8:a4:cc:8c:5f:99:c6:7b:d5:af:6d:96:af:7a:44:
38:d5:52:c1:c0:4e:dc:99:b8:f0:dd:87:9f:a5:c6:
43:fd:5f:24:a8:da:78:8e:fe:05:cc:2d:f8:65:d9:
a4:3a:35:f8:4e:3d:6b:95:5d:13:80:30:6e:01:66:
ab:be:f0:fd:da:13:b6:bc:3f:fe:05:40:60:56:23:
ef:e8:b2:86:41:37:56:9a:19:b3:a4:5f:18:86:e7:
37:f5:a8:ef:d2:34:5f:9d:18:23:72:32:97:42:7d:
83:95:2f:e8:93:83:e1:8f:60:e1:30:92:72:c3:f0:
15:61:aa:c7:40:44:70:f0:d2:3d:1b:2b:0b:93:08:
2c:81:ac:e7:01:74:32:aa:eb:f0:89:7e:6e:3b:89:
68:ea:91:0b:74:c5:89:74:97:a6:a3:a9:e6:7d:6a:
e7:d0:db:cc:d7:4a:b0:4a:c1:9c:46:c7:82:25:ab:
a8:ed:40:56:47:37:09:49:af:b7:60:ff:53:aa:86:
2f:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:4D:BB:A3:6D:4C:76:7D:5B:D7:2B:6E:E9:70:A8:00:0F:C5:49:5E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BF8C3/D0E33FA402C311EB8ADC3238C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BF8C3/D0E33FA402C311EB8ADC3238C4F9AE02/ak27o21Mdn1b1ytu6XCoAA_FSV4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141226
sbgp-ipAddrBlock: critical
IPv4:
103.5.108.0/22
103.156.192.0/23
118.67.192.0/21
163.47.188.0/22
202.36.209.0/24
IPv6:
2407:c9c0::/32
Signature Algorithm: sha256WithRSAEncryption
03:97:f2:04:bf:1b:9d:2c:a2:31:f2:6e:21:ce:21:2e:62:65:
b2:ef:5e:02:70:f7:16:fa:1c:39:38:28:3f:f0:04:3a:63:0b:
2b:77:3d:ac:89:51:29:2b:9f:2f:af:ad:70:7a:28:24:b3:2c:
e4:ee:d2:76:22:4a:b5:ae:27:48:46:60:2d:db:0e:79:09:60:
bc:a5:6b:85:50:ff:78:5f:de:44:6f:c2:f6:b9:25:fe:63:f4:
58:35:e9:79:32:19:bb:d9:9a:14:ef:b4:81:f6:e1:85:6a:89:
e1:c7:62:1c:9d:43:66:01:d6:f1:5e:bc:47:28:9d:78:96:97:
3f:17:63:ef:7e:0c:24:bc:ef:0f:a8:77:41:8e:4a:76:e9:fc:
7d:13:1d:68:82:b2:3b:92:b8:d8:b7:08:05:85:b9:cf:98:c6:
d6:b0:60:4d:4c:7d:f3:81:83:79:e4:e2:f8:8e:6e:73:b2:44:
78:f9:5b:c8:f9:c0:94:43:35:02:50:c2:d0:1e:68:25:3e:0e:
4a:74:8f:03:5d:ae:ef:db:ae:d6:32:c2:1a:f7:7d:2d:11:76:
cd:3b:9f:0d:fe:96:7b:b6:32:54:a4:b4:f7:31:68:2e:f3:5a:
78:af:0d:ab:a1:ec:ea:46:09:43:0b:c9:75:c8:91:c2:04:cd:
69:2e:1d:8d
-----BEGIN CERTIFICATE-----
MIIGQTCCBSmgAwIBAgIDAcicMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMTEwMjIyMDYwMVoXDTI0MTIzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQkY4QzMxMTAvBgNVBAUTKDZBNERCQkEzNkQ0Qzc2N0Q1QkQ3MkI2
RUU5NzBBODAwMEZDNTQ5NUUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC9SPjvg97aVbbpmaJHvbh4aDBcUiXMRNvu75+0xWf5VrIQrzQDsj6B99X/6zjr
DNcqFnw4JGhvidOau9ikzIxfmcZ71a9tlq96RDjVUsHATtyZuPDdh5+lxkP9XySo
2niO/gXMLfhl2aQ6NfhOPWuVXROAMG4BZqu+8P3aE7a8P/4FQGBWI+/osoZBN1aa
GbOkXxiG5zf1qO/SNF+dGCNyMpdCfYOVL+iTg+GPYOEwknLD8BVhqsdARHDw0j0b
KwuTCCyBrOcBdDKq6/CJfm47iWjqkQt0xYl0l6ajqeZ9aufQ28zXSrBKwZxGx4Il
q6jtQFZHNwlJr7dg/1Oqhi9pAgMBAAGjggM2MIIDMjAdBgNVHQ4EFgQUak27o21M
dn1b1ytu6XCoAA/FSV4wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUJGOEMzL0QwRTMzRkE0MDJDMzExRUI4QURDMzIzOEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFCRjhDMy9EMEUzM0ZBNDAyQzMxMUVCOEFEQzMyMzhDNEY5QUUwMi9hazI3bzIx
TWRuMWIxeXR1NlhDb0FBX0ZTVjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAieqMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQCZwVsAwQBZ5zA
AwQDdkPAAwQCoy+8AwQAyiTRMA0EAgACMAcDBQAkB8nAMA0GCSqGSIb3DQEBCwUA
A4IBAQADl/IEvxudLKIx8m4hziEuYmWy714CcPcW+hw5OCg/8AQ6Ywsrdz2siVEp
K58vr61weigksyzk7tJ2Ikq1ridIRmAt2w55CWC8pWuFUP94X95Eb8L2uSX+Y/RY
Nel5Mhm72ZoU77SB9uGFaonhx2IcnUNmAdbxXrxHKJ14lpc/F2PvfgwkvO8PqHdB
jkp26fx9Ex1ogrI7krjYtwgFhbnPmMbWsGBNTH3zgYN55OL4jm5zskR4+VvI+cCU
QzUCUMLQHmglPg5KdI8DXa7v267WMsIa930tEXbNO58N/pZ7tjJUpLT3MWgu81p4
rw2roezqRglDC8l1yJHCBM1pLh2N
-----END CERTIFICATE-----
Generated at Fri Apr 19 15:10:17 2024 by rpki-client on console-fra.rpki-client.org