Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1q7WfMXq3zpVUHKWsUvIX_pWTE.cer
File: u1q7WfMXq3zpVUHKWsUvIX_pWTE.cer (raw, json)
Hash identifier: hJ4Es7VoWIzYhGlCi18opAqUDKdAvCL7PH5L+wkrGp8=
Subject key identifier: BB:5A:BB:59:F3:17:AB:7C:E9:55:41:CA:5A:C5:2F:21:7F:E9:59:31
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BEB5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F75E9/E694FC4AFBD711EABFEE5246C4F9AE02/u1q7WfMXq3zpVUHKWsUvIX_pWTE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F75E9/E694FC4AFBD711EABFEE5246C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 20 Sep 2023 21:26:55 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 141189
IP: 103.156.26.0/23
IP: 2001:df4:e480::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114357 (0x1beb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 20 21:26:55 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A91F75E9/serialNumber=BB5ABB59F317AB7CE95541CA5AC52F217FE95931
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:c6:7f:cb:18:03:ba:37:7a:35:0a:1b:bd:0d:
fc:9e:32:2f:1a:92:39:d3:6c:8d:01:04:bb:b6:43:
b3:b7:78:54:32:35:c9:9c:2b:42:e0:3f:6a:dc:a1:
20:88:36:31:e0:61:0c:aa:ab:ac:ff:13:d1:95:d6:
80:8a:96:22:75:25:1d:6d:06:e1:8a:b4:2a:2c:51:
58:0d:6e:ea:62:de:9d:c3:17:72:a8:21:dd:ff:79:
e1:4c:03:5b:2a:f7:91:99:8f:4c:d9:64:b8:87:8f:
a2:20:e5:80:58:05:0c:3e:06:1a:23:5e:af:fb:0a:
3c:a2:7d:4b:9b:38:05:6e:f5:85:a1:1a:a5:c0:b9:
f8:e1:14:c1:be:a0:17:5c:37:07:79:5d:2c:d2:c5:
f8:4c:58:fc:2b:3c:de:6c:0d:d2:59:f8:d9:4e:aa:
b0:81:b8:12:20:9c:d6:50:d2:67:a4:86:49:0a:75:
23:02:f9:81:27:0b:33:3d:b8:f6:cb:9a:e0:03:7d:
60:99:24:81:9d:fe:20:52:28:19:a5:b4:dd:fa:44:
24:f4:30:9a:53:94:cb:d1:60:3f:84:b2:60:de:c6:
84:e3:47:0c:59:93:9b:d1:b3:72:ed:02:b5:db:ea:
91:ae:3d:8a:fc:9a:f2:b5:68:98:60:7b:3a:19:68:
87:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:5A:BB:59:F3:17:AB:7C:E9:55:41:CA:5A:C5:2F:21:7F:E9:59:31
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F75E9/E694FC4AFBD711EABFEE5246C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F75E9/E694FC4AFBD711EABFEE5246C4F9AE02/u1q7WfMXq3zpVUHKWsUvIX_pWTE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141189
sbgp-ipAddrBlock: critical
IPv4:
103.156.26.0/23
IPv6:
2001:df4:e480::/48
Signature Algorithm: sha256WithRSAEncryption
da:6d:4c:bb:00:ba:c1:5f:7c:9b:d9:c4:26:86:1f:a4:bb:ea:
7b:0a:22:0d:49:08:cd:10:34:64:a7:7a:2e:9b:c7:7e:0a:b0:
2b:78:3a:ed:20:58:13:b8:8d:c4:e1:da:11:54:35:1b:66:30:
23:ab:b4:bd:f8:59:22:91:5c:20:32:f1:f2:15:7d:66:69:d8:
ca:18:f7:fa:51:24:e3:fd:9b:45:8a:11:d3:89:b9:ea:d0:b0:
1d:e3:21:6e:8f:5d:dd:4e:c6:7b:4e:11:53:e7:30:9d:69:35:
e7:97:dc:bf:0b:62:99:2e:16:6d:b8:13:7e:f3:50:c3:70:0c:
55:50:0c:c7:89:4b:af:a5:bc:40:4b:a4:2d:fe:73:e8:af:d0:
10:75:b4:32:b8:a1:0f:a2:1a:de:13:b7:86:2d:3c:45:53:e6:
9d:7c:0c:ac:b4:ac:fc:69:2b:a1:ee:61:ba:8c:3d:f5:28:d2:
a7:ef:fb:cd:96:fd:22:25:24:58:d8:3a:d0:aa:27:a1:97:8c:
77:10:57:40:c1:bf:6a:71:1c:d6:6e:8e:5b:e2:95:13:6b:25:
3c:2a:4d:3c:d2:9e:d8:db:a3:10:32:aa:51:80:aa:2a:89:37:
85:0f:c7:e5:6c:89:d5:55:83:13:ef:d4:93:d6:a1:fa:a0:b8:
e0:80:2a:46
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAb61MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDkyMDIxMjY1NVoXDTI0MTIzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRjc1RTkxMTAvBgNVBAUTKEJCNUFCQjU5RjMxN0FCN0NFOTU1NDFD
QTVBQzUyRjIxN0ZFOTU5MzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDfxn/LGAO6N3o1Chu9DfyeMi8akjnTbI0BBLu2Q7O3eFQyNcmcK0LgP2rcoSCI
NjHgYQyqq6z/E9GV1oCKliJ1JR1tBuGKtCosUVgNbupi3p3DF3KoId3/eeFMA1sq
95GZj0zZZLiHj6Ig5YBYBQw+BhojXq/7CjyifUubOAVu9YWhGqXAufjhFMG+oBdc
Nwd5XSzSxfhMWPwrPN5sDdJZ+NlOqrCBuBIgnNZQ0mekhkkKdSMC+YEnCzM9uPbL
muADfWCZJIGd/iBSKBmltN36RCT0MJpTlMvRYD+EsmDexoTjRwxZk5vRs3LtArXb
6pGuPYr8mvK1aJhgezoZaIerAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUu1q7WfMX
q3zpVUHKWsUvIX/pWTEwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUY3NUU5L0U2OTRGQzRBRkJENzExRUFCRkVFNTI0NkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFGNzVFOS9FNjk0RkM0QUZCRDcxMUVBQkZFRTUyNDZDNEY5QUUwMi91MXE3V2ZN
WHEzenBWVUhLV3NVdklYX3BXVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAieFMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ5waMA8EAgAC
MAkDBwAgAQ305IAwDQYJKoZIhvcNAQELBQADggEBANptTLsAusFffJvZxCaGH6S7
6nsKIg1JCM0QNGSnei6bx34KsCt4Ou0gWBO4jcTh2hFUNRtmMCOrtL34WSKRXCAy
8fIVfWZp2MoY9/pRJOP9m0WKEdOJuerQsB3jIW6PXd1OxntOEVPnMJ1pNeeX3L8L
YpkuFm24E37zUMNwDFVQDMeJS6+lvEBLpC3+c+iv0BB1tDK4oQ+iGt4Tt4YtPEVT
5p18DKy0rPxpK6HuYbqMPfUo0qfv+82W/SIlJFjYOtCqJ6GXjHcQV0DBv2pxHNZu
jlvilRNrJTwqTTzSntjboxAyqlGAqiqJN4UPx+VsidVVgxPv1JPWofqguOCAKkY=
-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:38 2024 by rpki-client on console-fra.rpki-client.org