Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9c6Tp8QQ946v09e0Qhor20zW_Q.cer
File: o9c6Tp8QQ946v09e0Qhor20zW_Q.cer (raw, json)
Hash identifier: 1YgsVkS3k8IHxA1EVbM+yhxRj+PwCsjlYNxDeA1F08U=
Subject key identifier: A3:D7:3A:4E:9F:10:43:DE:3A:BF:4F:5E:D1:08:68:AF:6D:33:5B:F4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C75C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 31 Oct 2023 16:47:43 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 135334
IP: 103.172.214.0/23
IP: 2001:df7:7880::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 03:19:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116572 (0x1c75c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 31 16:47:43 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A914A4A1/serialNumber=A3D73A4E9F1043DE3ABF4F5ED10868AF6D335BF4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f3:7e:52:f7:a6:24:78:dd:46:52:f3:e5:af:
ca:22:74:0b:a6:41:63:dd:23:93:c3:9b:38:97:97:
0b:bc:69:96:dc:c2:f0:42:0a:2a:0c:8f:65:a6:e3:
e2:83:d2:52:13:91:1d:e7:04:2b:a0:9f:24:63:89:
d8:99:10:c3:21:b2:46:11:d7:f1:fb:ae:33:21:0d:
28:cf:78:55:0d:63:fc:b0:ca:43:40:97:38:a7:29:
1f:f1:54:3d:b2:87:01:ac:5d:37:42:5b:58:d7:9f:
82:f8:86:ef:37:95:c5:21:75:79:04:59:66:88:35:
d0:4e:77:34:6c:cd:33:d0:67:d2:00:f6:1c:e5:6b:
64:c2:1c:3d:33:b3:da:b0:35:53:5b:01:bf:7f:d3:
5f:fe:7b:5d:c9:68:62:4c:2d:79:1d:0c:56:c9:cd:
b8:09:26:f3:6b:fb:a7:2b:b4:ff:d8:93:c9:3e:d6:
e2:d5:5b:df:14:db:cc:58:8a:5e:ae:d2:70:7f:fa:
81:5b:39:44:39:d6:11:b2:9f:b0:2c:43:e3:02:76:
02:89:bc:b1:78:c6:4b:51:96:56:24:31:a4:e8:a7:
37:74:d8:84:1b:38:8a:86:6c:74:55:ad:51:20:38:
f4:85:e0:92:42:f0:41:f3:17:6c:65:8c:f2:ba:c9:
16:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:D7:3A:4E:9F:10:43:DE:3A:BF:4F:5E:D1:08:68:AF:6D:33:5B:F4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135334
sbgp-ipAddrBlock: critical
IPv4:
103.172.214.0/23
IPv6:
2001:df7:7880::/48
Signature Algorithm: sha256WithRSAEncryption
98:b1:64:5b:65:6c:00:f7:ad:8c:25:4f:1c:22:14:d6:a4:c6:
6e:4d:5b:62:c6:4a:f0:5a:5d:fc:df:bd:6a:7a:d0:cd:9f:c0:
d1:8b:32:1e:68:2b:bb:8f:c8:73:26:12:e6:48:50:b7:d0:b1:
ef:29:b7:33:74:63:c5:a9:7e:94:0a:e3:c3:a6:40:c1:c1:33:
5b:c5:84:78:e8:15:63:2b:ee:fe:ed:57:e4:2d:af:34:b4:06:
94:82:34:16:ec:d5:ad:94:33:e6:c8:c0:09:9a:8d:fe:4b:b1:
ed:fc:61:a3:fb:ed:69:76:d7:29:93:5f:4f:82:ce:dd:79:46:
de:2a:79:38:92:59:95:24:1b:12:41:5c:20:50:7b:9c:00:f2:
69:74:49:ff:43:22:d3:c5:f7:5e:90:a4:3b:f3:a9:b0:d6:e3:
c2:6a:0b:af:e0:5b:ee:62:c4:ae:79:b4:5e:06:a1:f8:d7:20:
81:da:19:0e:7b:d6:6e:54:ee:6e:48:2b:fa:75:e8:28:a2:18:
fd:96:34:a3:0c:48:09:2d:f3:c4:72:d5:32:ae:f1:8d:81:ec:
bc:ef:a6:bd:ff:a7:c2:f8:ed:90:63:82:7b:fe:38:0e:dd:56:
86:21:47:92:1b:75:a5:97:8e:50:00:fb:b0:78:2a:60:5b:9e:
09:42:1c:1f
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAcdcMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMTAzMTE2NDc0M1oXDTI0MTIzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNEE0QTExMTAvBgNVBAUTKEEzRDczQTRFOUYxMDQzREUzQUJGNEY1
RUQxMDg2OEFGNkQzMzVCRjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDO835S96YkeN1GUvPlr8oidAumQWPdI5PDmziXlwu8aZbcwvBCCioMj2Wm4+KD
0lITkR3nBCugnyRjidiZEMMhskYR1/H7rjMhDSjPeFUNY/ywykNAlzinKR/xVD2y
hwGsXTdCW1jXn4L4hu83lcUhdXkEWWaINdBOdzRszTPQZ9IA9hzla2TCHD0zs9qw
NVNbAb9/01/+e13JaGJMLXkdDFbJzbgJJvNr+6crtP/Yk8k+1uLVW98U28xYil6u
0nB/+oFbOUQ51hGyn7AsQ+MCdgKJvLF4xktRllYkMaTopzd02IQbOIqGbHRVrVEg
OPSF4JJC8EHzF2xljPK6yRZZAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUo9c6Tp8Q
Q946v09e0Qhor20zW/QwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTRBNEExLzY4Q0VDMDk0OTU1OTExRUM4NDcyODczNkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE0QTRBMS82OENFQzA5NDk1NTkxMUVDODQ3Mjg3MzZDNEY5QUUwMi9vOWM2VHA4
UVE5NDZ2MDllMFFob3IyMHpXX1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhCmMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ6zWMA8EAgAC
MAkDBwAgAQ33eIAwDQYJKoZIhvcNAQELBQADggEBAJixZFtlbAD3rYwlTxwiFNak
xm5NW2LGSvBaXfzfvWp60M2fwNGLMh5oK7uPyHMmEuZIULfQse8ptzN0Y8WpfpQK
48OmQMHBM1vFhHjoFWMr7v7tV+QtrzS0BpSCNBbs1a2UM+bIwAmajf5Lse38YaP7
7Wl21ymTX0+Czt15Rt4qeTiSWZUkGxJBXCBQe5wA8ml0Sf9DItPF916QpDvzqbDW
48JqC6/gW+5ixK55tF4GofjXIIHaGQ571m5U7m5IK/p16CiiGP2WNKMMSAkt88Ry
1TKu8Y2B7Lzvpr3/p8L47ZBjgnv+OA7dVoYhR5IbdaWXjlAA+7B4KmBbnglCHB8=
-----END CERTIFICATE-----
Generated at Fri Apr 19 03:48:40 2024 by rpki-client on console-fra.rpki-client.org