Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n0mgwprfTYMDB3M9LGCp2TEQogg.cer
File: n0mgwprfTYMDB3M9LGCp2TEQogg.cer (raw, json)
Hash identifier: O4kM+/qRsa2mNCeWtPsz4HwJcu2FXQT/jGRaWHraZWU=
Subject key identifier: 9F:49:A0:C2:9A:DF:4D:83:03:07:73:3D:2C:60:A9:D9:31:10:A2:08
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CB35
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919B393/326CBD58325711EDB88DFC2CC4F9AE02/n0mgwprfTYMDB3M9LGCp2TEQogg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919B393/326CBD58325711EDB88DFC2CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 15 Nov 2023 17:57:08 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 137953
IP: 103.243.244.0/23
IP: 2001:df1:4440::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 30 Apr 2024 17:07:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117557 (0x1cb35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 15 17:57:08 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A919B393/serialNumber=9F49A0C29ADF4D830307733D2C60A9D93110A208
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:34:db:b7:5f:55:92:98:64:ba:53:ba:d3:97:
7d:e0:41:0b:2b:bd:0a:f6:e5:83:38:5f:be:d3:f0:
df:62:f2:3e:8b:b9:36:38:c9:56:f9:e0:ea:eb:27:
93:2d:ef:31:7e:4b:9d:08:e3:8a:db:94:37:a7:65:
2b:f7:04:d4:1b:ad:29:78:f4:0e:a7:2e:84:96:b7:
f4:68:fe:f6:01:10:24:b4:1e:c2:0d:88:d9:15:b5:
cb:53:38:17:18:27:a4:2e:5a:0d:74:49:84:ff:74:
79:f0:0e:48:c7:44:2f:b5:a4:f2:ea:d0:1a:b8:c9:
7a:94:ae:21:43:7f:40:25:62:be:dc:95:94:ff:35:
2e:e8:05:28:74:8d:25:8d:91:41:d8:70:63:8f:d0:
91:f1:71:e7:93:4d:37:f2:78:de:3a:2b:49:59:41:
0d:25:23:39:48:a5:55:3a:46:19:77:6a:92:e7:38:
f1:70:a3:e3:ff:0a:92:ee:cd:8d:9a:b7:c3:4b:f0:
47:27:28:34:ad:f0:f5:b0:35:f8:89:d0:26:7b:87:
a0:cd:3c:77:31:2e:54:6f:06:78:87:bc:c6:84:41:
96:e8:f4:32:4f:1e:d5:67:da:1d:ca:86:8a:4f:1c:
92:20:60:49:c7:56:69:7b:2a:30:ec:1d:25:c8:45:
07:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:49:A0:C2:9A:DF:4D:83:03:07:73:3D:2C:60:A9:D9:31:10:A2:08
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919B393/326CBD58325711EDB88DFC2CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919B393/326CBD58325711EDB88DFC2CC4F9AE02/n0mgwprfTYMDB3M9LGCp2TEQogg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137953
sbgp-ipAddrBlock: critical
IPv4:
103.243.244.0/23
IPv6:
2001:df1:4440::/48
Signature Algorithm: sha256WithRSAEncryption
5c:f5:8b:7d:68:d5:18:6d:d4:2e:8c:65:3b:7c:0e:3b:07:75:
36:37:fc:19:01:74:02:d4:a2:9e:c0:92:0c:40:4d:88:1c:a7:
dc:2a:1e:80:8b:cf:47:26:0e:24:62:d7:04:ea:d4:13:df:62:
83:fa:8d:2c:cc:c6:97:96:79:26:bc:51:a4:d3:82:38:03:6e:
b3:6e:e3:5a:a4:98:d6:b2:67:0b:48:ff:ff:81:f2:10:c8:30:
bf:f1:06:ea:6f:24:16:0b:1d:95:8c:32:02:56:ba:d3:7f:f6:
8d:26:97:81:fa:1c:57:b1:de:61:3f:bd:39:99:cb:fb:21:16:
65:37:43:5c:aa:9f:9f:eb:81:88:0d:fc:69:50:ab:27:b2:1e:
f7:72:52:b3:a2:35:67:2f:c4:e7:59:86:d4:f2:47:9a:71:9b:
c5:34:55:21:45:e1:1b:b2:39:7f:34:99:11:14:37:e1:8b:89:
bf:47:d3:d5:63:6c:99:40:27:9b:5f:94:1c:e9:6d:07:25:f9:
fa:28:e2:9c:35:b5:11:dd:9d:c3:07:1d:ae:70:27:59:29:27:
83:8f:b1:ba:d2:f7:ba:e0:68:24:ec:ae:9e:b3:1b:63:88:ba:
46:d6:23:0f:c3:3f:77:ca:87:08:22:92:a2:22:f6:da:e5:9c:
e4:40:1e:06
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAcs1MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMTExNTE3NTcwOFoXDTI0MTIzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxOUIzOTMxMTAvBgNVBAUTKDlGNDlBMEMyOUFERjREODMwMzA3NzMz
RDJDNjBBOUQ5MzExMEEyMDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCsNNu3X1WSmGS6U7rTl33gQQsrvQr25YM4X77T8N9i8j6LuTY4yVb54OrrJ5Mt
7zF+S50I44rblDenZSv3BNQbrSl49A6nLoSWt/Ro/vYBECS0HsINiNkVtctTOBcY
J6QuWg10SYT/dHnwDkjHRC+1pPLq0Bq4yXqUriFDf0AlYr7clZT/NS7oBSh0jSWN
kUHYcGOP0JHxceeTTTfyeN46K0lZQQ0lIzlIpVU6Rhl3apLnOPFwo+P/CpLuzY2a
t8NL8EcnKDSt8PWwNfiJ0CZ7h6DNPHcxLlRvBniHvMaEQZbo9DJPHtVn2h3KhopP
HJIgYEnHVml7KjDsHSXIRQchAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUn0mgwprf
TYMDB3M9LGCp2TEQoggwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTlCMzkzLzMyNkNCRDU4MzI1NzExRURCODhERkMyQ0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE5QjM5My8zMjZDQkQ1ODMyNTcxMUVEQjg4REZDMkNDNEY5QUUwMi9uMG1nd3By
ZlRZTURCM005TEdDcDJURVFvZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhrhMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ/P0MA8EAgAC
MAkDBwAgAQ3xREAwDQYJKoZIhvcNAQELBQADggEBAFz1i31o1Rht1C6MZTt8DjsH
dTY3/BkBdALUop7AkgxATYgcp9wqHoCLz0cmDiRi1wTq1BPfYoP6jSzMxpeWeSa8
UaTTgjgDbrNu41qkmNayZwtI//+B8hDIML/xBupvJBYLHZWMMgJWutN/9o0ml4H6
HFex3mE/vTmZy/shFmU3Q1yqn5/rgYgN/GlQqyeyHvdyUrOiNWcvxOdZhtTyR5px
m8U0VSFF4RuyOX80mREUN+GLib9H09VjbJlAJ5tflBzpbQcl+foo4pw1tRHdncMH
Ha5wJ1kpJ4OPsbrS97rgaCTsrp6zG2OIukbWIw/DP3fKhwgikqIi9trlnORAHgY=
-----END CERTIFICATE-----
Generated at Tue Apr 23 18:34:33 2024 by rpki-client on console-fra.rpki-client.org