Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer
File: m2fIchTtmWVAcRkL688LjZ-hr04.cer (raw, json)
Hash identifier: YBwEhs5bF+MO88h4jHqtuTbIHt3E6EVyjr+WrDmriR4=
Subject key identifier: 9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0216CA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 28 Oct 2024 18:59:41 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 134552
IP: 103.195.0.0/22
IP: 139.5.132.0/22
IP: 2404:4680::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136906 (0x216ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 28 18:59:41 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:62:0b:af:2c:d1:17:9a:58:40:70:ac:ea:d8:
45:31:d9:b0:45:c0:80:e3:f5:64:70:58:2c:61:25:
8c:4a:98:2d:24:e3:da:45:c1:0b:21:21:7f:de:cc:
bb:44:68:d6:8b:0a:f2:df:57:aa:fc:1a:bb:fd:a3:
a5:a1:75:ce:e8:a8:f8:b0:af:c2:f5:78:5f:71:f4:
17:33:a0:15:2e:28:c9:11:92:15:43:0c:36:07:b0:
97:9b:70:d8:1a:30:a0:74:1b:dd:95:7a:ac:1c:dd:
7c:9b:33:12:bb:eb:75:a0:f5:0f:d4:b6:1a:96:76:
ae:52:ba:21:0d:01:11:99:bc:70:bb:53:ff:d9:13:
69:7a:23:93:64:e3:4c:77:b1:77:3f:d2:84:d3:a7:
ea:01:3b:3e:9e:c6:ff:d6:f6:83:a3:56:c1:07:e4:
75:90:15:ce:f5:2f:61:66:9e:70:0e:7b:11:fb:70:
74:af:d8:9c:c8:ae:63:f5:41:0d:41:9a:ad:4f:7e:
c0:a7:a3:57:d7:96:b9:50:39:5a:1b:1c:84:ca:94:
bc:46:e7:5a:92:61:c8:2f:27:44:45:0e:7f:34:66:
d1:6c:27:7f:1e:e9:40:9f:31:46:40:3c:4d:0f:80:
05:be:01:f5:11:6f:bd:9d:1e:2e:bc:f1:b1:43:5c:
cc:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134552
sbgp-ipAddrBlock: critical
IPv4:
103.195.0.0/22
139.5.132.0/22
IPv6:
2404:4680::/32
Signature Algorithm: sha256WithRSAEncryption
d6:7d:57:61:c1:46:10:9b:56:2b:7c:e5:83:b5:8e:9d:97:9a:
57:ca:e3:a0:24:17:f8:a3:fa:b2:a5:d7:91:bb:03:b5:dc:4a:
f3:0d:1e:97:cd:dc:ea:09:cc:2d:a0:af:a3:b9:33:bd:26:ad:
e8:17:c1:a0:f2:b4:3f:85:be:9d:c1:20:3a:e3:9c:b5:ef:a3:
a8:dd:c6:df:42:73:2c:33:ec:a5:69:ce:a3:c0:c0:64:62:99:
29:b6:4c:b2:1d:3b:7f:2b:41:59:c6:fa:14:dc:ae:92:eb:89:
4e:dc:1e:71:53:dd:09:94:c7:82:9f:cf:75:dc:e2:c5:73:0f:
ee:1f:c6:08:89:f8:3d:13:5c:74:b3:2b:6d:4a:e2:44:c3:78:
64:a6:8a:00:89:8d:e1:f0:d1:33:6b:26:51:d0:2a:3c:2e:80:
75:d8:13:0e:57:62:93:60:8f:95:f9:d5:a8:fc:66:39:41:c7:
b3:eb:e3:7b:30:eb:f3:2d:46:25:1e:04:aa:42:c6:af:75:a7:
f7:88:3a:3b:12:b3:32:4b:21:43:b1:74:89:ac:c5:16:05:1e:
06:cf:45:3a:10:e3:7b:a2:7b:ed:2e:1f:1a:97:9e:75:1a:5c:
9a:b5:30:b2:fc:fe:b5:1f:17:ff:9d:5f:5a:91:00:54:dd:65:
b5:64:f4:fb
-----BEGIN CERTIFICATE-----
MIIGLzCCBRegAwIBAgIDAhbKMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTAyODE4NTk0MVoXDTI1MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQ0JEQzgxMTAvBgNVBAUTKDlCNjdDODcyMTRFRDk5NjU0MDcxMTkw
QkVCQ0YwQjhEOUZBMUFGNEUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDgYguvLNEXmlhAcKzq2EUx2bBFwIDj9WRwWCxhJYxKmC0k49pFwQshIX/ezLtE
aNaLCvLfV6r8Grv9o6Whdc7oqPiwr8L1eF9x9BczoBUuKMkRkhVDDDYHsJebcNga
MKB0G92Veqwc3XybMxK763Wg9Q/UthqWdq5SuiENARGZvHC7U//ZE2l6I5Nk40x3
sXc/0oTTp+oBOz6exv/W9oOjVsEH5HWQFc71L2FmnnAOexH7cHSv2JzIrmP1QQ1B
mq1PfsCno1fXlrlQOVobHITKlLxG51qSYcgvJ0RFDn80ZtFsJ38e6UCfMUZAPE0P
gAW+AfURb72dHi688bFDXMzpAgMBAAGjggMkMIIDIDAdBgNVHQ4EFgQUm2fIchTt
mWVAcRkL688LjZ+hr04wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUNCREM4LzY2OTc2M0YwMThFMDExRUFBMEMzOEU3QkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFDQkRDOC82Njk3NjNGMDE4RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hU
dG1XVkFjUmtMNjg4TGpaLWhyMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAg2YMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCZ8MAAwQCiwWE
MA0EAgACMAcDBQAkBEaAMA0GCSqGSIb3DQEBCwUAA4IBAQDWfVdhwUYQm1YrfOWD
tY6dl5pXyuOgJBf4o/qypdeRuwO13ErzDR6XzdzqCcwtoK+juTO9Jq3oF8Gg8rQ/
hb6dwSA645y176Oo3cbfQnMsM+ylac6jwMBkYpkptkyyHTt/K0FZxvoU3K6S64lO
3B5xU90JlMeCn8913OLFcw/uH8YIifg9E1x0syttSuJEw3hkpooAiY3h8NEzayZR
0Co8LoB12BMOV2KTYI+V+dWo/GY5Qcez6+N7MOvzLUYlHgSqQsavdaf3iDo7ErMy
SyFDsXSJrMUWBR4Gz0U6EON7onvtLh8al551GlyatTCy/P61Hxf/nV9akQBU3WW1
ZPT7
-----END CERTIFICATE-----
Generated at Wed Nov 27 04:08:11 2024 by rpki-client on console-ams.rpki-client.org