Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer
File: tw3qbHe56OzOWDkTKBnvkTc_xSc.cer (raw, json)
Hash identifier: iLsbzNvISGPw/B2ihntHlxt22e7ISK2Amts6zXML+SQ=
Subject key identifier: B7:0D:EA:6C:77:B9:E8:EC:CE:58:39:13:28:19:EF:91:37:3F:C5:27
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F0C9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 09 May 2024 09:04:48 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 131268
IP: 103.35.92.0/22
IP: 202.4.188.0/24
IP: 2001:df3:6f00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 14 Sep 2024 20:15:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127177 (0x1f0c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 9 09:04:48 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A914E2B2/serialNumber=B70DEA6C77B9E8ECCE5839132819EF91373FC527
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:74:c3:53:61:92:4e:7f:2a:52:76:10:c6:3a:
9c:78:e8:96:2b:e7:45:99:94:98:4e:2d:cf:1d:02:
d6:92:46:45:5d:28:b7:7e:bc:b6:73:b8:71:a0:6a:
54:86:46:d9:4f:e7:6f:2c:00:3e:6d:e8:e0:69:1c:
22:e9:2a:a9:6d:82:36:40:b6:9d:66:ff:dd:28:4e:
b4:52:3e:fb:49:de:6d:b9:3b:0d:80:7b:3e:55:bc:
76:3f:73:a8:2a:92:45:7e:bf:45:4c:95:48:c8:d9:
0b:de:4f:57:73:1c:10:ef:0e:54:03:d8:47:db:ce:
02:85:4f:0d:1b:fc:bf:0f:18:e9:31:cb:35:de:74:
45:7a:17:f4:f9:15:48:b0:0f:74:f3:3a:cd:9a:e7:
8e:9c:67:d6:1b:11:a8:21:5b:8f:81:f3:4d:e0:da:
40:49:61:7a:9c:1d:9e:1b:09:5d:38:21:7e:24:e2:
7f:24:b3:b3:19:1a:bd:e1:eb:65:5f:bc:75:0a:57:
31:ea:27:f8:1c:a0:85:c6:79:d3:63:76:83:aa:ca:
ec:a7:de:53:f0:eb:61:e2:9c:f2:62:e0:9e:c4:58:
40:dd:64:db:c0:b6:94:9a:b0:08:a3:22:4b:8f:40:
c7:e6:b3:4d:3b:85:5b:95:44:8a:ea:c7:50:91:61:
56:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:0D:EA:6C:77:B9:E8:EC:CE:58:39:13:28:19:EF:91:37:3F:C5:27
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
131268
sbgp-ipAddrBlock: critical
IPv4:
103.35.92.0/22
202.4.188.0/24
IPv6:
2001:df3:6f00::/48
Signature Algorithm: sha256WithRSAEncryption
48:9e:65:6b:e3:59:b0:a4:8b:61:66:7d:a9:98:9b:91:76:a3:
af:62:0e:6d:ae:be:46:ba:61:b8:b6:76:1c:34:e1:de:18:26:
e8:16:91:9a:23:d4:30:cd:fe:fa:68:d0:e4:71:53:9b:8c:47:
4d:e5:76:c0:72:66:fd:cd:3a:e4:95:33:f0:33:62:a8:36:3e:
39:47:ab:8e:db:1d:9a:e9:fd:e4:14:32:ad:61:07:b8:43:dd:
b9:2c:d7:8d:1e:f4:6c:5a:fc:22:7c:6c:58:93:b0:52:89:8b:
3c:ec:f6:8a:c5:56:3c:af:51:fd:3e:38:aa:31:0c:7b:19:ba:
ee:2c:9a:6f:f8:6e:72:7d:85:4e:5e:14:bc:bb:4d:b4:9f:78:
f7:c4:7a:6d:e5:77:81:3a:83:21:8e:a9:b0:9c:9d:f0:b0:c4:
6e:b8:bb:3d:ee:f6:df:87:4f:90:a8:79:52:1d:95:50:2f:23:
db:37:36:07:a9:0b:8c:37:c8:a9:64:61:f9:9b:0a:e1:6f:e5:
64:f9:bb:04:3b:6e:18:ee:8a:6e:47:25:6e:46:fc:77:9f:5e:
25:05:ad:18:c2:0b:50:94:9f:54:7e:e7:b2:ab:33:38:c6:77:
fd:a6:53:d5:69:c8:a9:dd:c7:a1:20:47:b6:8c:65:50:25:5f:
d9:ad:6c:1c
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIDAfDJMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDUwOTA5MDQ0OFoXDTI1MDMwMjAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNEUyQjIxMTAvBgNVBAUTKEI3MERFQTZDNzdCOUU4RUNDRTU4Mzkx
MzI4MTlFRjkxMzczRkM1MjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC9dMNTYZJOfypSdhDGOpx46JYr50WZlJhOLc8dAtaSRkVdKLd+vLZzuHGgalSG
RtlP528sAD5t6OBpHCLpKqltgjZAtp1m/90oTrRSPvtJ3m25Ow2Aez5VvHY/c6gq
kkV+v0VMlUjI2QveT1dzHBDvDlQD2EfbzgKFTw0b/L8PGOkxyzXedEV6F/T5FUiw
D3TzOs2a546cZ9YbEaghW4+B803g2kBJYXqcHZ4bCV04IX4k4n8ks7MZGr3h62Vf
vHUKVzHqJ/gcoIXGedNjdoOqyuyn3lPw62HinPJi4J7EWEDdZNvAtpSasAijIkuP
QMfms007hVuVRIrqx1CRYVarAgMBAAGjggMmMIIDIjAdBgNVHQ4EFgQUtw3qbHe5
6OzOWDkTKBnvkTc/xScwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTRFMkIyLzJCNDZFQTU4MERFMzExRUY4MDNGNkYwRUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE0RTJCMi8yQjQ2RUE1ODBERTMxMUVGODAzRjZGMEVDNEY5QUUwMi90dzNxYkhl
NTZPek9XRGtUS0JudmtUY194U2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAgDEMDYGCCsGAQUFBwEHAQH/BCcwJTASBAIAATAMAwQCZyNcAwQAygS8
MA8EAgACMAkDBwAgAQ3zbwAwDQYJKoZIhvcNAQELBQADggEBAEieZWvjWbCki2Fm
famYm5F2o69iDm2uvka6Ybi2dhw04d4YJugWkZoj1DDN/vpo0ORxU5uMR03ldsBy
Zv3NOuSVM/AzYqg2PjlHq47bHZrp/eQUMq1hB7hD3bks140e9Gxa/CJ8bFiTsFKJ
izzs9orFVjyvUf0+OKoxDHsZuu4smm/4bnJ9hU5eFLy7TbSfePfEem3ld4E6gyGO
qbCcnfCwxG64uz3u9t+HT5CoeVIdlVAvI9s3NgepC4w3yKlkYfmbCuFv5WT5uwQ7
bhjuim5HJW5G/HefXiUFrRjCC1CUn1R+57KrMzjGd/2mU9VpyKndx6EgR7aMZVAl
X9mtbBw=
-----END CERTIFICATE-----
Generated at Sat Sep 7 22:13:04 2024 by rpki-client on console-fra.rpki-client.org