Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lWVe5y4XegIJbAy2BnaqHmaa5-A.cer
File: lWVe5y4XegIJbAy2BnaqHmaa5-A.cer (raw, json)
Hash identifier: IuptVM4+ON15ZP1tujJ651PGn9YGl+eZ9RDjDvVkGF8=
Subject key identifier: 95:65:5E:E7:2E:17:7A:02:09:6C:0C:B6:06:76:AA:1E:66:9A:E7:E0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BFFB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9127898/2069F5FCFC0D11EBAE95147BC4F9AE02/lWVe5y4XegIJbAy2BnaqHmaa5-A.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9127898/2069F5FCFC0D11EBAE95147BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 27 Sep 2023 01:00:16 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 142638
IP: 103.171.142.0/23
IP: 2001:df7:4a80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 06:03:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114683 (0x1bffb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 27 01:00:16 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A9127898/serialNumber=95655EE72E177A02096C0CB60676AA1E669AE7E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:84:9b:e1:67:91:6e:6b:66:7b:6e:ad:ad:58:
48:30:2e:81:04:73:d7:03:e2:08:3f:7d:a5:74:e8:
7e:e0:bd:11:db:c8:5a:3c:21:94:a6:9a:ee:00:16:
c5:06:6f:b6:e1:ac:f2:b5:63:56:da:9c:1f:cb:6c:
f8:38:a2:67:27:5c:33:1c:0b:da:b1:69:08:73:f8:
e8:18:4c:e4:73:dc:7c:dc:d4:9d:ff:a5:9b:c8:8b:
f2:c2:8b:9a:9f:39:69:7f:a6:48:f3:02:16:b1:3b:
30:da:82:aa:7b:db:1b:c8:92:0a:29:33:15:1d:b9:
e9:a4:f6:49:8d:20:20:c2:25:0f:3d:74:47:4c:86:
95:e5:33:df:61:5e:52:d9:7a:f4:c2:42:3e:c9:33:
41:46:c6:b4:95:b5:c5:4e:a6:8b:4b:d3:88:05:40:
df:7a:47:fc:b7:17:39:7f:49:57:ca:fe:82:6c:0c:
77:90:ea:3c:37:f0:ab:00:93:10:04:53:a0:76:c0:
16:63:7c:d4:8c:fc:55:e9:dd:a2:bc:65:7d:96:95:
a6:c0:65:41:0f:eb:d7:68:b0:1a:fc:5a:fe:c2:e3:
6d:9d:09:aa:db:3d:83:78:2b:d9:06:3c:36:bf:b9:
eb:24:80:87:e4:9b:b3:2d:93:30:c9:15:8f:91:bd:
53:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:65:5E:E7:2E:17:7A:02:09:6C:0C:B6:06:76:AA:1E:66:9A:E7:E0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9127898/2069F5FCFC0D11EBAE95147BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9127898/2069F5FCFC0D11EBAE95147BC4F9AE02/lWVe5y4XegIJbAy2BnaqHmaa5-A.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142638
sbgp-ipAddrBlock: critical
IPv4:
103.171.142.0/23
IPv6:
2001:df7:4a80::/48
Signature Algorithm: sha256WithRSAEncryption
97:f0:e6:95:34:3c:79:46:f5:b0:99:d2:88:c8:22:d1:ce:7d:
c3:dd:0f:3d:93:36:6c:13:80:b5:55:43:14:76:be:35:44:08:
5f:e1:1c:b0:84:4e:25:a0:c2:e8:75:b0:95:53:2c:14:59:dd:
b6:7c:b6:9f:5d:ae:f7:3f:1d:10:5b:79:03:ed:a2:57:d7:7b:
4a:83:fe:9a:a0:40:15:2a:ce:75:a9:56:43:59:29:63:57:ab:
03:a9:0a:44:5c:ec:c3:24:ce:9e:e1:ca:61:23:07:f9:e6:1c:
a8:b2:9f:7f:df:2e:4a:e0:9d:35:34:94:93:60:1f:2d:5e:c2:
67:e2:2c:5e:51:82:b5:74:e1:5e:f6:bb:e6:4e:bc:20:43:a5:
9f:12:e9:26:cf:00:b2:ff:7b:48:df:e8:ea:e4:b8:8d:bf:5e:
86:00:19:9e:e8:6f:6d:d1:0e:23:bf:b4:40:5b:34:a0:ec:12:
91:60:5f:68:e6:9c:12:22:6b:55:2c:6d:8c:d1:d1:19:61:97:
bc:dd:82:8a:c3:94:b0:cb:1b:3d:0f:ed:b6:65:22:e1:ad:35:
46:e8:a0:42:9b:0c:fa:bd:4b:79:ad:e8:ef:cd:b3:6f:0d:24:
54:fa:8e:47:64:3e:c0:bf:a0:cd:13:27:6b:04:93:9e:38:ca:
48:01:13:de
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAb/7MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDkyNzAxMDAxNloXDTI0MDgzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMjc4OTgxMTAvBgNVBAUTKDk1NjU1RUU3MkUxNzdBMDIwOTZDMENC
NjA2NzZBQTFFNjY5QUU3RTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCghJvhZ5Fua2Z7bq2tWEgwLoEEc9cD4gg/faV06H7gvRHbyFo8IZSmmu4AFsUG
b7bhrPK1Y1banB/LbPg4omcnXDMcC9qxaQhz+OgYTORz3Hzc1J3/pZvIi/LCi5qf
OWl/pkjzAhaxOzDagqp72xvIkgopMxUduemk9kmNICDCJQ89dEdMhpXlM99hXlLZ
evTCQj7JM0FGxrSVtcVOpotL04gFQN96R/y3Fzl/SVfK/oJsDHeQ6jw38KsAkxAE
U6B2wBZjfNSM/FXp3aK8ZX2WlabAZUEP69dosBr8Wv7C422dCarbPYN4K9kGPDa/
ueskgIfkm7MtkzDJFY+RvVPdAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUlWVe5y4X
egIJbAy2BnaqHmaa5+AwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTI3ODk4LzIwNjlGNUZDRkMwRDExRUJBRTk1MTQ3QkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEyNzg5OC8yMDY5RjVGQ0ZDMEQxMUVCQUU5NTE0N0JDNEY5QUUwMi9sV1ZlNXk0
WGVnSUpiQXkyQm5hcUhtYWE1LUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAi0uMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ6uOMA8EAgAC
MAkDBwAgAQ33SoAwDQYJKoZIhvcNAQELBQADggEBAJfw5pU0PHlG9bCZ0ojIItHO
fcPdDz2TNmwTgLVVQxR2vjVECF/hHLCETiWgwuh1sJVTLBRZ3bZ8tp9drvc/HRBb
eQPtolfXe0qD/pqgQBUqznWpVkNZKWNXqwOpCkRc7MMkzp7hymEjB/nmHKiyn3/f
LkrgnTU0lJNgHy1ewmfiLF5RgrV04V72u+ZOvCBDpZ8S6SbPALL/e0jf6OrkuI2/
XoYAGZ7ob23RDiO/tEBbNKDsEpFgX2jmnBIia1UsbYzR0Rlhl7zdgorDlLDLGz0P
7bZlIuGtNUbooEKbDPq9S3mt6O/Ns28NJFT6jkdkPsC/oM0TJ2sEk544ykgBE94=
-----END CERTIFICATE-----
Generated at Thu May 2 08:03:46 2024 by rpki-client on console-ams.rpki-client.org