Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/coqCQJLldBJUu5LVl3IzYaBL8pI.cer
File: coqCQJLldBJUu5LVl3IzYaBL8pI.cer (raw, json)
Hash identifier: OoJhzX3BRTW2ruPsSjlViPxtncc0d1yXxJ3MlsqVOpk=
Subject key identifier: 72:8A:82:40:92:E5:74:12:54:BB:92:D5:97:72:33:61:A0:4B:F2:92
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0205E4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/coqCQJLldBJUu5LVl3IzYaBL8pI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 08 Aug 2024 18:34:29 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 132341
AS: 137967
AS: 138417
IP: 103.14.72.0/23
IP: 103.59.233.0/24
IP: 2407:e7c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132580 (0x205e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Aug 8 18:34:29 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91F1B61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:68:d5:d8:a9:5d:df:5e:b3:2b:9c:3b:45:60:
a4:fe:53:1d:4c:86:fc:f3:da:9a:a7:62:ee:53:7b:
df:be:3a:4f:2b:74:ec:a6:c5:14:d4:ba:71:e2:4d:
d3:e7:f5:eb:de:55:15:21:59:ca:19:9d:20:03:52:
56:b2:11:f3:20:62:81:91:60:c6:3d:f5:ae:50:0b:
ec:8f:8f:fd:5b:9a:2c:5f:9f:4b:f2:4c:ad:7b:5c:
b3:64:aa:7d:47:37:e1:11:c1:de:f0:3b:dc:21:94:
bb:c2:05:f4:ad:0b:b8:10:1e:2c:c7:2f:41:a1:b9:
18:dd:82:0e:90:b2:df:c3:74:99:16:bc:83:eb:06:
d4:49:13:cf:eb:27:69:62:20:66:52:50:49:b7:4f:
8a:7c:fa:75:0b:38:95:cf:28:e8:1e:a0:05:56:26:
16:a7:5d:24:08:a0:15:ec:8c:2f:57:59:51:4e:11:
76:31:1a:e6:e1:c9:b2:3e:a3:df:01:85:4e:60:75:
bd:a3:0c:67:f1:8c:8d:e9:06:84:f8:0e:d5:99:b8:
4e:17:40:01:15:7d:19:4e:0c:4c:8d:eb:8c:47:35:
a5:0d:39:2f:b2:31:6c:cf:83:6b:74:0b:6f:86:51:
01:1b:99:08:73:d0:9d:05:ca:7a:8c:a4:ed:90:f4:
a8:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:8A:82:40:92:E5:74:12:54:BB:92:D5:97:72:33:61:A0:4B:F2:92
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/coqCQJLldBJUu5LVl3IzYaBL8pI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132341
137967
138417
sbgp-ipAddrBlock: critical
IPv4:
103.14.72.0/23
103.59.233.0/24
IPv6:
2407:e7c0::/32
Signature Algorithm: sha256WithRSAEncryption
8e:a7:84:b3:de:09:40:46:cf:c3:e5:74:a3:89:65:13:b5:24:
a7:c4:2e:70:a7:72:f6:53:9f:07:73:72:19:f6:18:28:9f:76:
31:fd:4a:aa:b3:89:f6:41:1a:62:d6:fa:87:37:95:0a:20:45:
52:a4:3b:46:83:1c:34:c7:00:fb:ef:ad:81:5b:74:6f:cb:15:
81:1a:30:91:be:ad:4b:ae:16:aa:5e:9c:f6:79:69:d6:12:91:
85:20:4c:98:bb:54:7f:9d:4f:d8:eb:8a:ee:4a:87:6c:f4:cb:
34:a7:30:8e:93:12:c8:7c:81:e0:6f:e3:64:e1:1b:21:3e:cf:
97:6c:da:04:4d:15:b7:ec:b0:35:23:f9:3f:ad:56:5b:6f:74:
ed:03:e5:a9:86:02:60:6b:86:c3:aa:85:9c:fc:b0:79:19:50:
d2:f1:c0:ad:00:1d:e6:32:93:04:45:45:c0:96:8c:eb:6f:7b:
da:e5:8b:09:84:7e:2c:40:08:41:1d:da:b4:ac:6e:48:0e:3a:
24:a2:d7:c8:9f:b0:15:ee:47:83:5a:9b:12:7b:d8:41:35:9d:
e7:9c:b3:8f:74:5a:2c:1a:d2:65:81:e7:52:57:a1:79:fb:79:
c1:ed:f8:16:4d:c2:1d:03:8e:c2:e1:8e:fd:bb:f6:94:dc:ac:
c0:49:f6:2e
-----BEGIN CERTIFICATE-----
MIIGOTCCBSGgAwIBAgIDAgXkMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDgwODE4MzQyOVoXDTI1MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRjFCNjExMTAvBgNVBAUTKDcyOEE4MjQwOTJFNTc0MTI1NEJCOTJE
NTk3NzIzMzYxQTA0QkYyOTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDAaNXYqV3fXrMrnDtFYKT+Ux1Mhvzz2pqnYu5Te9++Ok8rdOymxRTUunHiTdPn
9eveVRUhWcoZnSADUlayEfMgYoGRYMY99a5QC+yPj/1bmixfn0vyTK17XLNkqn1H
N+ERwd7wO9whlLvCBfStC7gQHizHL0GhuRjdgg6Qst/DdJkWvIPrBtRJE8/rJ2li
IGZSUEm3T4p8+nULOJXPKOgeoAVWJhanXSQIoBXsjC9XWVFOEXYxGubhybI+o98B
hU5gdb2jDGfxjI3pBoT4DtWZuE4XQAEVfRlODEyN64xHNaUNOS+yMWzPg2t0C2+G
UQEbmQhz0J0FynqMpO2Q9KiJAgMBAAGjggMuMIIDKjAdBgNVHQ4EFgQUcoqCQJLl
dBJUu5LVl3IzYaBL8pIwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUYxQjYxLzNGMDBENzVDRTJBRjExRTlCQjAxRkM0REM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFGMUI2MS8zRjAwRDc1Q0UyQUYxMUU5QkIwMUZDNERDNEY5QUUwMi9jb3FDUUpM
bGRCSlV1NUxWbDNJellhQkw4cEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQgBAf8EFTAT
oBEwDwIDAgT1AgMCGu8CAwIcsTA0BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAME
AWcOSAMEAGc76TANBAIAAjAHAwUAJAfnwDANBgkqhkiG9w0BAQsFAAOCAQEAjqeE
s94JQEbPw+V0o4llE7Ukp8QucKdy9lOfB3NyGfYYKJ92Mf1KqrOJ9kEaYtb6hzeV
CiBFUqQ7RoMcNMcA+++tgVt0b8sVgRowkb6tS64Wql6c9nlp1hKRhSBMmLtUf51P
2OuK7kqHbPTLNKcwjpMSyHyB4G/jZOEbIT7Pl2zaBE0Vt+ywNSP5P61WW2907QPl
qYYCYGuGw6qFnPyweRlQ0vHArQAd5jKTBEVFwJaM62972uWLCYR+LEAIQR3atKxu
SA46JKLXyJ+wFe5Hg1qbEnvYQTWd55yzj3RaLBrSZYHnUleheft5we34Fk3CHQOO
wuGO/bv2lNyswEn2Lg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:31:16 2025 by rpki-client