Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNZeQOKuy7xVttozRr8czjg1wnc.cer
File: jNZeQOKuy7xVttozRr8czjg1wnc.cer (raw, json)
Hash identifier: cXPLv1EfNKRuJlCDdqZZQV3UEEe1Pc4xux31jvfMWms=
Subject key identifier: 8C:D6:5E:40:E2:AE:CB:BC:55:B6:DA:33:46:BF:1C:CE:38:35:C2:77
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A9FD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 14 Jun 2023 02:26:34 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 151360
IP: 103.208.88.0/23
IP: 2401:220::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 08 May 2024 21:44:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109053 (0x1a9fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 14 02:26:34 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A919A6EB/serialNumber=8CD65E40E2AECBBC55B6DA3346BF1CCE3835C277
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3b:29:f0:de:b5:22:db:ba:35:0f:e7:78:f5:
14:f7:84:09:8e:e4:61:d7:b5:15:45:5e:f1:6b:0e:
e7:91:84:19:41:19:19:43:a1:1e:54:81:7c:34:8e:
a4:a4:03:06:fe:e8:41:8e:5b:b5:e3:5b:12:0c:8a:
8e:88:d3:86:a4:1e:4d:24:d4:9b:0d:f4:92:a6:b2:
35:82:ac:6b:37:c6:48:09:a3:86:53:36:13:04:fc:
fe:a7:fb:f1:f2:50:83:cd:3e:54:d7:35:0d:54:9f:
b6:5b:d0:3e:0f:07:a9:88:0c:d9:13:a8:52:a8:d2:
78:be:5c:af:12:8d:42:c5:60:ae:09:7b:9b:48:27:
4b:22:09:cf:fb:5a:63:a7:b9:b3:1d:5e:c7:8a:bc:
2e:98:75:0e:34:d7:46:8b:17:06:e6:f4:a5:de:f2:
bd:35:2e:9f:3e:2b:a9:c9:3d:45:f6:8e:69:12:aa:
e0:75:30:d9:4e:aa:a4:60:af:42:a8:56:aa:a2:cc:
a9:31:c0:e8:f2:ea:31:2f:5c:c6:97:07:d8:48:49:
65:26:64:d8:3a:bb:8e:ab:08:26:53:45:d3:f7:d2:
07:fc:ef:f4:22:40:27:0f:ee:71:cd:d6:70:58:38:
39:2d:80:48:a0:70:d3:72:62:f2:31:a0:36:14:fa:
2f:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:D6:5E:40:E2:AE:CB:BC:55:B6:DA:33:46:BF:1C:CE:38:35:C2:77
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151360
sbgp-ipAddrBlock: critical
IPv4:
103.208.88.0/23
IPv6:
2401:220::/32
Signature Algorithm: sha256WithRSAEncryption
25:8f:4e:17:98:e1:13:04:33:ef:e5:f0:5a:8e:7a:77:81:46:
89:0c:3d:a9:42:c8:a2:3b:5b:b3:40:9f:7d:51:96:f3:82:c6:
dc:a2:19:27:c7:1a:e9:8e:e9:94:97:50:29:28:f0:5c:09:7f:
3a:af:d8:73:70:55:79:dc:b6:fa:0d:13:61:b3:54:88:32:58:
f5:c6:34:a0:a0:e8:57:f9:9b:97:e2:e9:58:1a:61:81:2a:44:
f6:ce:11:7c:0b:04:de:3d:ae:df:06:4d:1b:7b:e4:8c:8c:fb:
cb:c6:ff:04:d9:1b:0f:8a:79:98:26:bf:c5:fd:9a:6c:10:d6:
98:88:22:8b:9e:35:a3:e5:bb:ad:8f:78:37:10:b2:19:c8:e1:
3f:2d:9d:0d:32:f0:6a:ad:e1:fe:33:02:81:8e:b3:73:71:b9:
4c:7a:a2:95:f2:88:c9:ec:f8:2a:c1:87:1a:d2:17:e5:64:d9:
05:a1:8f:26:ef:c3:bb:56:94:4d:d3:e0:97:19:5d:e9:f4:fd:
be:a8:f3:90:08:72:6e:fc:36:e1:39:b0:5f:ad:4c:a3:0c:bf:
bc:2b:1f:58:41:3c:c9:97:70:d5:a6:63:3d:66:71:89:b2:e6:
aa:31:86:35:9f:b0:d0:9d:5b:44:fa:c2:43:d6:89:87:86:73:
69:e6:15:1e
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAan9MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDYxNDAyMjYzNFoXDTI0MDgzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxOUE2RUIxMTAvBgNVBAUTKDhDRDY1RTQwRTJBRUNCQkM1NUI2REEz
MzQ2QkYxQ0NFMzgzNUMyNzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDGOynw3rUi27o1D+d49RT3hAmO5GHXtRVFXvFrDueRhBlBGRlDoR5UgXw0jqSk
Awb+6EGOW7XjWxIMio6I04akHk0k1JsN9JKmsjWCrGs3xkgJo4ZTNhME/P6n+/Hy
UIPNPlTXNQ1Un7Zb0D4PB6mIDNkTqFKo0ni+XK8SjULFYK4Je5tIJ0siCc/7WmOn
ubMdXseKvC6YdQ4010aLFwbm9KXe8r01Lp8+K6nJPUX2jmkSquB1MNlOqqRgr0Ko
VqqizKkxwOjy6jEvXMaXB9hISWUmZNg6u46rCCZTRdP30gf87/QiQCcP7nHN1nBY
ODktgEigcNNyYvIxoDYU+i8lAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUjNZeQOKu
y7xVttozRr8czjg1wncwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTlBNkVCL0RENEMxQjJBMEE1QTExRUVCRTgyNDM0NEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE5QTZFQi9ERDRDMUIyQTBBNUExMUVFQkU4MjQzNDRDNEY5QUUwMi9qTlplUU9L
dXk3eFZ0dG96UnI4Y3pqZzF3bmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAk9AMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBZ9BYMA0EAgAC
MAcDBQAkAQIgMA0GCSqGSIb3DQEBCwUAA4IBAQAlj04XmOETBDPv5fBajnp3gUaJ
DD2pQsiiO1uzQJ99UZbzgsbcohknxxrpjumUl1ApKPBcCX86r9hzcFV53Lb6DRNh
s1SIMlj1xjSgoOhX+ZuX4ulYGmGBKkT2zhF8CwTePa7fBk0be+SMjPvLxv8E2RsP
inmYJr/F/ZpsENaYiCKLnjWj5butj3g3ELIZyOE/LZ0NMvBqreH+MwKBjrNzcblM
eqKV8ojJ7PgqwYca0hflZNkFoY8m78O7VpRN0+CXGV3p9P2+qPOQCHJu/DbhObBf
rUyjDL+8Kx9YQTzJl3DVpmM9ZnGJsuaqMYY1n7DQnVtE+sJD1omHhnNp5hUe
-----END CERTIFICATE-----
Generated at Wed May 1 22:52:02 2024 by rpki-client on console-ams.rpki-client.org