Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fVVGmSbR-TTzrylkXrbBC7YGm8k.cer
File: fVVGmSbR-TTzrylkXrbBC7YGm8k.cer (raw, json)
Hash identifier: W+zvU6QtdoLiat9JCnRd0BBgYLER/XOX6Iy8Nav3pi8=
Subject key identifier: 7D:55:46:99:26:D1:F9:34:F3:AF:29:64:5E:B6:C1:0B:B6:06:9B:C9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DFAC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B7770/E6810410C0AE11EAB95AB572C4F9AE02/fVVGmSbR-TTzrylkXrbBC7YGm8k.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B7770/E6810410C0AE11EAB95AB572C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 19 Feb 2024 21:12:04 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 38074
AS: 38222
AS: 140868
IP: 103.152.178.0/24
IP: 103.160.48.0/24
IP: 2001:df4:1780::/47
IP: 2406:7ec0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122796 (0x1dfac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 19 21:12:04 2024 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91B7770/serialNumber=7D55469926D1F934F3AF29645EB6C10BB6069BC9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:52:54:fd:a3:37:74:67:25:a3:bd:cb:35:76:
25:97:aa:84:53:ac:ce:18:cd:97:a3:5e:b0:c2:77:
de:4a:b7:a5:69:5d:b3:54:7c:3b:34:c9:6e:b8:3e:
0e:72:81:ad:9f:fe:f6:d9:51:43:45:d3:24:31:12:
da:1c:31:ed:72:76:ed:a2:e9:41:14:23:54:3a:14:
f0:3f:50:8f:3c:f9:91:32:c8:0f:a1:d4:72:cf:34:
19:5b:0d:20:de:6b:c6:3b:90:6b:cb:f5:ec:9a:ae:
5f:51:38:6f:9d:38:9a:b4:e5:f9:2a:cf:00:00:eb:
eb:e3:94:a4:6d:2b:f9:5b:3b:b7:1d:fe:7d:37:fe:
59:ca:32:05:03:43:b8:b7:23:43:bd:00:54:60:80:
93:3c:d6:52:15:00:37:9d:60:e2:e8:d2:72:23:ee:
39:67:6c:e6:70:74:3d:5c:05:71:27:51:aa:33:11:
31:7c:31:fb:9d:19:a7:9f:53:9c:8b:6a:8b:2d:bb:
bf:60:7d:9d:ad:8a:35:5a:b6:ce:83:80:70:95:f9:
02:75:2b:7f:ad:94:f1:49:b1:20:78:9d:98:96:a1:
7b:ee:e2:f4:aa:cc:84:00:bc:52:10:35:3c:08:dc:
12:b3:eb:ba:0c:b6:22:18:ad:53:83:97:3b:2f:b8:
bd:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:55:46:99:26:D1:F9:34:F3:AF:29:64:5E:B6:C1:0B:B6:06:9B:C9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B7770/E6810410C0AE11EAB95AB572C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B7770/E6810410C0AE11EAB95AB572C4F9AE02/fVVGmSbR-TTzrylkXrbBC7YGm8k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38074
38222
140868
sbgp-ipAddrBlock: critical
IPv4:
103.152.178.0/24
103.160.48.0/24
IPv6:
2001:df4:1780::/47
2406:7ec0::/32
Signature Algorithm: sha256WithRSAEncryption
