Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer
File: hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer (raw, json)
Hash identifier: D7i68UU64wEv53u9A8lob+dx1V3wM+xBjBijWnTPvWQ=
Subject key identifier: 85:4F:E7:27:53:60:D0:78:10:AF:FB:A6:C2:8F:FF:23:58:2A:20:EB
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DAE8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 29 Jan 2024 05:24:46 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 138434
IP: 103.125.92.0/22
IP: 2403:f040::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 00:57:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121576 (0x1dae8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 29 05:24:46 2024 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A91958BE/serialNumber=854FE7275360D07810AFFBA6C28FFF23582A20EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:0f:94:4f:7f:91:6d:4f:31:9c:1a:f8:be:bd:
c4:53:ea:e9:1b:8f:a6:6a:63:73:6f:20:59:4a:6e:
87:dc:0a:6b:e7:99:11:5e:09:89:c6:2d:51:91:31:
96:79:53:6c:a6:4b:3b:79:d9:61:67:c7:2f:85:60:
08:8c:48:d5:24:5d:d2:16:5c:0c:77:ca:38:6a:31:
2f:c3:db:2b:cf:b7:70:fd:b5:48:06:99:d2:b4:5d:
22:4a:72:23:57:3a:b6:29:58:7d:f9:84:f6:ec:9f:
02:c4:74:fa:c0:2a:93:9d:ab:96:a3:ca:7c:af:98:
cf:97:f4:14:f6:0d:14:e8:c8:5a:ff:45:ea:f2:31:
71:bd:4f:6b:25:99:51:2f:09:86:1f:1a:7a:ef:ec:
e9:2a:63:ac:90:80:ca:8a:c9:0a:44:ba:ff:f0:0b:
e3:3f:6c:ba:ef:1e:f7:09:6e:12:ba:74:03:90:9a:
68:4e:f1:f8:2d:ad:08:56:6b:6f:c1:4b:75:05:af:
73:f7:49:36:07:6a:db:5e:8c:d0:31:1f:79:a4:e4:
42:02:5c:c4:51:f5:8e:93:e6:8d:2d:85:59:5e:9e:
23:b7:8b:ae:7a:bc:79:f1:76:80:95:73:00:c2:09:
b5:7c:c0:4d:18:ab:64:2d:ea:82:61:51:9f:b4:f0:
65:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:4F:E7:27:53:60:D0:78:10:AF:FB:A6:C2:8F:FF:23:58:2A:20:EB
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138434
sbgp-ipAddrBlock: critical
IPv4:
103.125.92.0/22
IPv6:
2403:f040::/32
Signature Algorithm: sha256WithRSAEncryption
a3:53:71:4f:13:93:9f:09:f4:2b:32:c5:a1:c1:01:1b:cd:03:
3a:7d:1d:3f:88:5f:b0:6f:1e:72:2a:25:3d:7c:a9:21:0c:36:
09:28:16:29:94:96:75:b5:00:38:6b:76:0a:f4:d6:1d:f2:ed:
68:97:ff:6d:99:7d:f4:17:e9:50:bd:3e:81:4d:ea:eb:f3:ce:
78:e4:f8:4a:ab:4a:74:93:a1:da:7a:da:95:2e:14:a6:a0:19:
e2:dc:31:21:ac:a9:3f:59:61:7f:cd:c9:96:f7:c3:38:a0:d4:
38:e3:d3:ee:b4:24:39:41:7d:4d:d1:e0:61:29:9c:7b:90:f1:
19:29:a2:a0:86:75:f9:c3:9f:0d:5c:d4:c3:8a:21:9c:2d:7e:
97:94:f1:2a:b3:0a:cf:03:5a:af:c3:73:e1:a3:5f:16:ce:ac:
b4:54:be:fd:a4:38:c9:28:d8:e9:4d:cc:3b:25:bd:79:ad:0d:
3a:7b:47:df:cf:5e:2f:55:83:6a:e6:40:30:22:24:e1:af:d9:
2c:5a:6f:9d:b1:be:12:0f:f9:a6:13:9d:5c:69:35:6e:b3:6c:
af:f9:0b:3d:ff:4f:93:41:7b:b9:4a:71:db:2a:5a:24:04:cd:
f0:21:7e:7a:d6:e3:be:41:df:18:f4:68:20:88:f3:9c:f7:ff:
e6:22:9b:b7
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAdroMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDEyOTA1MjQ0NloXDTI0MTIzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxOTU4QkUxMTAvBgNVBAUTKDg1NEZFNzI3NTM2MEQwNzgxMEFGRkJB
NkMyOEZGRjIzNTgyQTIwRUIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCoD5RPf5FtTzGcGvi+vcRT6ukbj6ZqY3NvIFlKbofcCmvnmRFeCYnGLVGRMZZ5
U2ymSzt52WFnxy+FYAiMSNUkXdIWXAx3yjhqMS/D2yvPt3D9tUgGmdK0XSJKciNX
OrYpWH35hPbsnwLEdPrAKpOdq5ajynyvmM+X9BT2DRToyFr/ReryMXG9T2slmVEv
CYYfGnrv7OkqY6yQgMqKyQpEuv/wC+M/bLrvHvcJbhK6dAOQmmhO8fgtrQhWa2/B
S3UFr3P3STYHattejNAxH3mk5EICXMRR9Y6T5o0thVleniO3i656vHnxdoCVcwDC
CbV8wE0Yq2Qt6oJhUZ+08GU/AgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUhU/nJ1Ng
0HgQr/umwo//I1gqIOswHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTk1OEJFLzdDN0ZCMkZFQzIxOTExRUQ4MDI1NkY0RUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE5NThCRS83QzdGQjJGRUMyMTkxMUVEODAyNTZGNEVDNEY5QUUwMi9oVV9uSjFO
ZzBIZ1FyX3Vtd29fX0kxZ3FJT3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhzCMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZ31cMA0EAgAC
MAcDBQAkA/BAMA0GCSqGSIb3DQEBCwUAA4IBAQCjU3FPE5OfCfQrMsWhwQEbzQM6
fR0/iF+wbx5yKiU9fKkhDDYJKBYplJZ1tQA4a3YK9NYd8u1ol/9tmX30F+lQvT6B
Terr88545PhKq0p0k6HaetqVLhSmoBni3DEhrKk/WWF/zcmW98M4oNQ449PutCQ5
QX1N0eBhKZx7kPEZKaKghnX5w58NXNTDiiGcLX6XlPEqswrPA1qvw3Pho18Wzqy0
VL79pDjJKNjpTcw7Jb15rQ06e0ffz14vVYNq5kAwIiThr9ksWm+dsb4SD/mmE51c
aTVus2yv+Qs9/0+TQXu5SnHbKlokBM3wIX561uO+Qd8Y9GggiPOc9//mIpu3
-----END CERTIFICATE-----
Generated at Fri Apr 26 02:49:15 2024 by rpki-client on console-ams.rpki-client.org