Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer
File: pSvwKHcZGUlxLT2tKdSreid57EM.cer (raw, json)
Hash identifier: OeJPixxOdOgBPOy55Of0t//sKIgf6pD99YLM7y+7NR8=
Subject key identifier: A5:2B:F0:28:77:19:19:49:71:2D:3D:AD:29:D4:AB:7A:27:79:EC:43
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FEE7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 09 Jul 2024 03:06:14 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 137209
AS: 153159
IP: 103.104.232.0/22
IP: 2402:1dc0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 24 Oct 2024 20:54:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130791 (0x1fee7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 9 03:06:14 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91AA618/serialNumber=A52BF02877191949712D3DAD29D4AB7A2779EC43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:83:1d:48:e9:c9:b8:44:fd:8b:a4:28:ac:a1:
ad:a4:cb:88:a6:9b:8a:80:9d:e7:bc:b4:7e:96:16:
f1:b3:14:8b:df:d9:e3:e1:97:05:b5:45:cf:54:2a:
da:c1:12:28:c8:8a:31:75:af:8b:c5:23:b5:6d:9f:
9d:32:5f:ff:26:55:b6:ce:6b:42:8a:30:0d:30:9f:
8e:06:0e:bd:f5:01:3c:15:04:22:c0:46:9c:8d:ac:
8e:ab:05:83:61:bc:1c:eb:c8:04:50:a9:8b:83:98:
88:a1:12:07:98:45:1c:06:e6:c5:3d:2c:0c:6c:8d:
74:f3:bb:36:c2:5d:e4:51:4f:02:ba:33:a7:00:81:
e5:81:34:44:94:50:14:a5:cc:b4:e2:21:17:af:7d:
00:ca:7a:3d:3e:ee:24:7a:6f:34:c6:9a:ca:98:ad:
13:95:f7:5b:65:10:61:81:41:5b:be:6a:57:37:43:
87:34:59:5c:2a:33:6c:3c:14:c1:cf:3e:ec:f5:58:
a9:8e:5c:11:5a:7b:c8:67:8e:58:c7:b9:27:c9:2e:
0f:a5:f8:2c:07:82:7c:b7:68:89:73:8d:b1:43:30:
91:d3:08:f2:ee:ca:de:98:4e:ec:98:2f:6d:e5:ee:
e6:81:8a:20:bc:a0:81:2d:c3:6e:8d:57:89:b8:19:
0c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:2B:F0:28:77:19:19:49:71:2D:3D:AD:29:D4:AB:7A:27:79:EC:43
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137209
153159
sbgp-ipAddrBlock: critical
IPv4:
103.104.232.0/22
IPv6:
2402:1dc0::/32
Signature Algorithm: sha256WithRSAEncryption
0f:8d:c6:e2:ab:86:6e:9f:67:78:9f:28:39:79:33:de:46:39:
74:d4:66:bc:67:77:2d:71:1f:ca:3f:09:ff:fb:5d:7b:e0:5d:
bb:72:39:49:59:ca:1b:ba:2d:05:ee:cd:df:1e:98:34:3e:a0:
dc:62:e5:19:8d:0b:1b:0f:fb:9a:9c:3d:84:fe:ee:9e:d2:98:
eb:6d:3e:1d:3a:99:da:9d:4e:db:d5:fd:ef:0c:a9:1c:81:ef:
87:a7:51:de:b2:5a:16:88:07:41:8c:db:f9:d0:69:ea:01:44:
de:3a:a9:f8:01:82:cb:6a:8b:af:36:4d:c3:cc:f2:f1:8b:3f:
74:8f:71:6e:ce:d4:c0:7d:cd:71:4c:6c:c4:be:1e:c9:a8:f1:
36:71:83:ce:a5:5e:6a:ec:f4:ac:fc:7d:fe:b2:50:f5:73:e1:
7c:f3:23:57:6a:c2:aa:8a:9f:7d:1b:2d:66:f6:72:ed:c1:c1:
c2:96:c6:b2:9c:08:87:e0:2e:dd:7b:df:8c:5d:fe:6f:80:86:
b8:89:69:03:5c:74:54:8e:9d:dc:ce:52:c2:1b:bf:e5:5d:70:
c9:b0:02:48:f5:89:71:03:95:d1:d0:ea:4d:93:98:20:03:0e:
7d:0a:22:04:e6:83:c5:cc:9a:fe:31:d3:3f:66:cc:8f:39:93:
30:f4:b1:e1
-----BEGIN CERTIFICATE-----
MIIGLjCCBRagAwIBAgIDAf7nMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDcwOTAzMDYxNFoXDTI1MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQUE2MTgxMTAvBgNVBAUTKEE1MkJGMDI4NzcxOTE5NDk3MTJEM0RB
RDI5RDRBQjdBMjc3OUVDNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC8gx1I6cm4RP2LpCisoa2ky4imm4qAnee8tH6WFvGzFIvf2ePhlwW1Rc9UKtrB
EijIijF1r4vFI7Vtn50yX/8mVbbOa0KKMA0wn44GDr31ATwVBCLARpyNrI6rBYNh
vBzryARQqYuDmIihEgeYRRwG5sU9LAxsjXTzuzbCXeRRTwK6M6cAgeWBNESUUBSl
zLTiIRevfQDKej0+7iR6bzTGmsqYrROV91tlEGGBQVu+alc3Q4c0WVwqM2w8FMHP
Puz1WKmOXBFae8hnjljHuSfJLg+l+CwHgny3aIlzjbFDMJHTCPLuyt6YTuyYL23l
7uaBiiC8oIEtw26NV4m4GQwnAgMBAAGjggMjMIIDHzAdBgNVHQ4EFgQUpSvwKHcZ
GUlxLT2tKdSreid57EMwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUFBNjE4LzU1N0VBQjNDM0FCRTExRUY4NjE5RDIyMEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFBQTYxOC81NTdFQUIzQzNBQkUxMUVGODYxOUQyMjBDNEY5QUUwMi9wU3Z3S0hj
WkdVbHhMVDJ0S2RTcmVpZDU3RU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQgBAf8EEDAO
oAwwCgIDAhf5AgMCVkcwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAJnaOgw
DQQCAAIwBwMFACQCHcAwDQYJKoZIhvcNAQELBQADggEBAA+NxuKrhm6fZ3ifKDl5
M95GOXTUZrxndy1xH8o/Cf/7XXvgXbtyOUlZyhu6LQXuzd8emDQ+oNxi5RmNCxsP
+5qcPYT+7p7SmOttPh06mdqdTtvV/e8MqRyB74enUd6yWhaIB0GM2/nQaeoBRN46
qfgBgstqi682TcPM8vGLP3SPcW7O1MB9zXFMbMS+Hsmo8TZxg86lXmrs9Kz8ff6y
UPVz4XzzI1dqwqqKn30bLWb2cu3BwcKWxrKcCIfgLt1734xd/m+AhriJaQNcdFSO
ndzOUsIbv+VdcMmwAkj1iXEDldHQ6k2TmCADDn0KIgTmg8XMmv4x0z9mzI85kzD0
seE=
-----END CERTIFICATE-----
Generated at Thu Oct 17 23:10:22 2024 by rpki-client on console-fra.rpki-client.org