Certificate

$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/coqCQJLldBJUu5LVl3IzYaBL8pI.cer
File:                     coqCQJLldBJUu5LVl3IzYaBL8pI.cer (raw, json)
Hash identifier:          P4xux8rPWRZ45TuLWourylaakigqmdpqVOz5LJBsF2Q=
Subject key identifier:   72:8A:82:40:92:E5:74:12:54:BB:92:D5:97:72:33:61:A0:4B:F2:92
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer:       /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial:       01B43A
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest:                 rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/coqCQJLldBJUu5LVl3IzYaBL8pI.mft
caRepository:             rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/
Notify URL:               https://rrdp.apnic.net/notification.xml
Certificate not before:   Wed 02 Aug 2023 01:46:31 +0000
Certificate not after:    Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources:    AS: 132341
                          AS: 137967
                          AS: 138417
                          IP: 103.14.72.0/23
                          IP: 103.59.233.0/24
                          IP: 2407:e7c0::/32

Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 04 Apr 2024 21:46:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 111674 (0x1b43a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
        Validity
            Not Before: Aug  2 01:46:31 2023 GMT
            Not After : Sep 30 00:00:00 2024 GMT
        Subject: CN=A91F1B61/serialNumber=728A824092E5741254BB92D597723361A04BF292
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:68:d5:d8:a9:5d:df:5e:b3:2b:9c:3b:45:60:
                    a4:fe:53:1d:4c:86:fc:f3:da:9a:a7:62:ee:53:7b:
                    df:be:3a:4f:2b:74:ec:a6:c5:14:d4:ba:71:e2:4d:
                    d3:e7:f5:eb:de:55:15:21:59:ca:19:9d:20:03:52:
                    56:b2:11:f3:20:62:81:91:60:c6:3d:f5:ae:50:0b:
                    ec:8f:8f:fd:5b:9a:2c:5f:9f:4b:f2:4c:ad:7b:5c:
                    b3:64:aa:7d:47:37:e1:11:c1:de:f0:3b:dc:21:94:
                    bb:c2:05:f4:ad:0b:b8:10:1e:2c:c7:2f:41:a1:b9:
                    18:dd:82:0e:90:b2:df:c3:74:99:16:bc:83:eb:06:
                    d4:49:13:cf:eb:27:69:62:20:66:52:50:49:b7:4f:
                    8a:7c:fa:75:0b:38:95:cf:28:e8:1e:a0:05:56:26:
                    16:a7:5d:24:08:a0:15:ec:8c:2f:57:59:51:4e:11:
                    76:31:1a:e6:e1:c9:b2:3e:a3:df:01:85:4e:60:75:
                    bd:a3:0c:67:f1:8c:8d:e9:06:84:f8:0e:d5:99:b8:
                    4e:17:40:01:15:7d:19:4e:0c:4c:8d:eb:8c:47:35:
                    a5:0d:39:2f:b2:31:6c:cf:83:6b:74:0b:6f:86:51:
                    01:1b:99:08:73:d0:9d:05:ca:7a:8c:a4:ed:90:f4:
                    a8:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                72:8A:82:40:92:E5:74:12:54:BB:92:D5:97:72:33:61:A0:4B:F2:92
            X509v3 Authority Key Identifier:
                keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/
                RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/coqCQJLldBJUu5LVl3IzYaBL8pI.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  132341
                  137967
                  138417

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.14.72.0/23
                  103.59.233.0/24
                IPv6:
                  2407:e7c0::/32

