Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHENBWM8XhGwdEtxrruIriskRuM.cer
File: vHENBWM8XhGwdEtxrruIriskRuM.cer (raw, json)
Hash identifier: +TfXVSeWIe8+UkPs6aeLRBTNjbOMtw/P3zKMGABBi6U=
Subject key identifier: BC:71:0D:05:63:3C:5E:11:B0:74:4B:71:AE:BB:88:AE:2B:24:46:E3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B041
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 14 Jul 2023 17:18:20 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 137925
IP: 103.117.80.0/24
IP: 2001:df5:a300::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110657 (0x1b041)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 14 17:18:20 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91AF406/serialNumber=BC710D05633C5E11B0744B71AEBB88AE2B2446E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ae:85:4b:d1:41:79:fe:e0:07:80:ca:b9:ea:
b7:7b:c8:78:11:6a:77:3a:06:13:22:df:c3:7b:4f:
ad:3a:4f:b1:50:c7:85:bf:fe:67:ab:df:1e:b2:3b:
0b:65:05:de:a7:7f:97:93:34:91:26:41:ab:53:53:
a0:10:29:69:40:ce:b7:06:6e:f2:92:9f:dd:b4:2a:
76:b2:58:b2:14:22:2c:72:1e:5a:17:f4:16:53:56:
8b:21:7f:c2:fc:55:bb:92:cc:8f:be:10:36:00:79:
a1:98:6c:d4:10:0a:93:a5:a8:fc:09:b7:69:d4:7d:
1f:26:ed:f5:b7:a2:3f:88:f3:f1:c7:b3:84:74:1d:
a0:68:0c:65:e1:19:46:52:4e:8e:66:91:57:e2:bc:
20:4e:b3:0b:6d:51:b4:56:47:29:55:2b:a5:49:c1:
b0:66:9a:f2:0d:2e:7b:de:f3:56:43:a1:6d:d6:5f:
e1:6f:c7:10:9b:a6:d2:64:11:46:97:ce:6f:f3:28:
c7:35:75:39:5b:ce:e1:be:0f:d8:6e:dc:de:aa:db:
4c:e7:ff:6e:d1:cf:1c:b3:b4:1e:b8:b9:ab:4b:be:
89:08:2a:f3:1e:99:0c:d8:fe:99:14:65:a2:b2:56:
1d:f4:0a:e9:03:0f:1d:38:33:ec:6b:06:dc:7b:0e:
64:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:71:0D:05:63:3C:5E:11:B0:74:4B:71:AE:BB:88:AE:2B:24:46:E3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137925
sbgp-ipAddrBlock: critical
IPv4:
103.117.80.0/24
IPv6:
2001:df5:a300::/48
Signature Algorithm: sha256WithRSAEncryption
8b:85:36:e5:d9:66:d0:b2:f8:08:c3:b5:07:d6:63:a9:b8:04:
d3:43:2a:6f:b2:40:a6:de:4a:f9:e9:75:e0:69:02:d8:cd:00:
65:e0:ba:bd:ba:06:2b:4d:b6:0b:10:37:b8:e9:dc:c1:41:ea:
b9:1e:01:ba:9c:b4:df:d4:a7:ba:0c:31:2a:20:b5:75:d1:4b:
a7:77:4a:b0:74:05:e5:33:72:68:cc:c9:43:03:bf:fe:9d:34:
b9:2e:de:d9:b5:0d:11:e5:8b:e5:86:e1:43:e3:5a:9a:e2:76:
65:e5:12:79:53:65:c8:e2:0f:68:83:39:d2:78:a8:a4:79:85:
f9:55:67:0b:74:03:e4:09:a3:c0:6b:c0:58:84:78:d7:3c:19:
58:20:fb:be:31:7b:63:94:c1:7e:34:c7:c6:14:19:b2:f5:23:
3b:d2:de:fe:6d:7f:9e:47:48:26:a8:54:01:96:2b:23:07:a1:
8b:15:c5:e3:04:a2:2e:cc:3b:f8:2e:07:05:6f:e9:a1:ae:cf:
f1:29:b3:ab:30:05:6b:a4:08:62:9b:28:fd:1c:be:4a:15:d2:
83:21:18:82:f0:28:65:2d:07:52:ff:96:70:b4:3e:62:e2:43:
a9:4d:ee:2c:2a:4a:6a:31:95:4d:3b:95:b7:ec:29:fd:1a:89:
7a:cb:30:a9
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAbBBMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDcxNDE3MTgyMFoXDTI0MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQUY0MDYxMTAvBgNVBAUTKEJDNzEwRDA1NjMzQzVFMTFCMDc0NEI3
MUFFQkI4OEFFMkIyNDQ2RTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDDroVL0UF5/uAHgMq56rd7yHgRanc6BhMi38N7T606T7FQx4W//mer3x6yOwtl
Bd6nf5eTNJEmQatTU6AQKWlAzrcGbvKSn920KnayWLIUIixyHloX9BZTVoshf8L8
VbuSzI++EDYAeaGYbNQQCpOlqPwJt2nUfR8m7fW3oj+I8/HHs4R0HaBoDGXhGUZS
To5mkVfivCBOswttUbRWRylVK6VJwbBmmvINLnve81ZDoW3WX+FvxxCbptJkEUaX
zm/zKMc1dTlbzuG+D9hu3N6q20zn/27RzxyztB64uatLvokIKvMemQzY/pkUZaKy
Vh30CukDDx04M+xrBtx7DmRdAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUvHENBWM8
XhGwdEtxrruIriskRuMwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUFGNDA2LzNGNjcwQzBDQTVGMjExRTg5N0E3NTAzQUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFBRjQwNi8zRjY3MEMwQ0E1RjIxMUU4OTdBNzUwM0FDNEY5QUUwMi92SEVOQldN
OFhoR3dkRXR4cnJ1SXJpc2tSdU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhrFMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAZ3VQMA8EAgAC
MAkDBwAgAQ31owAwDQYJKoZIhvcNAQELBQADggEBAIuFNuXZZtCy+AjDtQfWY6m4
BNNDKm+yQKbeSvnpdeBpAtjNAGXgur26BitNtgsQN7jp3MFB6rkeAbqctN/Up7oM
MSogtXXRS6d3SrB0BeUzcmjMyUMDv/6dNLku3tm1DRHli+WG4UPjWpridmXlEnlT
ZcjiD2iDOdJ4qKR5hflVZwt0A+QJo8BrwFiEeNc8GVgg+74xe2OUwX40x8YUGbL1
IzvS3v5tf55HSCaoVAGWKyMHoYsVxeMEoi7MO/guBwVv6aGuz/Eps6swBWukCGKb
KP0cvkoV0oMhGILwKGUtB1L/lnC0PmLiQ6lN7iwqSmoxlU07lbfsKf0aiXrLMKk=
-----END CERTIFICATE-----
Generated at Sat Apr 20 03:58:08 2024 by rpki-client on console-fra.rpki-client.org