Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0ZKhG930cTTZqMGuAaTn88qYBo.cer
File: d0ZKhG930cTTZqMGuAaTn88qYBo.cer (raw, json)
Hash identifier: EnZffQpyKniAfVRrLr2jVxZqSjsI+DCc/wYSJ1Dey7g=
Subject key identifier: 77:46:4A:84:6F:77:D1:C4:D3:66:A3:06:B8:06:93:9F:CF:2A:60:1A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F099
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 08 May 2024 02:08:38 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 24298
AS: 136961
IP: 103.123.144.0/22
IP: 202.60.8.0/21
IP: 2401:ab40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 14 Sep 2024 20:15:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127129 (0x1f099)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 8 02:08:38 2024 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91B74D6/serialNumber=77464A846F77D1C4D366A306B806939FCF2A601A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:9e:9e:26:c6:ac:93:18:35:93:d0:6c:56:94:
8d:09:5d:f5:6c:40:59:b4:6c:11:ea:1b:c3:48:6d:
39:7b:60:1f:20:90:3f:9c:dc:83:97:26:b9:6d:0b:
3d:ee:d2:b8:4c:eb:b7:f0:1c:e6:62:63:22:2e:24:
aa:5e:79:c9:34:50:f2:91:a7:3c:2e:44:f5:2f:e5:
24:a8:22:42:4a:33:33:b7:92:a2:85:c0:3f:9d:56:
1c:9e:a1:55:2b:a5:74:cb:36:02:14:3c:fe:19:e2:
3d:06:e2:af:3e:7e:dc:e3:f2:b8:28:33:bf:1f:e4:
b9:86:16:94:d3:ca:85:4d:81:2e:a6:d6:d7:12:4b:
e8:f9:88:0e:f9:39:4c:8c:30:48:91:48:ac:85:21:
25:85:04:bf:63:3d:a1:56:cd:04:16:c2:43:3a:e0:
2d:fd:d4:a8:23:62:aa:29:c2:99:24:9b:e6:56:95:
28:76:22:53:0e:c0:ca:15:22:67:3a:e5:37:b8:b3:
5a:58:73:90:39:0d:f2:a5:41:e1:5a:b9:fe:68:95:
71:16:f9:4f:9b:4c:c1:a8:d4:1b:02:f6:3c:16:02:
f5:ae:fc:ac:04:2f:b6:75:8d:ee:8d:47:0f:04:7c:
30:37:8b:72:00:40:cc:10:df:99:ab:df:f4:c1:fd:
4f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:46:4A:84:6F:77:D1:C4:D3:66:A3:06:B8:06:93:9F:CF:2A:60:1A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24298
136961
sbgp-ipAddrBlock: critical
IPv4:
103.123.144.0/22
202.60.8.0/21
IPv6:
2401:ab40::/32
Signature Algorithm: sha256WithRSAEncryption
87:b2:19:52:fc:2a:bc:e2:2f:ad:18:c3:3c:b5:ac:a1:a3:15:
84:a3:b6:8a:29:a2:6b:98:37:cb:c4:69:91:35:da:79:d6:46:
f0:39:fa:1e:b6:97:61:3d:f3:2d:94:3b:59:fe:87:c8:4d:85:
2f:87:cc:cc:53:da:17:c7:2b:c2:fa:71:fb:2f:2b:6b:4a:6c:
dd:de:78:4e:5b:3b:d3:39:80:35:2d:5c:bb:19:91:b3:a5:a6:
51:de:a5:42:f7:9e:af:26:11:95:97:d8:a2:bc:3f:41:15:ea:
1a:96:16:40:c3:8e:f9:8e:9b:37:37:55:a5:dc:cd:9b:1f:ab:
f4:5d:2d:be:45:91:b3:bb:bf:ea:56:1e:d3:7b:61:3b:6f:56:
5a:44:2c:b3:a0:db:80:60:af:2c:38:4e:1f:2d:85:c0:c1:19:
24:e0:f4:d9:2e:b3:e9:1e:ef:aa:e1:0e:8e:cb:e2:53:92:ef:
a0:7f:9d:7b:89:65:72:95:3d:86:e9:df:52:cc:9d:77:de:79:
13:a9:55:f4:57:84:71:36:7a:0a:8c:1c:2b:f2:3d:04:13:aa:
c1:ae:59:5e:88:07:fe:6e:3d:7e:79:2a:cb:56:d9:e1:ec:7f:
a9:ee:fd:43:5a:f0:fc:4a:5f:77:a0:04:20:aa:93:ba:93:3f:
70:dd:97:18
-----BEGIN CERTIFICATE-----
MIIGMzCCBRugAwIBAgIDAfCZMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDUwODAyMDgzOFoXDTI0MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQjc0RDYxMTAvBgNVBAUTKDc3NDY0QTg0NkY3N0QxQzREMzY2QTMw
NkI4MDY5MzlGQ0YyQTYwMUEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCknp4mxqyTGDWT0GxWlI0JXfVsQFm0bBHqG8NIbTl7YB8gkD+c3IOXJrltCz3u
0rhM67fwHOZiYyIuJKpeeck0UPKRpzwuRPUv5SSoIkJKMzO3kqKFwD+dVhyeoVUr
pXTLNgIUPP4Z4j0G4q8+ftzj8rgoM78f5LmGFpTTyoVNgS6m1tcSS+j5iA75OUyM
MEiRSKyFISWFBL9jPaFWzQQWwkM64C391KgjYqopwpkkm+ZWlSh2IlMOwMoVImc6
5Te4s1pYc5A5DfKlQeFauf5olXEW+U+bTMGo1BsC9jwWAvWu/KwEL7Z1je6NRw8E
fDA3i3IAQMwQ35mr3/TB/U/nAgMBAAGjggMoMIIDJDAdBgNVHQ4EFgQUd0ZKhG93
0cTTZqMGuAaTn88qYBowHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUI3NEQ2L0RFMjJBRDI0MENERjExRUY5NDg0RTYyQUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFCNzRENi9ERTIyQUQyNDBDREYxMUVGOTQ4NEU2MkFDNEY5QUUwMi9kMFpLaEc5
MzBjVFRacU1HdUFhVG44OHFZQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQgBAf8EDzAN
oAswCQICXuoCAwIXATA0BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEAmd7kAME
A8o8CDANBAIAAjAHAwUAJAGrQDANBgkqhkiG9w0BAQsFAAOCAQEAh7IZUvwqvOIv
rRjDPLWsoaMVhKO2iimia5g3y8RpkTXaedZG8Dn6HraXYT3zLZQ7Wf6HyE2FL4fM
zFPaF8crwvpx+y8ra0ps3d54Tls70zmANS1cuxmRs6WmUd6lQveeryYRlZfYorw/
QRXqGpYWQMOO+Y6bNzdVpdzNmx+r9F0tvkWRs7u/6lYe03thO29WWkQss6DbgGCv
LDhOHy2FwMEZJOD02S6z6R7vquEOjsviU5LvoH+de4llcpU9hunfUsydd955E6lV
9FeEcTZ6CowcK/I9BBOqwa5ZXogH/m49fnkqy1bZ4ex/qe79Q1rw/Epfd6AEIKqT
upM/cN2XGA==
-----END CERTIFICATE-----
Generated at Sat Sep 7 22:41:56 2024 by rpki-client on console-ams.rpki-client.org