Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrKx0eeCRIuE9pgY8WofcHtUyGw.cer
File: hrKx0eeCRIuE9pgY8WofcHtUyGw.cer (raw, json)
Hash identifier: 4JohAg08WpilcT674VNFpJ81Nx8UBRyjTe2td8wmPys=
Subject key identifier: 86:B2:B1:D1:E7:82:44:8B:84:F6:98:18:F1:6A:1F:70:7B:54:C8:6C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 019F5E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EC979/ED633E865FD911EBA30EE37BC4F9AE02/hrKx0eeCRIuE9pgY8WofcHtUyGw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EC979/ED633E865FD911EBA30EE37BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 27 Apr 2023 21:01:33 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 138675
IP: 103.136.104.0/22
IP: 2404:90c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 23 Apr 2024 19:30:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106334 (0x19f5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 27 21:01:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=A91EC979/serialNumber=86B2B1D1E782448B84F69818F16A1F707B54C86C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:8f:de:da:bd:05:a3:f8:f5:7a:40:78:33:c8:
1b:e3:aa:47:03:65:51:de:bf:68:18:e8:47:9b:81:
c0:fe:70:a6:4d:01:77:80:40:69:63:a7:b0:a4:98:
10:ab:ba:a8:7c:33:e8:d2:e7:e6:ad:6b:57:a5:7f:
98:d8:cb:03:57:97:6c:cb:86:aa:f1:ed:89:c9:b5:
83:7c:5d:1b:c2:6f:3b:4b:6b:d2:70:67:77:bf:e5:
1a:e6:d2:b5:50:de:55:6d:11:b6:91:48:f6:a4:90:
db:76:52:a8:d8:ae:46:cf:c4:d8:a4:38:97:6f:89:
9f:e9:9d:aa:53:93:7d:a0:32:bb:56:6d:b4:14:83:
35:41:9e:38:b3:fd:0f:69:de:8e:8b:8e:fd:6a:33:
0c:0d:ea:a0:24:64:7e:ea:18:81:df:ed:67:1c:b8:
95:b8:63:70:39:56:43:14:97:ee:31:9e:67:f1:43:
52:83:c2:ac:5f:c8:ab:f6:8a:f3:ee:21:2b:95:ee:
74:03:bc:36:84:88:d7:db:41:db:60:51:30:aa:11:
2d:4e:74:61:09:6c:53:61:15:43:c1:c4:0f:a3:d8:
6f:85:bc:50:6b:4a:58:f6:8f:de:2d:8e:97:6c:ca:
1c:a8:a7:b4:12:f8:c9:d4:5e:2c:89:4c:24:be:58:
9c:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:B2:B1:D1:E7:82:44:8B:84:F6:98:18:F1:6A:1F:70:7B:54:C8:6C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EC979/ED633E865FD911EBA30EE37BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EC979/ED633E865FD911EBA30EE37BC4F9AE02/hrKx0eeCRIuE9pgY8WofcHtUyGw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138675
sbgp-ipAddrBlock: critical
IPv4:
103.136.104.0/22
IPv6:
2404:90c0::/32
Signature Algorithm: sha256WithRSAEncryption
34:bf:cf:93:4d:00:0b:a9:7f:6d:23:fa:32:b9:7f:68:53:04:
d6:da:46:a7:3e:af:0f:11:44:46:48:bb:c2:0b:fa:23:bb:75:
1d:80:f0:5e:51:e8:e0:c5:4d:a7:7f:ff:29:83:ed:13:66:0a:
73:78:eb:74:e2:df:f3:45:78:da:41:77:2c:c9:a6:c3:36:1a:
69:1a:65:38:fd:7b:bb:d2:ab:41:39:7e:f0:9e:62:61:2b:9b:
8f:ff:f6:60:b8:c6:f8:c3:48:bc:64:01:c2:77:f7:79:0b:49:
27:49:0f:2c:a4:e5:ee:a1:c6:7c:27:3a:ff:2c:d5:74:5c:4b:
e3:27:4c:94:e4:58:d0:79:4a:6f:22:60:24:7f:7b:f5:a3:af:
fb:cf:ba:5d:de:87:99:0f:15:15:35:18:80:9c:6b:66:e4:9f:
b4:77:7d:39:64:87:eb:06:ac:ce:21:ab:d1:51:17:a1:c1:de:
b5:3c:8e:5e:bc:3d:37:0c:ab:7a:e6:8e:4d:93:7d:e1:de:f9:
55:f0:83:a8:cb:bd:11:92:62:2a:36:e3:43:36:b3:1f:1c:95:
f4:1a:c4:05:1d:5e:4c:ca:62:05:3c:42:b4:4c:e2:05:1b:ff:
33:92:29:4b:b3:78:39:b2:57:55:d3:2b:3a:55:81:c6:3b:e3:
af:d4:c8:6e
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAZ9eMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDQyNzIxMDEzM1oXDTI0MDcwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRUM5NzkxMTAvBgNVBAUTKDg2QjJCMUQxRTc4MjQ0OEI4NEY2OTgx
OEYxNkExRjcwN0I1NEM4NkMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDuj97avQWj+PV6QHgzyBvjqkcDZVHev2gY6EebgcD+cKZNAXeAQGljp7CkmBCr
uqh8M+jS5+ata1elf5jYywNXl2zLhqrx7YnJtYN8XRvCbztLa9JwZ3e/5Rrm0rVQ
3lVtEbaRSPakkNt2UqjYrkbPxNikOJdviZ/pnapTk32gMrtWbbQUgzVBnjiz/Q9p
3o6Ljv1qMwwN6qAkZH7qGIHf7WccuJW4Y3A5VkMUl+4xnmfxQ1KDwqxfyKv2ivPu
ISuV7nQDvDaEiNfbQdtgUTCqES1OdGEJbFNhFUPBxA+j2G+FvFBrSlj2j94tjpds
yhyop7QS+MnUXiyJTCS+WJzVAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUhrKx0eeC
RIuE9pgY8WofcHtUyGwwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUVDOTc5L0VENjMzRTg2NUZEOTExRUJBMzBFRTM3QkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFFQzk3OS9FRDYzM0U4NjVGRDkxMUVCQTMwRUUzN0JDNEY5QUUwMi9ockt4MGVl
Q1JJdUU5cGdZOFdvZmNIdFV5R3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAh2zMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZ4hoMA0EAgAC
MAcDBQAkBJDAMA0GCSqGSIb3DQEBCwUAA4IBAQA0v8+TTQALqX9tI/oyuX9oUwTW
2kanPq8PEURGSLvCC/oju3UdgPBeUejgxU2nf/8pg+0TZgpzeOt04t/zRXjaQXcs
yabDNhppGmU4/Xu70qtBOX7wnmJhK5uP//ZguMb4w0i8ZAHCd/d5C0knSQ8spOXu
ocZ8Jzr/LNV0XEvjJ0yU5FjQeUpvImAkf3v1o6/7z7pd3oeZDxUVNRiAnGtm5J+0
d305ZIfrBqzOIavRURehwd61PI5evD03DKt65o5Nk33h3vlV8IOoy70RkmIqNuND
NrMfHJX0GsQFHV5MymIFPEK0TOIFG/8zkilLs3g5sldV0ys6VYHGO+Ov1Mhu
-----END CERTIFICATE-----
Generated at Tue Apr 16 20:24:11 2024 by rpki-client on console-fra.rpki-client.org