5c:3f:bb:4b:03:7c:e6:5f:e0:82:21:23:7e:b7:72:75:1e:b1:
0b:eb:53:05:2a:c8:c1:3d:35:63:8a:95:1d:07:8d:e2:70:ad:
ef:74:b6:32:1d:19:b7:5f:f8:92:9e:5c:0c:6e:ad:1a:b2:97:
0a:ba:06:eb:d8:0d:9e:8b:dd:a8:40:1c:e2:b2:b3:5b:49:21:
4c:88:38:df:32:b1:a0:56:d2:3b:8c:cc:64:bd:ad:73:fe:83:
83:b4:84:06:f7:a9:64:bb:66:99:db:ca:9b:ff:ae:87:b4:41:
fe:b5:ea:90:66:b2:19:00:5b:51:10:f1:e1:7b:3d:b0:de:6f:
48:49:ac:35:09:69:5c:8c:52:47:eb:bd:02:cc:a2:3c:1b:e2:
c6:80:00:20:d4:d1:9d:24:3b:aa:ea:37:fa:46:d5:62:bd:87:
5f:17:cb:98:5d:57:41:29:eb:c7:2b:44:d4:5a:33:ba:98:4b:
86:c4:d1:42:a4:26:54:86:21:7e:5c:73:1e:75:77:d1:b7:c5:
cf:b5:52:ed:b4:5d:42:31:be:e6:6d:4e:7b:f5:8e:67:a7:a5:
a3:ec:48:24:58:44:9e:ea:38:a5:e0:9d:d9:4a:36:8d:20:d3:
0f:0e:ee:ea:5b:08:55:62:cc:55:89:a6:9f:0c:18:3d:fd:27:
fb:8f:89:31
-----BEGIN CERTIFICATE-----
MIIGQjCCBSqgAwIBAgIDAd+sMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDIxOTIxMTIwNFoXDTI0MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQjc3NzAxMTAvBgNVBAUTKDdENTU0Njk5MjZEMUY5MzRGM0FGMjk2
NDVFQjZDMTBCQjYwNjlCQzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDDUlT9ozd0ZyWjvcs1diWXqoRTrM4YzZejXrDCd95Kt6VpXbNUfDs0yW64Pg5y
ga2f/vbZUUNF0yQxEtocMe1ydu2i6UEUI1Q6FPA/UI88+ZEyyA+h1HLPNBlbDSDe
a8Y7kGvL9eyarl9ROG+dOJq05fkqzwAA6+vjlKRtK/lbO7cd/n03/lnKMgUDQ7i3
I0O9AFRggJM81lIVADedYOLo0nIj7jlnbOZwdD1cBXEnUaozETF8MfudGaefU5yL
aostu79gfZ2tijVats6DgHCV+QJ1K3+tlPFJsSB4nZiWoXvu4vSqzIQAvFIQNTwI
3BKz67oMtiIYrVODlzsvuL0RAgMBAAGjggM3MIIDMzAdBgNVHQ4EFgQUfVVGmSbR
+TTzrylkXrbBC7YGm8kwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUI3NzcwL0U2ODEwNDEwQzBBRTExRUFCOTVBQjU3MkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFCNzc3MC9FNjgxMDQxMEMwQUUxMUVBQjk1QUI1NzJDNEY5QUUwMi9mVlZHbVNi
Ui1UVHpyeWxrWHJiQkM3WUdtOGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQgBAf8EFTAT
oBEwDwIDAJS6AgMAlU4CAwImRDA9BggrBgEFBQcBBwEB/wQuMCwwEgQCAAEwDAME
AGeYsgMEAGegMDAWBAIAAjAQAwcBIAEN9BeAAwUAJAZ+wDANBgkqhkiG9w0BAQsF
AAOCAQEAXD+7SwN85l/ggiEjfrdydR6xC+tTBSrIwT01Y4qVHQeN4nCt73S2Mh0Z
t1/4kp5cDG6tGrKXCroG69gNnovdqEAc4rKzW0khTIg43zKxoFbSO4zMZL2tc/6D
g7SEBvepZLtmmdvKm/+uh7RB/rXqkGayGQBbURDx4Xs9sN5vSEmsNQlpXIxSR+u9
AsyiPBvixoAAINTRnSQ7quo3+kbVYr2HXxfLmF1XQSnrxytE1FozuphLhsTRQqQm
VIYhflxzHnV30bfFz7VS7bRdQjG+5m1Oe/WOZ6elo+xIJFhEnuo4peCd2Uo2jSDT
Dw7u6lsIVWLMVYmmnwwYPf0n+4+JMQ==
-----END CERTIFICATE-----
Generated at Sat Apr 20 03:58:00 2024 by rpki-client on console-fra.rpki-client.org