Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lWVe5y4XegIJbAy2BnaqHmaa5-A.cer
File: lWVe5y4XegIJbAy2BnaqHmaa5-A.cer (raw, json)
Hash identifier: VUIrvm6LLX958KyVF2X7ceyAun9z44Dy3L8gQ1ezF2I=
Subject key identifier: 95:65:5E:E7:2E:17:7A:02:09:6C:0C:B6:06:76:AA:1E:66:9A:E7:E0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020124
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9127898/2069F5FCFC0D11EBAE95147BC4F9AE02/lWVe5y4XegIJbAy2BnaqHmaa5-A.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9127898/2069F5FCFC0D11EBAE95147BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 18 Jul 2024 13:01:09 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 142638
IP: 103.171.142.0/23
IP: 2001:df7:4a80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 12:58:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131364 (0x20124)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 18 13:01:09 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A9127898/serialNumber=95655EE72E177A02096C0CB60676AA1E669AE7E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:84:9b:e1:67:91:6e:6b:66:7b:6e:ad:ad:58:
48:30:2e:81:04:73:d7:03:e2:08:3f:7d:a5:74:e8:
7e:e0:bd:11:db:c8:5a:3c:21:94:a6:9a:ee:00:16:
c5:06:6f:b6:e1:ac:f2:b5:63:56:da:9c:1f:cb:6c:
f8:38:a2:67:27:5c:33:1c:0b:da:b1:69:08:73:f8:
e8:18:4c:e4:73:dc:7c:dc:d4:9d:ff:a5:9b:c8:8b:
f2:c2:8b:9a:9f:39:69:7f:a6:48:f3:02:16:b1:3b:
30:da:82:aa:7b:db:1b:c8:92:0a:29:33:15:1d:b9:
e9:a4:f6:49:8d:20:20:c2:25:0f:3d:74:47:4c:86:
95:e5:33:df:61:5e:52:d9:7a:f4:c2:42:3e:c9:33:
41:46:c6:b4:95:b5:c5:4e:a6:8b:4b:d3:88:05:40:
df:7a:47:fc:b7:17:39:7f:49:57:ca:fe:82:6c:0c:
77:90:ea:3c:37:f0:ab:00:93:10:04:53:a0:76:c0:
16:63:7c:d4:8c:fc:55:e9:dd:a2:bc:65:7d:96:95:
a6:c0:65:41:0f:eb:d7:68:b0:1a:fc:5a:fe:c2:e3:
6d:9d:09:aa:db:3d:83:78:2b:d9:06:3c:36:bf:b9:
eb:24:80:87:e4:9b:b3:2d:93:30:c9:15:8f:91:bd:
53:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:65:5E:E7:2E:17:7A:02:09:6C:0C:B6:06:76:AA:1E:66:9A:E7:E0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9127898/2069F5FCFC0D11EBAE95147BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9127898/2069F5FCFC0D11EBAE95147BC4F9AE02/lWVe5y4XegIJbAy2BnaqHmaa5-A.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142638
sbgp-ipAddrBlock: critical
IPv4:
103.171.142.0/23
IPv6:
2001:df7:4a80::/48
Signature Algorithm: sha256WithRSAEncryption
4f:6f:88:4c:b5:4e:b7:e2:f4:3a:1c:12:75:94:16:15:2d:90:
e7:e2:2a:61:ed:f5:b1:2a:51:66:5e:e0:57:57:38:b2:21:26:
92:6f:42:c5:b7:4a:24:bd:bf:35:21:2c:3a:e5:bc:c4:a5:e0:
58:fe:0e:05:89:f9:e6:33:73:36:c2:be:4c:5f:6a:1c:e6:39:
ee:f7:0d:69:e7:a6:8e:e7:7b:aa:5f:58:93:d3:b1:c3:04:cb:
86:42:1b:82:99:d9:64:c8:9f:aa:44:cd:99:fc:9e:04:06:4a:
bb:e3:6d:12:26:f4:60:6a:47:4b:73:27:ab:da:17:46:ab:45:
57:3c:89:9b:2a:f3:6e:ca:35:b4:1c:3d:c5:3b:da:e1:6c:33:
f9:cd:9f:a9:18:7b:1b:e0:4b:ef:60:55:53:1c:ea:7a:6c:06:
4a:e3:b0:40:5b:0e:81:e5:9f:09:dd:01:a7:45:6f:cf:66:25:
3f:5b:a0:6b:cf:25:6b:ed:09:42:d4:97:46:bc:49:37:20:f1:
a1:dc:04:c2:bc:24:5c:e0:f2:dd:62:b1:7e:35:92:cc:4c:9f:
b9:d7:b1:a6:8f:cd:f6:62:c5:7d:46:56:3a:4d:b4:5b:ce:23:
d5:70:fc:b4:bf:8d:50:3f:83:fd:3c:26:bd:54:4f:83:c9:90:
ea:6b:0d:fd
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAgEkMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDcxODEzMDEwOVoXDTI1MDgzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMjc4OTgxMTAvBgNVBAUTKDk1NjU1RUU3MkUxNzdBMDIwOTZDMENC
NjA2NzZBQTFFNjY5QUU3RTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCghJvhZ5Fua2Z7bq2tWEgwLoEEc9cD4gg/faV06H7gvRHbyFo8IZSmmu4AFsUG
b7bhrPK1Y1banB/LbPg4omcnXDMcC9qxaQhz+OgYTORz3Hzc1J3/pZvIi/LCi5qf
OWl/pkjzAhaxOzDagqp72xvIkgopMxUduemk9kmNICDCJQ89dEdMhpXlM99hXlLZ
evTCQj7JM0FGxrSVtcVOpotL04gFQN96R/y3Fzl/SVfK/oJsDHeQ6jw38KsAkxAE
U6B2wBZjfNSM/FXp3aK8ZX2WlabAZUEP69dosBr8Wv7C422dCarbPYN4K9kGPDa/
ueskgIfkm7MtkzDJFY+RvVPdAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUlWVe5y4X
egIJbAy2BnaqHmaa5+AwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTI3ODk4LzIwNjlGNUZDRkMwRDExRUJBRTk1MTQ3QkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEyNzg5OC8yMDY5RjVGQ0ZDMEQxMUVCQUU5NTE0N0JDNEY5QUUwMi9sV1ZlNXk0
WGVnSUpiQXkyQm5hcUhtYWE1LUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAi0uMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ6uOMA8EAgAC
MAkDBwAgAQ33SoAwDQYJKoZIhvcNAQELBQADggEBAE9viEy1Trfi9DocEnWUFhUt
kOfiKmHt9bEqUWZe4FdXOLIhJpJvQsW3SiS9vzUhLDrlvMSl4Fj+DgWJ+eYzczbC
vkxfahzmOe73DWnnpo7ne6pfWJPTscMEy4ZCG4KZ2WTIn6pEzZn8ngQGSrvjbRIm
9GBqR0tzJ6vaF0arRVc8iZsq827KNbQcPcU72uFsM/nNn6kYexvgS+9gVVMc6nps
BkrjsEBbDoHlnwndAadFb89mJT9boGvPJWvtCULUl0a8STcg8aHcBMK8JFzg8t1i
sX41ksxMn7nXsaaPzfZixX1GVjpNtFvOI9Vw/LS/jVA/g/08Jr1UT4PJkOprDf0=
-----END CERTIFICATE-----
Generated at Fri Nov 22 14:24:46 2024 by rpki-client on console-ams.rpki-client.org