    Signature Algorithm: sha256WithRSAEncryption
         40:82:88:bb:b4:93:e3:64:06:c2:8e:4e:c6:71:76:69:d8:98:
         ad:91:b7:b8:ab:77:1d:90:40:54:82:bb:ce:fc:0f:c9:68:08:
         d6:8f:85:ee:15:bb:d4:f6:bc:14:ee:b1:32:53:d5:6c:82:aa:
         70:c9:3b:e2:eb:ec:5f:65:00:02:1d:5b:84:c7:55:17:e8:13:
         29:7e:a4:44:be:1b:8c:20:2f:97:3f:97:b3:60:3a:36:8a:f1:
         d7:0d:65:f7:9f:7f:c9:6c:4c:e3:61:f8:5b:d1:9d:30:ad:f6:
         9e:8f:9c:0f:2e:9d:7a:00:94:06:25:e2:14:42:9c:4d:ad:e9:
         5b:65:cf:c0:6d:89:1d:de:7d:10:6c:a6:86:05:5f:bb:af:86:
         7d:ed:3b:e8:02:e0:c9:50:ba:2d:17:47:02:88:ab:d7:18:24:
         e4:2e:ca:2a:69:40:9e:7a:d2:33:97:c9:72:85:81:78:fb:4f:
         57:5a:56:64:8a:16:c9:33:61:6b:de:8c:11:e9:5c:22:c1:4d:
         4d:0c:f1:ca:2c:0b:b1:1f:78:28:04:cc:8e:bc:6b:09:35:45:
         2d:b1:55:99:dd:28:d2:f5:11:1b:81:ec:27:a1:33:aa:fa:0f:
         9c:b0:24:ac:40:22:9b:46:e0:2e:90:9c:9d:a5:e0:9a:de:9d:
         f7:03:e9:6f
-----BEGIN CERTIFICATE-----
MIIGOTCCBSGgAwIBAgIDAbQ6MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDgwMjAxNDYzMVoXDTI0MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRjFCNjExMTAvBgNVBAUTKDcyOEE4MjQwOTJFNTc0MTI1NEJCOTJE
NTk3NzIzMzYxQTA0QkYyOTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDAaNXYqV3fXrMrnDtFYKT+Ux1Mhvzz2pqnYu5Te9++Ok8rdOymxRTUunHiTdPn
9eveVRUhWcoZnSADUlayEfMgYoGRYMY99a5QC+yPj/1bmixfn0vyTK17XLNkqn1H
N+ERwd7wO9whlLvCBfStC7gQHizHL0GhuRjdgg6Qst/DdJkWvIPrBtRJE8/rJ2li
IGZSUEm3T4p8+nULOJXPKOgeoAVWJhanXSQIoBXsjC9XWVFOEXYxGubhybI+o98B
hU5gdb2jDGfxjI3pBoT4DtWZuE4XQAEVfRlODEyN64xHNaUNOS+yMWzPg2t0C2+G
UQEbmQhz0J0FynqMpO2Q9KiJAgMBAAGjggMuMIIDKjAdBgNVHQ4EFgQUcoqCQJLl
dBJUu5LVl3IzYaBL8pIwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUYxQjYxLzNGMDBENzVDRTJBRjExRTlCQjAxRkM0REM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFGMUI2MS8zRjAwRDc1Q0UyQUYxMUU5QkIwMUZDNERDNEY5QUUwMi9jb3FDUUpM
bGRCSlV1NUxWbDNJellhQkw4cEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQgBAf8EFTAT
oBEwDwIDAgT1AgMCGu8CAwIcsTA0BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAME
AWcOSAMEAGc76TANBAIAAjAHAwUAJAfnwDANBgkqhkiG9w0BAQsFAAOCAQEAQIKI
u7ST42QGwo5OxnF2adiYrZG3uKt3HZBAVIK7zvwPyWgI1o+F7hW71Pa8FO6xMlPV
bIKqcMk74uvsX2UAAh1bhMdVF+gTKX6kRL4bjCAvlz+Xs2A6Norx1w1l959/yWxM
42H4W9GdMK32no+cDy6degCUBiXiFEKcTa3pW2XPwG2JHd59EGymhgVfu6+Gfe07
6ALgyVC6LRdHAoir1xgk5C7KKmlAnnrSM5fJcoWBePtPV1pWZIoWyTNha96MEelc
IsFNTQzxyiwLsR94KATMjrxrCTVFLbFVmd0o0vURG4HsJ6EzqvoPnLAkrEAim0bg
LpCcnaXgmt6d9wPpbw==
-----END CERTIFICATE-----
Generated at Thu Mar 28 22:56:40 2024 by rpki-client on console-ams.rpki-client.org