Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mYWbHvAhS7n86OW_FSbzvRHsKAc.cer
File: mYWbHvAhS7n86OW_FSbzvRHsKAc.cer (raw, json)
Hash identifier: liKP+qSfQE7vTletewZPcHztnNDNT2V8sZPQEP3kriY=
Subject key identifier: 99:85:9B:1E:F0:21:4B:B9:FC:E8:E5:BF:15:26:F3:BD:11:EC:28:07
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B294
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BF026/0328A85CDDE011E7B2810757C4F9AE02/mYWbHvAhS7n86OW_FSbzvRHsKAc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BF026/0328A85CDDE011E7B2810757C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 27 Jul 2023 20:25:08 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 134116
IP: 45.114.88.0/22
IP: 103.54.40.0/22
IP: 2402:3280::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 06:07:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111252 (0x1b294)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 27 20:25:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=A91BF026/serialNumber=99859B1EF0214BB9FCE8E5BF1526F3BD11EC2807
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:c3:84:b4:b8:35:9f:de:71:40:1e:ee:c1:11:
1a:7f:5f:1f:39:ac:e3:e7:d9:47:71:46:61:50:92:
1c:ac:b1:a2:2c:57:42:ee:46:8e:1c:67:aa:14:19:
41:fe:93:fc:9d:7a:06:5f:0c:28:4a:dd:fb:35:49:
04:44:ef:5f:72:39:f5:bf:2c:13:4d:0f:60:07:a7:
b5:7f:b1:0a:bf:ad:49:64:ed:07:82:de:84:ef:4d:
a8:8d:6a:fb:9e:dc:e8:4e:2f:f9:3a:f7:8d:f3:10:
63:94:25:01:0d:ad:2f:54:19:87:e6:bb:3e:02:ac:
b8:40:40:76:cb:61:ed:b9:1b:69:6e:9a:d6:5f:48:
92:33:35:17:f5:9a:a5:c2:c3:9d:8a:17:b5:28:bf:
3f:d7:8d:42:28:00:c4:3b:a2:3b:63:83:58:38:a0:
17:56:fd:59:0f:ab:66:39:c3:19:a0:55:6a:4a:5d:
17:fd:42:23:a5:16:17:56:8d:8c:6d:55:2b:15:a7:
d0:11:18:c2:e6:6e:62:5a:44:bf:99:84:e3:7d:b2:
48:e0:31:86:1d:9f:ea:9c:75:bc:1e:d6:ed:ac:9b:
25:90:43:a6:c2:fe:31:b3:89:69:c0:aa:25:ed:84:
77:e2:cb:11:64:d6:41:4b:ce:6b:26:bc:44:89:26:
ac:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:85:9B:1E:F0:21:4B:B9:FC:E8:E5:BF:15:26:F3:BD:11:EC:28:07
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BF026/0328A85CDDE011E7B2810757C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BF026/0328A85CDDE011E7B2810757C4F9AE02/mYWbHvAhS7n86OW_FSbzvRHsKAc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134116
sbgp-ipAddrBlock: critical
IPv4:
45.114.88.0/22
103.54.40.0/22
IPv6:
2402:3280::/32
Signature Algorithm: sha256WithRSAEncryption
