Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer
File: maB2Nu64AHCDMDGWpYxBvsxoj4A.cer (raw, json)
Hash identifier: 9Bthqb7tQ7JZKdnDheWNrg4dDhxO331MVGATxJTR3J4=
Subject key identifier: 99:A0:76:36:EE:B8:00:70:83:30:31:96:A5:8C:41:BE:CC:68:8F:80
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C158
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 02 Oct 2023 01:10:49 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 136917
IP: 103.110.124.0 -- 103.110.126.255
IP: 2401:a840::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115032 (0x1c158)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 2 01:10:49 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91EEC3B/serialNumber=99A07636EEB8007083303196A58C41BECC688F80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5e:76:e5:bd:07:11:e1:3c:d4:ad:ef:6f:9e:
10:93:ee:14:a8:ad:58:29:fa:a0:58:fe:fc:37:d4:
11:f6:25:b3:dd:86:55:e0:e9:23:7c:4e:de:34:5f:
f6:4e:08:bf:7a:65:12:82:3a:05:af:8e:9e:e3:7d:
f4:c0:5d:43:b5:53:aa:2f:0f:ed:08:9a:87:fd:a2:
06:aa:be:bb:2d:c1:0f:5f:ad:14:7d:f6:f6:49:99:
e0:76:fe:dc:ca:dc:29:3d:65:a0:51:75:34:77:46:
e7:d0:cc:db:fb:aa:b4:8c:e6:47:73:74:ef:fc:49:
50:8b:12:12:62:6a:bd:a6:08:c9:db:e9:a6:cf:53:
2e:56:e3:f5:6e:1c:bc:6f:45:3b:23:3f:21:f8:71:
06:18:7d:77:d4:ef:7c:f4:51:29:ab:75:80:bd:9e:
b1:72:e3:5a:f3:41:85:be:ac:98:f1:4f:84:7c:2c:
94:2a:49:e5:4a:c3:79:6b:37:be:54:f8:e4:54:97:
97:3e:88:34:46:09:75:4a:30:b6:a7:5b:2c:73:66:
09:c6:bc:4f:f5:fb:f1:88:f6:42:3b:b1:48:3e:7e:
76:92:45:0c:c5:4e:e0:58:d1:8a:68:97:e9:10:cf:
3b:5e:fd:2f:ef:1e:54:f5:64:21:81:72:1a:41:16:
3e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:A0:76:36:EE:B8:00:70:83:30:31:96:A5:8C:41:BE:CC:68:8F:80
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136917
sbgp-ipAddrBlock: critical
IPv4:
103.110.124.0-103.110.126.255
IPv6:
2401:a840::/32
Signature Algorithm: sha256WithRSAEncryption
80:c6:a4:4d:63:c2:af:dc:2c:96:25:03:4d:52:98:55:59:79:
a0:f5:ca:fc:3e:d6:e2:4b:d2:a4:06:4d:92:50:cb:3c:7d:e8:
6d:fe:5e:e7:0a:9e:a1:ee:cb:05:db:b0:b2:24:72:26:dc:4b:
e7:0f:50:dc:ff:89:23:9c:f5:6d:87:08:fe:d0:a5:0d:7b:ee:
43:f1:a4:98:d8:4a:3f:4d:ab:e1:62:6e:f4:c1:b4:80:11:11:
32:90:d4:dc:ea:ed:f0:63:4e:a7:12:1e:82:bc:4c:bc:25:26:
a8:98:61:e0:28:ac:e2:26:a3:29:eb:54:d0:51:7b:bf:60:12:
ad:48:62:7c:10:68:f4:a9:22:c6:9e:cc:06:69:98:75:2d:df:
c3:9c:52:77:bb:ab:12:98:11:4a:25:4d:97:7c:f5:fe:97:1e:
b3:4a:f0:fe:02:47:49:c4:54:1b:c6:55:0c:33:c5:fa:42:22:
45:5e:03:f7:77:14:8a:cf:3c:ec:85:17:4c:04:c3:4b:6c:8e:
dd:77:3d:2d:3c:c1:b8:e8:7d:7c:8b:9a:a5:f4:d9:3f:d6:0e:
3e:94:c3:f7:29:20:40:20:2a:18:f7:20:b3:9e:8e:86:fd:85:
cc:20:eb:e5:a0:fc:2b:57:07:d8:6e:41:d2:bc:fb:bd:bf:ca:
c2:c0:82:bd
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIDAcFYMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMTAwMjAxMTA0OVoXDTI0MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRUVDM0IxMTAvBgNVBAUTKDk5QTA3NjM2RUVCODAwNzA4MzMwMzE5
NkE1OEM0MUJFQ0M2ODhGODAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC8XnblvQcR4TzUre9vnhCT7hSorVgp+qBY/vw31BH2JbPdhlXg6SN8Tt40X/ZO
CL96ZRKCOgWvjp7jffTAXUO1U6ovD+0Imof9ogaqvrstwQ9frRR99vZJmeB2/tzK
3Ck9ZaBRdTR3RufQzNv7qrSM5kdzdO/8SVCLEhJiar2mCMnb6abPUy5W4/VuHLxv
RTsjPyH4cQYYfXfU73z0USmrdYC9nrFy41rzQYW+rJjxT4R8LJQqSeVKw3lrN75U
+ORUl5c+iDRGCXVKMLanWyxzZgnGvE/1+/GI9kI7sUg+fnaSRQzFTuBY0Ypol+kQ
zzte/S/vHlT1ZCGBchpBFj5xAgMBAAGjggMmMIIDIjAdBgNVHQ4EFgQUmaB2Nu64
AHCDMDGWpYxBvsxoj4AwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUVFQzNCLzZCMzdFMTlDODQxNzExRTc4NUYxNzA4MEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFFRUMzQi82QjM3RTE5Qzg0MTcxMUU3ODVGMTcwODBDNEY5QUUwMi9tYUIyTnU2
NEFIQ0RNREdXcFl4QnZzeG9qNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhbVMDYGCCsGAQUFBwEHAQH/BCcwJTAUBAIAATAOMAwDBAJnbnwDBABn
bn4wDQQCAAIwBwMFACQBqEAwDQYJKoZIhvcNAQELBQADggEBAIDGpE1jwq/cLJYl
A01SmFVZeaD1yvw+1uJL0qQGTZJQyzx96G3+XucKnqHuywXbsLIkcibcS+cPUNz/
iSOc9W2HCP7QpQ177kPxpJjYSj9Nq+FibvTBtIARETKQ1Nzq7fBjTqcSHoK8TLwl
JqiYYeAorOImoynrVNBRe79gEq1IYnwQaPSpIsaezAZpmHUt38OcUne7qxKYEUol
TZd89f6XHrNK8P4CR0nEVBvGVQwzxfpCIkVeA/d3FIrPPOyFF0wEw0tsjt13PS08
wbjofXyLmqX02T/WDj6Uw/cpIEAgKhj3ILOejob9hcwg6+Wg/CtXB9huQdK8+72/
ysLAgr0=
-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:34 2024 by rpki-client on console-fra.rpki-client.org