Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b5wj5AN3j-Ace8lQiL_R5rMoqps.cer
File: b5wj5AN3j-Ace8lQiL_R5rMoqps.cer (raw, json)
Hash identifier: FTuH43zkdyuq+zLSnbNBJRgCSFTzEOVTbHcqXAtvrI4=
Subject key identifier: 6F:9C:23:E4:03:77:8F:E0:1C:7B:C9:50:88:BF:D1:E6:B3:28:AA:9B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C5EC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DB6FB/11CD1B6E68BC11EE920EDB4DC4F9AE02/b5wj5AN3j-Ace8lQiL_R5rMoqps.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DB6FB/11CD1B6E68BC11EE920EDB4DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 25 Oct 2023 06:01:10 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 138360
IP: 103.131.106.0/24
IP: 103.142.160.0/24
IP: 2001:df7:900::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 08:07:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116204 (0x1c5ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 25 06:01:10 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A91DB6FB/serialNumber=6F9C23E403778FE01C7BC95088BFD1E6B328AA9B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4e:02:82:6d:42:aa:75:54:f0:57:11:71:0a:
c2:07:4b:af:2e:6a:b1:38:6d:a4:9c:67:b0:74:00:
b3:6e:55:27:7c:f3:9b:2c:8f:ce:43:26:55:7b:9e:
71:55:89:f0:6d:e2:cb:38:77:7b:d4:02:ce:80:67:
15:ba:a0:1f:85:cd:6d:95:b6:83:1e:72:c5:02:ad:
c5:38:08:4c:59:c7:06:8d:8f:d4:c0:81:43:41:f4:
c0:0e:2e:b1:03:62:0b:f5:61:1d:4b:18:d6:e8:9a:
03:b9:7e:49:95:3d:e6:50:a1:1b:f4:4e:47:b4:19:
80:fc:ea:7c:1c:ff:17:73:dc:57:06:5f:bd:3d:db:
8f:92:53:a9:d2:74:a6:22:c2:4a:e6:05:c0:ee:c0:
e3:46:c8:fa:8a:86:7f:03:63:c2:db:34:f6:8c:70:
14:b8:82:5b:37:20:2c:7c:7d:d7:5a:a3:e2:bc:cd:
11:f7:db:4d:50:39:11:84:08:cd:4d:6d:19:3f:77:
38:7c:9b:be:a5:c2:06:c6:a1:d9:cc:3c:e9:2d:1d:
b3:1f:2d:2a:d6:e3:f9:fa:23:65:c7:7e:f6:e0:f0:
6d:11:7e:c0:5d:49:ea:ce:db:eb:2c:4f:38:19:90:
8d:18:67:87:25:31:54:fe:04:8c:d5:41:bb:5c:78:
3e:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:9C:23:E4:03:77:8F:E0:1C:7B:C9:50:88:BF:D1:E6:B3:28:AA:9B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DB6FB/11CD1B6E68BC11EE920EDB4DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DB6FB/11CD1B6E68BC11EE920EDB4DC4F9AE02/b5wj5AN3j-Ace8lQiL_R5rMoqps.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138360
sbgp-ipAddrBlock: critical
IPv4:
103.131.106.0/24
103.142.160.0/24
IPv6:
2001:df7:900::/48
Signature Algorithm: sha256WithRSAEncryption
