Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer
File: d9okgAToxYcr33K6wSIsfMtujjc.cer (raw, json)
Hash identifier: pv4HvZalcjTx1ekinByi4oEc0JgwoKvLfo+sRC5qlJs=
Subject key identifier: 77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E363
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 07 Mar 2024 15:18:17 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 136253
IP: 43.245.220.0/22
IP: 103.23.44.0/24
IP: 103.209.100.0/22
IP: 2001:df0:be00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123747 (0x1e363)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 7 15:18:17 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A9156342/serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a2:85:af:ed:6b:d9:a5:41:67:aa:f1:64:d1:
92:a2:fe:43:9d:31:8c:e6:5f:da:2b:27:65:01:18:
18:87:56:84:61:4d:a9:15:34:f2:1e:14:32:0e:12:
05:c6:fd:d7:5d:e6:94:f5:60:65:08:95:ad:99:72:
f2:73:9c:2f:3c:cd:d1:f7:5c:1a:cb:37:e7:9c:23:
ff:c8:4a:a6:48:8c:9a:05:9a:9e:ce:3f:3a:65:58:
c1:9b:48:dd:f9:8f:d9:01:b0:e2:0c:2c:7e:e9:9e:
97:e7:41:dc:22:9d:3c:12:ef:0a:f0:de:29:52:7c:
d5:be:03:ff:d3:52:b0:a2:12:cb:8a:8d:d2:f1:0b:
78:9c:74:e2:5f:be:7f:17:e1:6b:83:59:50:0c:5c:
0b:bd:e0:ed:c2:e7:83:29:62:b2:d6:3b:a4:94:6c:
bd:0b:1e:a5:6a:55:34:fd:50:b8:34:18:28:26:a4:
db:fe:b5:9f:8e:c7:db:07:ad:1e:57:c1:19:b0:6d:
7d:eb:30:85:65:b6:be:86:25:c3:c0:c1:12:ea:a9:
01:e0:25:09:d0:8a:6d:69:bc:10:fe:8c:e9:f4:47:
57:08:33:53:15:9e:98:0e:74:f7:25:89:64:8f:ee:
20:a0:7e:ca:f1:7d:50:63:f0:40:11:ed:c7:22:68:
41:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136253
sbgp-ipAddrBlock: critical
IPv4:
43.245.220.0/22
103.23.44.0/24
103.209.100.0/22
IPv6:
2001:df0:be00::/48
Signature Algorithm: sha256WithRSAEncryption
55:ef:5e:d7:d7:b5:bb:4e:eb:26:cc:59:2d:e2:40:1d:33:88:
cd:f2:54:e3:3c:d6:ae:7c:f8:67:60:80:35:d0:00:3f:d7:8d:
52:5e:f7:21:50:e2:1d:b5:d2:3a:39:94:3d:c7:8b:5a:87:3d:
5b:4d:8f:4b:11:c5:01:b8:66:ef:57:c3:a4:48:cd:e4:b4:d1:
26:7f:85:c3:7a:69:84:80:bf:68:9e:4c:50:1f:92:5d:ee:cb:
53:29:6c:d6:f7:56:d4:07:fc:b5:79:4d:9f:d8:29:36:72:a1:
7e:93:fb:54:d7:85:e4:06:00:2b:98:74:35:43:36:6e:66:a5:
65:aa:f5:10:56:28:0f:d7:d3:72:5b:08:ed:17:e6:19:2b:4e:
2c:4b:0a:fd:e9:82:21:b4:2f:a0:92:a1:db:11:7c:2a:a5:96:
26:87:8e:fc:8e:d1:17:82:ad:fb:ee:5b:04:f2:43:d2:36:64:
c4:34:79:94:73:5f:b1:8f:2b:92:3f:d2:df:87:54:6e:93:f0:
aa:a5:1a:cb:d6:a1:8b:2d:69:91:92:e8:d9:96:db:10:4e:f0:
cc:44:99:7b:c3:ed:86:db:45:4a:8e:c8:df:6e:53:f4:5b:32:
8c:34:f0:85:6f:18:39:95:3a:1a:05:ff:da:09:f0:b4:30:c9:
aa:7d:9c:e6
-----BEGIN CERTIFICATE-----
MIIGNzCCBR+gAwIBAgIDAeNjMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDMwNzE1MTgxN1oXDTI1MDUwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNTYzNDIxMTAvBgNVBAUTKDc3REEyNDgwMDRFOEM1ODcyQkRGNzJC
QUMxMjIyQzdDQ0I2RThFMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCnooWv7WvZpUFnqvFk0ZKi/kOdMYzmX9orJ2UBGBiHVoRhTakVNPIeFDIOEgXG
/ddd5pT1YGUIla2ZcvJznC88zdH3XBrLN+ecI//ISqZIjJoFmp7OPzplWMGbSN35
j9kBsOIMLH7pnpfnQdwinTwS7wrw3ilSfNW+A//TUrCiEsuKjdLxC3icdOJfvn8X
4WuDWVAMXAu94O3C54MpYrLWO6SUbL0LHqVqVTT9ULg0GCgmpNv+tZ+Ox9sHrR5X
wRmwbX3rMIVltr6GJcPAwRLqqQHgJQnQim1pvBD+jOn0R1cIM1MVnpgOdPcliWSP
7iCgfsrxfVBj8EAR7cciaEFPAgMBAAGjggMsMIIDKDAdBgNVHQ4EFgQUd9okgATo
xYcr33K6wSIsfMtujjcwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTU2MzQyL0JERjg5MDgwOTlFNDExRUE4OUE0QzI0MEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1NjM0Mi9CREY4OTA4MDk5RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FU
b3hZY3IzM0s2d1NJc2ZNdHVqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhQ9MDwGCCsGAQUFBwEHAQH/BC0wKzAYBAIAATASAwQCK/XcAwQAZxcs
AwQCZ9FkMA8EAgACMAkDBwAgAQ3wvgAwDQYJKoZIhvcNAQELBQADggEBAFXvXtfX
tbtO6ybMWS3iQB0ziM3yVOM81q58+GdggDXQAD/XjVJe9yFQ4h210jo5lD3Hi1qH
PVtNj0sRxQG4Zu9Xw6RIzeS00SZ/hcN6aYSAv2ieTFAfkl3uy1MpbNb3VtQH/LV5
TZ/YKTZyoX6T+1TXheQGACuYdDVDNm5mpWWq9RBWKA/X03JbCO0X5hkrTixLCv3p
giG0L6CSodsRfCqlliaHjvyO0ReCrfvuWwTyQ9I2ZMQ0eZRzX7GPK5I/0t+HVG6T
8KqlGsvWoYstaZGS6NmW2xBO8MxEmXvD7YbbRUqOyN9uU/RbMow08IVvGDmVOhoF
/9oJ8LQwyap9nOY=
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:39 2024 by rpki-client on console-fra.rpki-client.org