a5:3b:50:94:a1:71:6e:3d:f0:ca:6f:6a:d6:eb:55:38:e6:d6:
21:21:ee:c2:b3:c0:cb:2a:5e:6f:ca:92:ce:f1:ed:44:28:19:
53:c5:00:e7:3d:6e:f6:9a:7e:8c:a6:18:7e:88:ba:75:91:36:
49:14:17:3c:d9:10:ef:7f:ba:18:56:cb:56:75:9c:c3:52:61:
d7:66:64:ea:3b:47:12:e0:59:59:dc:7e:03:49:a3:f2:ee:11:
22:e8:be:95:93:52:59:7f:bf:98:8f:8a:98:62:5f:31:4a:ec:
09:9a:37:d9:83:de:ef:59:a5:a0:d4:b0:4d:c1:cd:02:97:6d:
3c:66:c6:30:96:48:4d:71:e4:64:3e:bd:1d:7a:3c:73:86:27:
a3:75:eb:2e:52:7d:0e:ac:3a:f4:3c:96:a8:bf:80:12:d0:b3:
63:04:87:21:5c:1c:d9:6e:29:99:f1:f9:02:75:c9:ea:e1:93:
89:de:f0:2c:b9:c4:db:d0:d5:80:97:5b:b8:63:84:ff:b7:9c:
c6:86:7c:7c:ab:b2:1b:55:9b:f4:06:86:0e:c4:69:71:5c:9b:
b9:98:99:ca:94:8a:04:bc:34:68:02:8d:8a:85:5f:ab:b8:b2:
bb:51:57:d9:18:c0:d1:5f:4e:7b:1f:a8:b3:16:40:9e:e9:2c:
60:cd:a1:b2
-----BEGIN CERTIFICATE-----
MIIGLzCCBRegAwIBAgIDAbKUMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDcyNzIwMjUwOFoXDTI0MDcwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQkYwMjYxMTAvBgNVBAUTKDk5ODU5QjFFRjAyMTRCQjlGQ0U4RTVC
RjE1MjZGM0JEMTFFQzI4MDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDew4S0uDWf3nFAHu7BERp/Xx85rOPn2UdxRmFQkhyssaIsV0LuRo4cZ6oUGUH+
k/ydegZfDChK3fs1SQRE719yOfW/LBNND2AHp7V/sQq/rUlk7QeC3oTvTaiNavue
3OhOL/k6943zEGOUJQENrS9UGYfmuz4CrLhAQHbLYe25G2lumtZfSJIzNRf1mqXC
w52KF7Uovz/XjUIoAMQ7ojtjg1g4oBdW/VkPq2Y5wxmgVWpKXRf9QiOlFhdWjYxt
VSsVp9ARGMLmbmJaRL+ZhON9skjgMYYdn+qcdbwe1u2smyWQQ6bC/jGziWnAqiXt
hHfiyxFk1kFLzmsmvESJJqztAgMBAAGjggMkMIIDIDAdBgNVHQ4EFgQUmYWbHvAh
S7n86OW/FSbzvRHsKAcwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUJGMDI2LzAzMjhBODVDRERFMDExRTdCMjgxMDc1N0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFCRjAyNi8wMzI4QTg1Q0RERTAxMUU3QjI4MTA3NTdDNEY5QUUwMi9tWVdiSHZB
aFM3bjg2T1dfRlNienZSSHNLQWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAgvkMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCLXJYAwQCZzYo
MA0EAgACMAcDBQAkAjKAMA0GCSqGSIb3DQEBCwUAA4IBAQClO1CUoXFuPfDKb2rW
61U45tYhIe7Cs8DLKl5vypLO8e1EKBlTxQDnPW72mn6Mphh+iLp1kTZJFBc82RDv
f7oYVstWdZzDUmHXZmTqO0cS4FlZ3H4DSaPy7hEi6L6Vk1JZf7+Yj4qYYl8xSuwJ
mjfZg97vWaWg1LBNwc0Cl208ZsYwlkhNceRkPr0dejxzhiejdesuUn0OrDr0PJao
v4AS0LNjBIchXBzZbimZ8fkCdcnq4ZOJ3vAsucTb0NWAl1u4Y4T/t5zGhnx8q7Ib
VZv0BoYOxGlxXJu5mJnKlIoEvDRoAo2KhV+ruLK7UVfZGMDRX057H6izFkCe6Sxg
zaGy
-----END CERTIFICATE-----
Generated at Thu Apr 25 06:38:56 2024 by rpki-client on console-fra.rpki-client.org