ce:6a:7a:4b:31:4b:5a:bb:33:83:89:a1:6a:d1:b7:59:f9:6e:
3c:4d:cf:0d:7e:4e:38:2a:c3:80:6c:61:37:39:b0:48:19:2f:
96:52:da:93:4c:ef:9e:dd:38:1d:21:cb:16:3a:8d:32:e5:a4:
03:e3:db:cf:70:41:e0:40:ea:7c:6d:00:dd:b7:ef:ed:af:9e:
eb:9e:e2:bd:fc:bf:c8:57:07:51:19:47:9f:a6:9f:4d:0b:1c:
f0:f9:4b:e9:4a:a4:73:ae:1c:43:72:b8:8a:b3:fd:fc:1a:c9:
36:db:d4:2c:0f:c3:36:e5:bd:01:7e:16:08:9e:c9:52:76:7a:
6e:4e:3e:4e:4d:ae:c2:0c:ae:3f:d6:da:c5:90:e2:6e:7f:65:
4d:05:e0:16:fe:99:90:3d:ad:b0:26:4a:35:4e:ea:2f:e6:81:
d2:49:af:9d:80:5f:f1:b2:7c:e5:75:ac:40:44:13:c4:b1:44:
a5:fc:8a:6f:68:63:e4:3c:b3:71:ae:ba:74:e0:95:b7:ec:5e:
00:ea:47:7d:ae:2d:b3:0d:95:6f:fe:2b:25:4d:97:50:84:0a:
7b:f9:c3:22:82:04:5a:c1:f6:93:16:19:75:bc:ea:1c:78:8c:
80:81:4b:86:fc:1a:f0:fc:ed:4e:bc:0d:97:84:82:ab:5c:4a:
d5:17:3c:33
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIDAcXsMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMTAyNTA2MDExMFoXDTI0MTIzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxREI2RkIxMTAvBgNVBAUTKDZGOUMyM0U0MDM3NzhGRTAxQzdCQzk1
MDg4QkZEMUU2QjMyOEFBOUIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCzTgKCbUKqdVTwVxFxCsIHS68uarE4baScZ7B0ALNuVSd885ssj85DJlV7nnFV
ifBt4ss4d3vUAs6AZxW6oB+FzW2VtoMecsUCrcU4CExZxwaNj9TAgUNB9MAOLrED
Ygv1YR1LGNbomgO5fkmVPeZQoRv0Tke0GYD86nwc/xdz3FcGX70924+SU6nSdKYi
wkrmBcDuwONGyPqKhn8DY8LbNPaMcBS4gls3ICx8fddao+K8zRH3201QORGECM1N
bRk/dzh8m76lwgbGodnMPOktHbMfLSrW4/n6I2XHfvbg8G0RfsBdSerO2+ssTzgZ
kI0YZ4clMVT+BIzVQbtceD6VAgMBAAGjggMmMIIDIjAdBgNVHQ4EFgQUb5wj5AN3
j+Ace8lQiL/R5rMoqpswHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MURCNkZCLzExQ0QxQjZFNjhCQzExRUU5MjBFREI0REM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFEQjZGQi8xMUNEMUI2RTY4QkMxMUVFOTIwRURCNERDNEY5QUUwMi9iNXdqNUFO
M2otQWNlOGxRaUxfUjVyTW9xcHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhx4MDYGCCsGAQUFBwEHAQH/BCcwJTASBAIAATAMAwQAZ4NqAwQAZ46g
MA8EAgACMAkDBwAgAQ33CQAwDQYJKoZIhvcNAQELBQADggEBAM5qeksxS1q7M4OJ
oWrRt1n5bjxNzw1+Tjgqw4BsYTc5sEgZL5ZS2pNM757dOB0hyxY6jTLlpAPj289w
QeBA6nxtAN237+2vnuue4r38v8hXB1EZR5+mn00LHPD5S+lKpHOuHENyuIqz/fwa
yTbb1CwPwzblvQF+FgieyVJ2em5OPk5NrsIMrj/W2sWQ4m5/ZU0F4Bb+mZA9rbAm
SjVO6i/mgdJJr52AX/GyfOV1rEBEE8SxRKX8im9oY+Q8s3GuunTglbfsXgDqR32u
LbMNlW/+KyVNl1CECnv5wyKCBFrB9pMWGXW86hx4jICBS4b8GvD87U68DZeEgqtc
StUXPDM=
-----END CERTIFICATE-----
Generated at Thu May 2 10:18:33 2024 by rpki-client on console-ams.rpki-client.org