Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccHo4FQEms_ZqiGTrx1IxtHQJeE.cer
File: ccHo4FQEms_ZqiGTrx1IxtHQJeE.cer (raw, json)
Hash identifier: JhQzG9yLpkOnyDPh2DnlVTZDzzIfws+t84ip2v6rY1w=
Subject key identifier: 71:C1:E8:E0:54:04:9A:CF:D9:AA:21:93:AF:1D:48:C6:D1:D0:25:E1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B9AD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 30 Aug 2023 12:24:19 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 38323
IP: 103.170.72.0/23
IP: 2001:df7:1480::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 11:34:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113069 (0x1b9ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 30 12:24:19 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91128E3/serialNumber=71C1E8E054049ACFD9AA2193AF1D48C6D1D025E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:70:40:56:f8:2b:df:ff:29:c3:d3:cb:c9:ca:
fa:09:c9:5a:70:61:e8:db:0a:e2:98:a1:63:49:6b:
62:a6:f4:3e:d6:45:3a:0a:e4:8a:7a:63:49:56:de:
5e:04:5f:65:d1:b2:33:ea:ed:a8:c5:82:ff:c6:4a:
4d:15:27:f7:29:44:7f:1d:54:1e:18:45:eb:dd:5a:
68:b4:c5:06:61:4c:ae:d4:4a:62:ad:5a:71:ab:0e:
8f:56:35:fd:ea:ac:4f:bf:a6:b8:70:5e:fc:f2:b4:
2e:d7:4e:09:a4:af:70:57:d5:33:89:76:67:fb:f1:
52:1d:aa:ed:45:f9:22:ac:a9:79:47:44:bc:bc:1c:
a5:0f:61:b5:a0:60:12:66:86:b9:af:e4:b8:6b:58:
fb:d2:44:29:b5:ad:b1:86:0a:a1:5a:74:cb:40:d2:
a0:26:21:41:d0:95:89:e5:1d:24:10:0c:6e:70:a6:
62:2f:30:a8:52:89:ce:5b:e8:0c:3f:f2:54:27:fa:
2b:ad:39:49:2a:ba:3c:10:0b:be:5f:b9:58:d2:00:
64:d2:59:e9:f8:f2:f6:61:64:a7:2e:60:10:14:ed:
d3:b7:06:67:cf:8b:4f:8e:77:d7:c9:bd:38:6d:a6:
1f:ce:ae:9c:5c:23:de:05:b2:ce:04:71:5e:ad:e0:
ea:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:C1:E8:E0:54:04:9A:CF:D9:AA:21:93:AF:1D:48:C6:D1:D0:25:E1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38323
sbgp-ipAddrBlock: critical
IPv4:
103.170.72.0/23
IPv6:
2001:df7:1480::/48
Signature Algorithm: sha256WithRSAEncryption
22:d1:16:17:e3:ee:32:7c:99:1d:48:82:80:bf:3a:6b:74:71:
2c:cf:f7:bd:9d:44:5e:3b:8a:17:03:ce:38:e4:f2:58:8d:b5:
d7:0a:26:42:ac:e5:df:e0:58:ef:1d:fc:06:de:28:a5:08:cd:
c6:b2:11:ce:93:3c:14:73:40:ef:e2:b4:bc:a0:2a:e8:2b:fa:
2b:29:2f:0c:0c:90:9a:88:4b:6f:ef:80:be:62:06:b3:53:4e:
a4:60:6e:01:e1:39:07:ab:52:a1:f2:59:98:e9:6c:89:2e:05:
b7:37:34:69:06:a4:36:91:aa:4a:b2:fd:01:28:11:38:b4:6d:
69:bd:bb:5e:de:6e:1c:db:98:8f:28:2b:ac:9b:29:eb:89:73:
11:32:97:22:6a:ff:42:f7:a7:52:a3:6f:72:44:7b:8c:f3:2c:
b8:fa:44:79:9c:57:26:78:42:ea:b1:37:0f:bd:3f:0b:b8:02:
fc:b0:85:9d:af:d3:d3:1c:d5:63:d9:05:01:ab:da:d5:66:74:
5c:b5:0e:27:8e:aa:2b:ee:c5:bf:55:df:d0:44:d4:e8:d2:3e:
ce:0b:b4:eb:71:8e:71:e2:52:22:f0:06:8a:71:77:11:1c:6a:
f9:6b:71:d4:92:7a:ac:ae:00:a3:f4:33:f7:78:57:e2:6c:03:
1a:64:ff:e2
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAbmtMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDgzMDEyMjQxOVoXDTI0MTAzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMTI4RTMxMTAvBgNVBAUTKDcxQzFFOEUwNTQwNDlBQ0ZEOUFBMjE5
M0FGMUQ0OEM2RDFEMDI1RTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCmcEBW+Cvf/ynD08vJyvoJyVpwYejbCuKYoWNJa2Km9D7WRToK5Ip6Y0lW3l4E
X2XRsjPq7ajFgv/GSk0VJ/cpRH8dVB4YRevdWmi0xQZhTK7USmKtWnGrDo9WNf3q
rE+/prhwXvzytC7XTgmkr3BX1TOJdmf78VIdqu1F+SKsqXlHRLy8HKUPYbWgYBJm
hrmv5LhrWPvSRCm1rbGGCqFadMtA0qAmIUHQlYnlHSQQDG5wpmIvMKhSic5b6Aw/
8lQn+iutOUkqujwQC75fuVjSAGTSWen48vZhZKcuYBAU7dO3BmfPi0+Od9fJvTht
ph/OrpxcI94Fss4EcV6t4OqNAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUccHo4FQE
ms/ZqiGTrx1IxtHQJeEwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTEyOEUzLzUzOTNDMEVFMDAyNjExRUNBNDA2MTYxNEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTExMjhFMy81MzkzQzBFRTAwMjYxMUVDQTQwNjE2MTRDNEY5QUUwMi9jY0hvNEZR
RW1zX1pxaUdUcngxSXh0SFFKZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAJWzMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ6pIMA8EAgAC
MAkDBwAgAQ33FIAwDQYJKoZIhvcNAQELBQADggEBACLRFhfj7jJ8mR1IgoC/Omt0
cSzP972dRF47ihcDzjjk8liNtdcKJkKs5d/gWO8d/AbeKKUIzcayEc6TPBRzQO/i
tLygKugr+ispLwwMkJqIS2/vgL5iBrNTTqRgbgHhOQerUqHyWZjpbIkuBbc3NGkG
pDaRqkqy/QEoETi0bWm9u17ebhzbmI8oK6ybKeuJcxEylyJq/0L3p1Kjb3JEe4zz
LLj6RHmcVyZ4QuqxNw+9Pwu4AvywhZ2v09Mc1WPZBQGr2tVmdFy1DieOqivuxb9V
39BE1OjSPs4LtOtxjnHiUiLwBopxdxEcavlrcdSSeqyuAKP0M/d4V+JsAxpk/+I=
-----END CERTIFICATE-----
Generated at Fri Apr 19 13:20:58 2024 by rpki-client on console-fra.rpki-client.org