Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/enhVXghERXV_vNAN3R10w2nLoLA.cer
File: enhVXghERXV_vNAN3R10w2nLoLA.cer (raw, json)
Hash identifier: ybt5ysByh1H0RXCPx3OtZEcli6vUtkM9T3pn+Xu/OeU=
Subject key identifier: 7A:78:55:5E:08:44:45:75:7F:BC:D0:0D:DD:1D:74:C3:69:CB:A0:B0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E1A9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/enhVXghERXV_vNAN3R10w2nLoLA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 01 Mar 2024 00:44:22 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 141459
IP: 103.160.22.0/23
IP: 2406:e1c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 08 May 2024 23:13:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123305 (0x1e1a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 1 00:44:22 2024 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=A914E6AA/serialNumber=7A78555E084445757FBCD00DDD1D74C369CBA0B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:02:bf:cc:4f:64:42:84:49:6c:80:9c:af:ce:
bc:c6:e5:bb:7f:ea:d8:ad:c3:92:72:00:6c:84:25:
25:89:da:d3:25:a0:ed:3e:7b:87:ab:76:b0:c2:02:
29:ec:5c:71:54:aa:8c:19:20:d1:fa:26:26:64:7a:
f3:03:a9:8d:28:57:20:d2:d3:51:14:35:c8:58:47:
95:e1:d8:3a:15:af:61:ac:69:e9:d9:8f:6d:a0:87:
dc:77:ef:20:2e:03:af:43:be:b6:18:f8:f7:b1:e9:
83:04:87:30:8b:2d:85:ef:c1:69:c3:49:36:57:9c:
14:41:24:d7:7b:3d:b2:c4:fd:58:65:c7:31:67:25:
c9:21:df:55:bf:34:c2:fe:f1:1e:be:cd:55:07:a2:
f7:1c:76:2a:dc:27:69:d1:a2:ee:c1:9c:ad:bd:f4:
3a:cb:1f:bc:aa:ea:65:0e:06:21:5f:ad:cb:b1:49:
bf:19:20:23:2b:98:91:9e:3d:86:a2:fa:07:c9:71:
05:00:05:16:d1:5c:da:a7:2a:d9:f9:34:ee:dc:1c:
c5:e6:bf:e6:35:6d:09:fb:8b:36:02:d5:73:c3:d3:
9e:4a:f2:83:b6:ae:07:48:bf:1b:dc:2e:cb:f9:ae:
bd:8f:3b:9e:b1:c5:7e:f7:51:12:33:d1:9a:35:29:
33:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:78:55:5E:08:44:45:75:7F:BC:D0:0D:DD:1D:74:C3:69:CB:A0:B0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/enhVXghERXV_vNAN3R10w2nLoLA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141459
sbgp-ipAddrBlock: critical
IPv4:
103.160.22.0/23
IPv6:
2406:e1c0::/32
Signature Algorithm: sha256WithRSAEncryption
75:3b:86:2a:13:c5:1a:b9:73:40:6d:f7:b3:d4:cd:66:23:28:
f7:45:d0:44:b6:24:c5:f3:9b:42:d2:51:9b:ff:94:6e:eb:36:
9c:e6:2d:cf:50:43:b8:de:45:74:6d:28:5d:d5:88:a4:1f:37:
27:52:b8:df:77:c0:d3:c5:89:5c:8b:3c:e4:29:6e:9a:7a:46:
85:e5:95:da:cb:5e:1d:7d:e9:7a:e9:29:07:8e:88:3f:ba:79:
1f:cf:7b:08:f9:f3:c7:bb:f9:8d:2d:fd:f7:b4:6f:3c:71:e0:
1c:42:35:a9:f5:3c:5d:51:6e:9c:cd:c0:f6:c1:ef:4e:75:31:
81:cf:27:42:c3:4d:9a:67:d0:91:63:c2:e3:b1:18:28:e0:0d:
30:af:b2:f2:37:43:5b:1d:62:e1:4f:6e:b2:a5:c8:81:45:99:
3c:d8:50:cf:f4:85:41:05:51:36:95:f4:e1:ba:b8:2f:86:8f:
9e:d7:a0:06:b7:f1:c9:e8:68:a1:92:9c:eb:0f:ac:e0:d0:a9:
f2:7b:5e:71:eb:9f:68:76:38:c0:62:0f:03:ff:7a:74:70:13:
0e:a9:0c:48:54:c3:ee:07:63:c0:43:82:36:87:04:20:14:27:
4a:e6:76:2a:bb:5a:36:30:65:90:a5:66:6f:8a:49:44:b0:97:
35:6c:01:62
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAeGpMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDMwMTAwNDQyMloXDTI0MDcwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNEU2QUExMTAvBgNVBAUTKDdBNzg1NTVFMDg0NDQ1NzU3RkJDRDAw
REREMUQ3NEMzNjlDQkEwQjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCcAr/MT2RChElsgJyvzrzG5bt/6titw5JyAGyEJSWJ2tMloO0+e4erdrDCAins
XHFUqowZINH6JiZkevMDqY0oVyDS01EUNchYR5Xh2DoVr2GsaenZj22gh9x37yAu
A69DvrYY+Pex6YMEhzCLLYXvwWnDSTZXnBRBJNd7PbLE/VhlxzFnJckh31W/NML+
8R6+zVUHovccdircJ2nRou7BnK299DrLH7yq6mUOBiFfrcuxSb8ZICMrmJGePYai
+gfJcQUABRbRXNqnKtn5NO7cHMXmv+Y1bQn7izYC1XPD055K8oO2rgdIvxvcLsv5
rr2PO56xxX73URIz0Zo1KTMtAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUenhVXghE
RXV/vNAN3R10w2nLoLAwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTRFNkFBLzhFREIxMDdFQURBODExRUJBN0M5RjU2N0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE0RTZBQS84RURCMTA3RUFEQTgxMUVCQTdDOUY1NjdDNEY5QUUwMi9lbmhWWGdo
RVJYVl92TkFOM1IxMHcybkxvTEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAiiTMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBZ6AWMA0EAgAC
MAcDBQAkBuHAMA0GCSqGSIb3DQEBCwUAA4IBAQB1O4YqE8UauXNAbfez1M1mIyj3
RdBEtiTF85tC0lGb/5Ru6zac5i3PUEO43kV0bShd1YikHzcnUrjfd8DTxYlcizzk
KW6aekaF5ZXay14dfel66SkHjog/unkfz3sI+fPHu/mNLf33tG88ceAcQjWp9Txd
UW6czcD2we9OdTGBzydCw02aZ9CRY8LjsRgo4A0wr7LyN0NbHWLhT26ypciBRZk8
2FDP9IVBBVE2lfThurgvho+e16AGt/HJ6GihkpzrD6zg0Knye15x659odjjAYg8D
/3p0cBMOqQxIVMPuB2PAQ4I2hwQgFCdK5nYqu1o2MGWQpWZviklEsJc1bAFi
-----END CERTIFICATE-----
Generated at Thu May 2 00:11:04 2024 by rpki-client on console-ams.rpki-client.org