Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer
File: mG5BZ9azgH9J98JgDWD5wmCacJY.cer (raw, json)
Hash identifier: lPoq6OGBRfWbhZmdvy9jblfFgsV/Yp0wl5PiraRH4+o=
Subject key identifier: 98:6E:41:67:D6:B3:80:7F:49:F7:C2:60:0D:60:F9:C2:60:9A:70:96
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B63B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 10 Aug 2023 19:13:43 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 58695
IP: 103.15.224.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 08 May 2024 19:45:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112187 (0x1b63b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 10 19:13:43 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91F3806/serialNumber=986E4167D6B3807F49F7C2600D60F9C2609A7096
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:82:67:41:14:f2:dc:55:34:97:10:5b:5c:07:
86:da:0a:ac:3d:cd:d5:72:e1:b3:e6:98:3a:e5:27:
52:11:23:bc:ee:68:03:9b:f3:68:ac:b8:53:c9:a1:
2b:aa:32:6a:15:ab:cb:d5:75:4d:33:b2:9a:c7:f4:
ac:21:94:1f:46:5c:52:5e:d7:44:cf:ac:c0:86:ef:
46:ce:70:4a:41:9b:09:8c:11:c1:07:9e:bb:e2:0a:
dc:5e:0c:aa:3a:ed:9f:67:1b:69:be:60:b8:db:53:
ab:2d:dc:af:ba:8d:80:c2:6a:bf:2c:86:21:79:85:
cc:28:ec:9a:dd:13:75:67:86:cb:b4:d3:02:67:d8:
84:01:ae:52:dd:15:fa:e8:73:84:15:a2:ae:7c:b0:
c4:d5:f7:e3:62:fb:1f:2c:12:aa:10:e6:2b:b0:2d:
1d:d6:05:30:6e:07:82:c2:18:c3:35:38:8a:d0:1c:
c9:bd:72:81:d5:8a:9c:87:f3:a4:55:27:97:36:f3:
22:f2:ff:7c:14:e7:da:d5:f1:9a:5d:92:63:c0:54:
86:16:28:ce:a9:d4:a9:4a:14:ad:d5:4e:ef:da:1a:
1c:34:16:a6:24:af:8d:f1:fe:de:40:a6:ad:20:b9:
c0:fd:86:48:a3:32:45:0a:7b:dc:cd:f6:06:13:90:
5b:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:6E:41:67:D6:B3:80:7F:49:F7:C2:60:0D:60:F9:C2:60:9A:70:96
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58695
sbgp-ipAddrBlock: critical
IPv4:
103.15.224.0/23
Signature Algorithm: sha256WithRSAEncryption
07:91:45:19:88:16:32:39:09:58:a7:79:3a:a6:11:ee:7b:f4:
fd:eb:42:c5:f9:48:bf:21:d8:93:d2:c8:46:f8:c4:d8:c1:13:
d1:5d:70:fb:b3:0c:c8:83:16:a3:06:81:48:cb:1d:7a:55:06:
82:b5:ae:47:08:71:c2:6d:35:03:ee:1b:e4:e9:ef:95:36:fd:
50:3f:81:d0:ec:af:c3:10:da:7e:8d:36:1e:ac:ac:4e:61:b3:
d1:60:5f:a0:bc:b4:d9:e5:20:e2:d6:98:1c:57:70:4e:cb:ff:
4d:24:91:e6:a9:2e:f3:9b:82:19:9f:48:21:fa:3a:d8:3c:31:
69:a7:58:5f:b8:38:df:ab:fd:08:bb:a0:e5:ef:7e:14:95:a4:
08:3a:1a:9d:90:62:8b:b6:91:7e:a0:7f:6b:f3:04:be:58:e8:
ec:14:ab:5f:48:b1:1e:84:33:ab:71:8e:84:23:a6:a8:8f:ea:
b8:be:08:13:ff:27:fe:de:3e:2c:3e:5b:8c:5f:51:de:fc:f7:
32:51:11:54:9f:63:f0:ff:b3:ff:c4:0d:a1:aa:9b:1f:11:39:
dc:8f:5b:91:f1:7a:f2:38:81:56:08:9b:55:04:69:69:0e:20:
07:50:0d:0c:08:f3:b4:a3:14:a9:c3:aa:47:ae:17:7a:a1:0c:
eb:6a:77:7e
-----BEGIN CERTIFICATE-----
MIIGGjCCBQKgAwIBAgIDAbY7MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDgxMDE5MTM0M1oXDTI0MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRjM4MDYxMTAvBgNVBAUTKDk4NkU0MTY3RDZCMzgwN0Y0OUY3QzI2
MDBENjBGOUMyNjA5QTcwOTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC6gmdBFPLcVTSXEFtcB4baCqw9zdVy4bPmmDrlJ1IRI7zuaAOb82isuFPJoSuq
MmoVq8vVdU0zsprH9KwhlB9GXFJe10TPrMCG70bOcEpBmwmMEcEHnrviCtxeDKo6
7Z9nG2m+YLjbU6st3K+6jYDCar8shiF5hcwo7JrdE3Vnhsu00wJn2IQBrlLdFfro
c4QVoq58sMTV9+Ni+x8sEqoQ5iuwLR3WBTBuB4LCGMM1OIrQHMm9coHVipyH86RV
J5c28yLy/3wU59rV8ZpdkmPAVIYWKM6p1KlKFK3VTu/aGhw0FqYkr43x/t5Apq0g
ucD9hkijMkUKe9zN9gYTkFtrAgMBAAGjggMPMIIDCzAdBgNVHQ4EFgQUmG5BZ9az
gH9J98JgDWD5wmCacJYwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUYzODA2L0I0NzJGRTJBMEI3QzExRUE4MDgzRTkzNkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFGMzgwNi9CNDcyRkUyQTBCN0MxMUVBODA4M0U5MzZDNEY5QUUwMi9tRzVCWjlh
emdIOUo5OEpnRFdENXdtQ2FjSlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAOVHMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZw/gMA0GCSqG
SIb3DQEBCwUAA4IBAQAHkUUZiBYyOQlYp3k6phHue/T960LF+Ui/IdiT0shG+MTY
wRPRXXD7swzIgxajBoFIyx16VQaCta5HCHHCbTUD7hvk6e+VNv1QP4HQ7K/DENp+
jTYerKxOYbPRYF+gvLTZ5SDi1pgcV3BOy/9NJJHmqS7zm4IZn0gh+jrYPDFpp1hf
uDjfq/0Iu6Dl734UlaQIOhqdkGKLtpF+oH9r8wS+WOjsFKtfSLEehDOrcY6EI6ao
j+q4vggT/yf+3j4sPluMX1He/PcyURFUn2Pw/7P/xA2hqpsfETncj1uR8XryOIFW
CJtVBGlpDiAHUA0MCPO0oxSpw6pHrhd6oQzrand+
-----END CERTIFICATE-----
Generated at Wed May 1 20:50:08 2024 by rpki-client on console-ams.rpki-client.org