Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bfCTVmC1JNKoCAZDaLCvxWU4ppo.cer
File: bfCTVmC1JNKoCAZDaLCvxWU4ppo.cer (raw, json)
Hash identifier: JP0ki21+cnFe1wiGPN9uFKAuOJNkJ+B13Ae4rt3hhRs=
Subject key identifier: 6D:F0:93:56:60:B5:24:D2:A8:08:06:43:68:B0:AF:C5:65:38:A6:9A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BDC1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 15 Sep 2023 13:21:59 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 136142
IP: 103.76.110.0/23
IP: 2001:df2:e8c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 06:03:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114113 (0x1bdc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 15 13:21:59 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A912978E/serialNumber=6DF0935660B524D2A808064368B0AFC56538A69A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:03:a1:be:10:33:28:93:fe:ff:3c:d2:75:48:
8c:5f:ea:dc:4a:25:91:79:53:67:16:26:47:f9:ec:
12:05:e2:bb:eb:46:05:78:15:42:3d:76:b1:29:65:
da:fa:2e:d9:80:bf:07:8a:b9:07:30:0a:5d:85:4f:
c4:49:a1:77:2a:3c:9d:94:43:12:e2:08:10:15:88:
2e:8c:1a:44:92:75:2b:15:75:69:14:e6:87:a3:0d:
5a:03:68:88:b7:99:dc:7e:e9:c5:0f:91:89:88:55:
a8:e5:8c:ce:73:98:c2:77:fb:b5:b5:1c:3b:53:7b:
8b:ab:1b:52:3d:4e:c4:b2:c3:59:74:3e:5c:15:60:
c0:c8:3a:57:4a:36:4c:a2:84:ff:64:c2:82:9c:d5:
f3:7e:70:3f:ac:05:49:33:c1:4e:0b:de:c8:5f:ee:
c2:19:4f:db:24:46:6c:5f:05:ad:80:83:d8:07:ef:
9e:ef:9f:5d:d2:fa:55:0e:39:8d:1c:3c:a8:a0:5c:
9c:4b:03:1e:36:c5:1f:76:15:db:64:bc:32:e3:b3:
b6:61:f2:a9:bc:54:ba:ab:32:9f:5f:c7:33:ad:0f:
17:26:09:03:ee:09:7c:b8:f9:e7:a1:dd:08:ae:41:
b4:1f:7c:33:d6:ff:19:33:ba:43:e1:43:17:86:4b:
ca:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:F0:93:56:60:B5:24:D2:A8:08:06:43:68:B0:AF:C5:65:38:A6:9A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136142
sbgp-ipAddrBlock: critical
IPv4:
103.76.110.0/23
IPv6:
2001:df2:e8c0::/48
Signature Algorithm: sha256WithRSAEncryption
4b:c2:05:56:1b:45:17:58:8d:ce:d6:bc:bc:3c:e5:9a:bd:ac:
34:c6:8f:06:29:1f:21:00:92:20:89:6e:c1:4c:52:57:7f:ed:
f5:cb:d9:f9:76:3b:25:12:b1:30:ba:bd:fa:d0:38:24:91:66:
d7:d5:b7:7c:38:2b:93:43:b5:21:c8:53:fc:48:82:c4:a7:14:
b3:35:6e:64:87:b9:46:b8:3a:30:e4:38:52:01:82:83:0e:83:
02:5c:60:75:96:d4:d8:ec:e9:14:dc:1b:52:98:94:97:d9:d1:
9e:0c:8e:f6:2f:a8:05:ca:de:04:05:05:da:3b:7a:e9:1d:ee:
37:7b:d4:10:3e:f0:3a:72:d3:e5:8f:7c:aa:c6:08:5d:9a:10:
c2:b2:74:e3:04:5a:70:ae:aa:11:85:10:a4:39:5e:d5:cb:6d:
c6:c9:c4:55:57:da:64:12:65:23:e8:36:aa:7a:71:a8:35:50:
00:2a:03:47:f2:96:fc:5f:96:4d:b4:1b:9e:00:c8:fc:a7:c4:
5c:c4:c0:11:58:13:a5:68:d1:d9:a3:83:4f:2b:2e:0f:d9:d7:
0e:cd:cd:f8:0c:80:1c:87:47:c2:9b:f7:36:44:3b:6d:e4:84:
a3:ee:00:a9:93:d7:3a:cd:12:96:fb:2e:dc:56:2e:29:8a:b7:
8e:69:1d:57
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAb3BMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDkxNTEzMjE1OVoXDTI0MTIzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMjk3OEUxMTAvBgNVBAUTKDZERjA5MzU2NjBCNTI0RDJBODA4MDY0
MzY4QjBBRkM1NjUzOEE2OUEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDMA6G+EDMok/7/PNJ1SIxf6txKJZF5U2cWJkf57BIF4rvrRgV4FUI9drEpZdr6
LtmAvweKuQcwCl2FT8RJoXcqPJ2UQxLiCBAViC6MGkSSdSsVdWkU5oejDVoDaIi3
mdx+6cUPkYmIVajljM5zmMJ3+7W1HDtTe4urG1I9TsSyw1l0PlwVYMDIOldKNkyi
hP9kwoKc1fN+cD+sBUkzwU4L3shf7sIZT9skRmxfBa2Ag9gH757vn13S+lUOOY0c
PKigXJxLAx42xR92FdtkvDLjs7Zh8qm8VLqrMp9fxzOtDxcmCQPuCXy4+eeh3Qiu
QbQffDPW/xkzukPhQxeGS8oJAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUbfCTVmC1
JNKoCAZDaLCvxWU4ppowHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTI5NzhFL0Q1QUU3RkFDNTNDQTExRUU4MDQ5OTM1RUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEyOTc4RS9ENUFFN0ZBQzUzQ0ExMUVFODA0OTkzNUVDNEY5QUUwMi9iZkNUVm1D
MUpOS29DQVpEYUxDdnhXVTRwcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhPOMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ0xuMA8EAgAC
MAkDBwAgAQ3y6MAwDQYJKoZIhvcNAQELBQADggEBAEvCBVYbRRdYjc7WvLw85Zq9
rDTGjwYpHyEAkiCJbsFMUld/7fXL2fl2OyUSsTC6vfrQOCSRZtfVt3w4K5NDtSHI
U/xIgsSnFLM1bmSHuUa4OjDkOFIBgoMOgwJcYHWW1Njs6RTcG1KYlJfZ0Z4MjvYv
qAXK3gQFBdo7eukd7jd71BA+8Dpy0+WPfKrGCF2aEMKydOMEWnCuqhGFEKQ5XtXL
bcbJxFVX2mQSZSPoNqp6cag1UAAqA0fylvxflk20G54AyPynxFzEwBFYE6Vo0dmj
g08rLg/Z1w7NzfgMgByHR8Kb9zZEO23khKPuAKmT1zrNEpb7LtxWLimKt45pHVc=
-----END CERTIFICATE-----
Generated at Thu May 2 08:03:40 2024 by rpki-client on console-ams.rpki-client.org