Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vAKwBcyqBFP8m4F7t4y6kV8nwqg.cer
File: vAKwBcyqBFP8m4F7t4y6kV8nwqg.cer (raw, json)
Hash identifier: H3YHxvO+L7dM+/uDD0ey8zY4Xvuv545m/bsjopuk8OQ=
Subject key identifier: BC:02:B0:05:CC:AA:04:53:FC:9B:81:7B:B7:8C:BA:91:5F:27:C2:A8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DB23
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B36DC/B043647A19F911EBB8CDED4FC4F9AE02/vAKwBcyqBFP8m4F7t4y6kV8nwqg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B36DC/B043647A19F911EBB8CDED4FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 29 Jan 2024 21:19:03 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 141377
IP: 103.157.248.0/23
IP: 2406:a9c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121635 (0x1db23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 29 21:19:03 2024 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91B36DC/serialNumber=BC02B005CCAA0453FC9B817BB78CBA915F27C2A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:7a:19:d8:95:d7:7d:4d:05:d1:93:30:33:d8:
2e:e9:f2:cd:e0:5d:ba:49:1a:82:83:2a:9c:e0:00:
5c:4e:e5:a7:82:8a:d4:37:e5:19:cd:e6:17:dd:3f:
fd:6d:f3:78:10:9f:a5:40:2c:dd:5d:76:d8:fb:99:
55:76:50:75:35:e5:df:2c:d3:dd:a7:de:58:9e:68:
70:72:70:ce:e0:ad:d4:b9:55:39:57:88:b4:94:5c:
4b:00:e9:d0:1d:db:a0:3f:4d:32:6b:62:25:58:3c:
e0:e3:a5:79:7f:76:68:c9:ce:db:89:0d:a7:a4:77:
ab:88:1d:44:8a:c5:c8:21:ec:4c:35:e9:95:34:c9:
f0:d4:49:f1:1f:f4:8f:51:b5:56:60:83:8f:a3:4b:
bd:24:6e:a9:e3:54:44:b1:60:35:14:58:5e:a4:c3:
c7:b9:3a:df:44:a6:ff:a9:fc:d9:83:42:6a:7b:b2:
bd:24:0c:6a:7a:c1:7e:dc:b9:d8:68:c6:35:91:cc:
3f:8f:72:5f:ac:8b:ef:31:26:59:e0:86:d6:1e:5a:
5b:b1:2e:0b:49:31:68:e9:3f:62:b0:5f:ed:39:41:
ff:a6:34:ff:33:a3:cf:29:4f:e2:8d:7e:02:6b:48:
dc:7d:b0:83:dc:88:11:50:42:4c:ca:76:31:54:a4:
eb:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:02:B0:05:CC:AA:04:53:FC:9B:81:7B:B7:8C:BA:91:5F:27:C2:A8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B36DC/B043647A19F911EBB8CDED4FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B36DC/B043647A19F911EBB8CDED4FC4F9AE02/vAKwBcyqBFP8m4F7t4y6kV8nwqg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141377
sbgp-ipAddrBlock: critical
IPv4:
103.157.248.0/23
IPv6:
2406:a9c0::/32
Signature Algorithm: sha256WithRSAEncryption
7b:f0:ef:df:f0:db:e4:e3:30:d5:f1:d2:d9:8c:7d:4b:93:14:
e2:b9:3b:41:bb:0d:17:03:9d:fd:38:d6:71:fc:6f:d0:be:4f:
ec:63:f8:d6:b7:e1:8f:3c:bb:f4:20:26:a9:75:cf:34:e0:4a:
67:e7:0d:0a:c4:a4:41:e0:ee:02:df:e9:57:72:1c:ea:d0:82:
31:ea:ed:a2:34:4f:7a:4a:8e:f8:e8:76:f9:5a:ea:51:0b:de:
50:fc:16:5d:ba:23:7d:6f:40:fa:ce:c4:ad:3e:b2:78:91:dd:
ae:8f:50:8b:8f:f0:2e:94:5a:37:0d:f8:08:24:ac:aa:8e:ed:
ea:c3:b0:ea:78:5d:11:8e:ca:28:14:64:e6:0e:a0:c4:31:3b:
cc:79:c1:30:c6:57:b6:53:62:7c:5b:1e:15:19:16:0e:57:17:
8d:ca:f2:04:0e:73:d2:31:37:5f:bb:d0:7a:68:5b:a2:1b:c2:
29:1d:d2:fc:93:05:b1:02:ce:f5:8d:dc:a8:18:02:12:cb:c4:
d7:92:d0:e2:23:24:5e:8a:9b:db:b2:0a:21:1e:3a:18:da:0f:
90:ed:51:50:e7:96:77:c4:7f:24:9e:20:6a:9f:81:de:c1:60:
9c:c1:95:42:8a:66:f4:4b:9e:71:fd:94:5c:70:b3:20:92:ae:
87:01:27:dd
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAdsjMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDEyOTIxMTkwM1oXDTI1MDEzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQjM2REMxMTAvBgNVBAUTKEJDMDJCMDA1Q0NBQTA0NTNGQzlCODE3
QkI3OENCQTkxNUYyN0MyQTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDXehnYldd9TQXRkzAz2C7p8s3gXbpJGoKDKpzgAFxO5aeCitQ35RnN5hfdP/1t
83gQn6VALN1ddtj7mVV2UHU15d8s092n3lieaHBycM7grdS5VTlXiLSUXEsA6dAd
26A/TTJrYiVYPODjpXl/dmjJztuJDaekd6uIHUSKxcgh7Ew16ZU0yfDUSfEf9I9R
tVZgg4+jS70kbqnjVESxYDUUWF6kw8e5Ot9Epv+p/NmDQmp7sr0kDGp6wX7cudho
xjWRzD+Pcl+si+8xJlnghtYeWluxLgtJMWjpP2KwX+05Qf+mNP8zo88pT+KNfgJr
SNx9sIPciBFQQkzKdjFUpOvLAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUvAKwBcyq
BFP8m4F7t4y6kV8nwqgwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUIzNkRDL0IwNDM2NDdBMTlGOTExRUJCOENERUQ0RkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFCMzZEQy9CMDQzNjQ3QTE5RjkxMUVCQjhDREVENEZDNEY5QUUwMi92QUt3QmN5
cUJGUDhtNEY3dDR5NmtWOG53cWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAihBMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBZ534MA0EAgAC
MAcDBQAkBqnAMA0GCSqGSIb3DQEBCwUAA4IBAQB78O/f8Nvk4zDV8dLZjH1LkxTi
uTtBuw0XA539ONZx/G/Qvk/sY/jWt+GPPLv0ICapdc804Epn5w0KxKRB4O4C3+lX
chzq0IIx6u2iNE96So746Hb5WupRC95Q/BZduiN9b0D6zsStPrJ4kd2uj1CLj/Au
lFo3DfgIJKyqju3qw7DqeF0RjsooFGTmDqDEMTvMecEwxle2U2J8Wx4VGRYOVxeN
yvIEDnPSMTdfu9B6aFuiG8IpHdL8kwWxAs71jdyoGAISy8TXktDiIyReipvbsgoh
HjoY2g+Q7VFQ55Z3xH8kniBqn4HewWCcwZVCimb0S55x/ZRccLMgkq6HASfd
-----END CERTIFICATE-----
Generated at Sat Apr 20 05:37:26 2024 by rpki-client on console-ams.rpki-client.org