Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer
File: m2fIchTtmWVAcRkL688LjZ-hr04.cer (raw, json)
Hash identifier: 5gfLz/jgMC9hbcKVQ9bqbtX2/ny1P+qUOqOy0U5PQ+A=
Subject key identifier: 9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CFAC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 04 Dec 2023 19:37:14 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 134552
IP: 103.195.0.0/22
IP: 139.5.132.0/22
IP: 2404:4680::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 00:38:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118700 (0x1cfac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 4 19:37:14 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:62:0b:af:2c:d1:17:9a:58:40:70:ac:ea:d8:
45:31:d9:b0:45:c0:80:e3:f5:64:70:58:2c:61:25:
8c:4a:98:2d:24:e3:da:45:c1:0b:21:21:7f:de:cc:
bb:44:68:d6:8b:0a:f2:df:57:aa:fc:1a:bb:fd:a3:
a5:a1:75:ce:e8:a8:f8:b0:af:c2:f5:78:5f:71:f4:
17:33:a0:15:2e:28:c9:11:92:15:43:0c:36:07:b0:
97:9b:70:d8:1a:30:a0:74:1b:dd:95:7a:ac:1c:dd:
7c:9b:33:12:bb:eb:75:a0:f5:0f:d4:b6:1a:96:76:
ae:52:ba:21:0d:01:11:99:bc:70:bb:53:ff:d9:13:
69:7a:23:93:64:e3:4c:77:b1:77:3f:d2:84:d3:a7:
ea:01:3b:3e:9e:c6:ff:d6:f6:83:a3:56:c1:07:e4:
75:90:15:ce:f5:2f:61:66:9e:70:0e:7b:11:fb:70:
74:af:d8:9c:c8:ae:63:f5:41:0d:41:9a:ad:4f:7e:
c0:a7:a3:57:d7:96:b9:50:39:5a:1b:1c:84:ca:94:
bc:46:e7:5a:92:61:c8:2f:27:44:45:0e:7f:34:66:
d1:6c:27:7f:1e:e9:40:9f:31:46:40:3c:4d:0f:80:
05:be:01:f5:11:6f:bd:9d:1e:2e:bc:f1:b1:43:5c:
cc:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134552
sbgp-ipAddrBlock: critical
IPv4:
103.195.0.0/22
139.5.132.0/22
IPv6:
2404:4680::/32
Signature Algorithm: sha256WithRSAEncryption
9e:fe:1d:e2:56:e6:57:7f:30:d2:39:c7:56:67:76:cf:65:8b:
ac:b8:ec:dc:1c:f2:18:42:cf:c2:18:a3:74:9d:e4:fa:a1:53:
a9:b8:67:33:e0:29:b8:61:7b:77:ae:34:08:53:2c:ab:87:77:
64:a3:34:60:ac:93:2b:e8:1b:c1:5b:7f:d0:14:01:04:be:54:
ea:7c:60:2b:0a:a7:05:fc:a4:90:de:1a:37:dc:4a:af:03:2d:
a9:55:1e:6e:9c:c5:a0:7d:0e:1d:c0:8b:82:86:70:d3:a2:dc:
44:21:5d:c6:1b:72:c4:4a:18:98:ce:7b:0b:0a:88:76:51:82:
40:3a:b3:a2:6e:75:a5:15:00:c8:6c:bc:6a:9d:1d:42:e7:e6:
ce:59:ad:d6:e2:a8:5a:a7:ae:02:79:f3:1a:cb:d9:0a:a5:15:
23:af:d8:e2:02:11:36:5c:f8:de:4d:f1:f8:c2:d3:8e:70:4a:
98:b8:9f:b8:4f:11:7f:70:35:b9:ba:fc:5d:e1:50:eb:0c:0d:
b0:38:ee:56:fa:ea:a0:7b:0d:b9:48:f9:85:d3:ff:78:3c:3b:
5c:0a:bd:2e:c0:45:19:d9:17:7a:3a:5f:fa:f5:95:ff:10:b2:
07:1c:05:a3:ce:08:09:94:83:34:65:fb:6b:b9:21:4a:e6:8f:
aa:53:fa:43
-----BEGIN CERTIFICATE-----
MIIGLzCCBRegAwIBAgIDAc+sMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMTIwNDE5MzcxNFoXDTI0MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQ0JEQzgxMTAvBgNVBAUTKDlCNjdDODcyMTRFRDk5NjU0MDcxMTkw
QkVCQ0YwQjhEOUZBMUFGNEUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDgYguvLNEXmlhAcKzq2EUx2bBFwIDj9WRwWCxhJYxKmC0k49pFwQshIX/ezLtE
aNaLCvLfV6r8Grv9o6Whdc7oqPiwr8L1eF9x9BczoBUuKMkRkhVDDDYHsJebcNga
MKB0G92Veqwc3XybMxK763Wg9Q/UthqWdq5SuiENARGZvHC7U//ZE2l6I5Nk40x3
sXc/0oTTp+oBOz6exv/W9oOjVsEH5HWQFc71L2FmnnAOexH7cHSv2JzIrmP1QQ1B
mq1PfsCno1fXlrlQOVobHITKlLxG51qSYcgvJ0RFDn80ZtFsJ38e6UCfMUZAPE0P
gAW+AfURb72dHi688bFDXMzpAgMBAAGjggMkMIIDIDAdBgNVHQ4EFgQUm2fIchTt
mWVAcRkL688LjZ+hr04wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUNCREM4LzY2OTc2M0YwMThFMDExRUFBMEMzOEU3QkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFDQkRDOC82Njk3NjNGMDE4RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hU
dG1XVkFjUmtMNjg4TGpaLWhyMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAg2YMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCZ8MAAwQCiwWE
MA0EAgACMAcDBQAkBEaAMA0GCSqGSIb3DQEBCwUAA4IBAQCe/h3iVuZXfzDSOcdW
Z3bPZYusuOzcHPIYQs/CGKN0neT6oVOpuGcz4Cm4YXt3rjQIUyyrh3dkozRgrJMr
6BvBW3/QFAEEvlTqfGArCqcF/KSQ3ho33EqvAy2pVR5unMWgfQ4dwIuChnDTotxE
IV3GG3LEShiYznsLCoh2UYJAOrOibnWlFQDIbLxqnR1C5+bOWa3W4qhap64CefMa
y9kKpRUjr9jiAhE2XPjeTfH4wtOOcEqYuJ+4TxF/cDW5uvxd4VDrDA2wOO5W+uqg
ew25SPmF0/94PDtcCr0uwEUZ2Rd6Ol/69ZX/ELIHHAWjzggJlIM0ZftruSFK5o+q
U/pD
-----END CERTIFICATE-----
Generated at Fri Apr 19 01:45:51 2024 by rpki-client on console-ams.rpki-client.org