Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bicEPDr0D8Xll5OLFU9ci-D9_2w.cer
File: bicEPDr0D8Xll5OLFU9ci-D9_2w.cer (raw, json)
Hash identifier: BH5+DwZIXwHlHFsz8PzFDEXlzKWcuKhvTFrWVOFQMyc=
Subject key identifier: 6E:27:04:3C:3A:F4:0F:C5:E5:97:93:8B:15:4F:5C:8B:E0:FD:FF:6C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C6FE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E01F7/F91D0D282A5B11EBB8921C35C4F9AE02/bicEPDr0D8Xll5OLFU9ci-D9_2w.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E01F7/F91D0D282A5B11EBB8921C35C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 30 Oct 2023 22:51:08 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 141198
IP: 103.156.66.0/23
IP: 2406:7f40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 24 Apr 2024 20:39:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116478 (0x1c6fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 30 22:51:08 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A91E01F7/serialNumber=6E27043C3AF40FC5E597938B154F5C8BE0FDFF6C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:bd:6a:88:d9:f6:29:18:5d:e2:da:e4:f3:e8:
b6:38:6b:c7:e7:b0:0f:8a:0f:69:d4:48:f4:e8:1a:
89:0c:13:18:a8:60:9f:96:86:ca:67:62:9f:79:0c:
fe:89:7b:a2:4c:24:d4:a2:79:9b:3d:58:76:b7:18:
da:18:b7:9d:fe:11:50:4f:33:e8:e2:d8:03:2c:89:
9d:7d:e7:f3:74:cf:6f:5a:fa:3f:e1:e7:48:ca:14:
f1:c4:81:4b:fe:60:3e:4d:49:d0:07:86:f4:c0:b5:
b8:f4:06:8f:91:09:ff:1b:11:4a:5b:ac:1c:06:db:
e7:57:ed:99:78:3b:4a:4e:44:bd:09:90:77:72:b3:
2a:1c:c8:81:b6:8f:94:de:dc:8a:e3:8d:be:8a:23:
b6:4c:57:28:c3:96:7d:07:0c:21:ef:c4:d2:6b:83:
ce:98:bb:ba:10:30:70:36:0c:8f:34:6e:d6:22:bc:
fa:84:e1:38:00:f6:25:af:9f:e7:78:a7:aa:92:dc:
f3:f5:45:3b:c5:2f:39:9f:db:8c:b9:64:22:6f:6b:
0f:5d:b7:90:ef:43:de:23:4e:04:0d:20:c6:d3:6a:
4f:62:3c:3b:33:db:22:91:45:65:c4:bc:ee:62:a9:
a3:3d:41:21:4e:cf:5d:ee:ff:40:19:9d:30:3c:2b:
00:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:27:04:3C:3A:F4:0F:C5:E5:97:93:8B:15:4F:5C:8B:E0:FD:FF:6C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E01F7/F91D0D282A5B11EBB8921C35C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E01F7/F91D0D282A5B11EBB8921C35C4F9AE02/bicEPDr0D8Xll5OLFU9ci-D9_2w.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141198
sbgp-ipAddrBlock: critical
IPv4:
103.156.66.0/23
IPv6:
2406:7f40::/32
Signature Algorithm: sha256WithRSAEncryption
a9:35:3a:7a:83:8a:13:f6:47:49:81:b0:8d:93:d7:49:fd:fa:
86:a7:52:03:1c:58:53:57:0a:9e:71:25:64:4a:18:e0:1f:84:
f5:9d:5a:34:d5:d2:72:5c:f1:29:92:8d:84:e9:94:b6:0e:c1:
c2:08:db:6f:b5:22:95:67:90:9b:46:42:46:d4:ad:eb:68:cd:
32:f5:9e:e5:91:14:f8:fa:ca:fc:60:15:92:82:d1:27:f0:ce:
b0:0c:c1:3d:fa:a7:7b:e1:ce:34:00:e9:d9:ae:2a:3b:3a:06:
d2:ea:dd:2e:53:9f:ca:fe:20:19:97:7d:b0:d2:74:f0:53:61:
19:63:13:b9:1f:28:36:4b:eb:e0:db:d6:46:60:8c:15:ae:4f:
49:7f:cb:3c:01:c9:b6:05:73:80:fb:24:b5:bc:91:9e:9d:1f:
f1:74:44:53:c8:af:d4:7d:3c:24:11:90:47:6c:e7:c6:89:23:
6e:60:2f:88:8f:f5:54:4c:0f:cf:1d:12:87:12:8e:9f:e2:e7:
5e:7f:8c:db:9f:7b:5b:ee:cd:2f:bd:17:f7:e4:df:a0:0c:dc:
6b:17:09:b8:e1:43:5d:be:89:1b:fa:35:70:50:b4:ed:0e:58:
1b:f4:9d:53:26:90:15:e8:54:bd:98:5e:44:3a:8b:50:4f:48:
96:15:7a:b8
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAcb+MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMTAzMDIyNTEwOFoXDTI0MTIzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRTAxRjcxMTAvBgNVBAUTKDZFMjcwNDNDM0FGNDBGQzVFNTk3OTM4
QjE1NEY1QzhCRTBGREZGNkMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCwvWqI2fYpGF3i2uTz6LY4a8fnsA+KD2nUSPToGokMExioYJ+WhspnYp95DP6J
e6JMJNSieZs9WHa3GNoYt53+EVBPM+ji2AMsiZ195/N0z29a+j/h50jKFPHEgUv+
YD5NSdAHhvTAtbj0Bo+RCf8bEUpbrBwG2+dX7Zl4O0pORL0JkHdysyocyIG2j5Te
3Irjjb6KI7ZMVyjDln0HDCHvxNJrg86Yu7oQMHA2DI80btYivPqE4TgA9iWvn+d4
p6qS3PP1RTvFLzmf24y5ZCJvaw9dt5DvQ94jTgQNIMbTak9iPDsz2yKRRWXEvO5i
qaM9QSFOz13u/0AZnTA8KwDZAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUbicEPDr0
D8Xll5OLFU9ci+D9/2wwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUUwMUY3L0Y5MUQwRDI4MkE1QjExRUJCODkyMUMzNUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFFMDFGNy9GOTFEMEQyODJBNUIxMUVCQjg5MjFDMzVDNEY5QUUwMi9iaWNFUERy
MEQ4WGxsNU9MRlU5Y2ktRDlfMncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAieOMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBZ5xCMA0EAgAC
MAcDBQAkBn9AMA0GCSqGSIb3DQEBCwUAA4IBAQCpNTp6g4oT9kdJgbCNk9dJ/fqG
p1IDHFhTVwqecSVkShjgH4T1nVo01dJyXPEpko2E6ZS2DsHCCNtvtSKVZ5CbRkJG
1K3raM0y9Z7lkRT4+sr8YBWSgtEn8M6wDME9+qd74c40AOnZrio7OgbS6t0uU5/K
/iAZl32w0nTwU2EZYxO5Hyg2S+vg29ZGYIwVrk9Jf8s8Acm2BXOA+yS1vJGenR/x
dERTyK/UfTwkEZBHbOfGiSNuYC+Ij/VUTA/PHRKHEo6f4udef4zbn3tb7s0vvRf3
5N+gDNxrFwm44UNdvokb+jVwULTtDlgb9J1TJpAV6FS9mF5EOotQT0iWFXq4
-----END CERTIFICATE-----
Generated at Wed Apr 17 22:13:02 2024 by rpki-client on console-ams.rpki-client.org