Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y78mA3JNeFZrHBLDLVxIH10w8fI.cer
File: y78mA3JNeFZrHBLDLVxIH10w8fI.cer (raw, json)
Hash identifier: tLg54dHpGJqdY2uuWTG83+DuMyhdViw5VdeRswwKRBo=
Subject key identifier: CB:BF:26:03:72:4D:78:56:6B:1C:12:C3:2D:5C:48:1F:5D:30:F1:F2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021997
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 06 Nov 2024 04:21:49 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 147311
IP: 103.174.196.0/23
IP: 2400:1520::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 01:13:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137623 (0x21997)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 6 04:21:49 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91B7700/serialNumber=CBBF2603724D78566B1C12C32D5C481F5D30F1F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:11:0d:b9:fc:19:97:b0:ba:1f:f6:af:20:6a:
ae:c2:e4:b0:51:a1:d7:da:e4:bf:08:9a:6a:b4:d4:
3c:78:b9:f4:e1:70:eb:c1:2a:fc:f1:9e:28:31:33:
25:5f:dc:fd:93:f9:bb:1e:fd:a4:2c:9b:e3:b1:2c:
ad:c1:83:c6:87:60:6b:6a:65:8e:2b:e8:f7:fd:d0:
10:6b:1a:e2:c0:da:99:f3:be:95:1c:d9:53:2f:a0:
cb:3a:13:56:b4:05:70:b1:0b:e5:31:a5:d7:63:2d:
48:43:28:05:1d:3c:2f:6e:9d:c7:5b:1a:d0:c2:ec:
9e:de:d6:ef:0b:47:4b:7f:d5:e3:c1:34:38:99:ea:
3c:64:bb:cc:30:1a:1f:8e:37:73:07:d4:0e:72:dd:
47:fe:ab:1f:be:7c:63:a1:29:b6:05:5e:d1:75:3f:
7a:e1:12:1e:fc:72:ad:8d:57:80:9f:fd:ec:e1:54:
0a:36:00:75:73:e4:3c:8a:ff:02:c7:c1:21:4f:32:
da:0e:0e:31:56:d8:0f:b3:0b:63:3e:a8:ee:9b:84:
d4:0b:3b:9d:8a:5c:4a:fb:f8:d9:fc:d0:80:85:b0:
c9:4f:32:88:7f:a6:1d:fd:c3:24:79:2d:a5:5d:81:
11:d8:de:85:2b:2e:b2:88:fe:c8:ed:b2:fc:df:3b:
bd:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:BF:26:03:72:4D:78:56:6B:1C:12:C3:2D:5C:48:1F:5D:30:F1:F2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
147311
sbgp-ipAddrBlock: critical
IPv4:
103.174.196.0/23
IPv6:
2400:1520::/32
Signature Algorithm: sha256WithRSAEncryption
8f:7d:97:49:17:77:c6:0b:8b:2a:0c:6e:4c:4f:bd:7e:1d:96:
73:a5:02:90:4b:69:94:42:0c:00:e0:d8:e9:1a:4d:46:8a:66:
4e:d2:22:6c:e5:e8:c3:07:5a:87:cc:f0:53:ea:80:d2:92:1d:
d4:e4:c2:2e:4d:31:ca:65:f6:7d:eb:7c:ba:3e:7f:30:b3:74:
27:6f:40:fe:b6:d0:33:96:7a:4a:28:ac:a8:fd:f6:7c:7e:bc:
4e:d1:78:46:91:7c:b8:8a:27:5f:3c:49:3d:de:68:9b:c6:6b:
fb:fd:05:24:a0:b2:6e:d9:39:5a:91:be:33:f2:03:11:7d:de:
bb:22:22:4b:ee:84:d8:de:e0:d0:50:62:7e:16:34:48:8d:d9:
8c:9b:38:02:43:e5:89:29:53:c3:36:17:65:aa:33:a8:d2:53:
0c:11:59:0a:d2:ed:95:db:f7:ef:f6:ba:c1:e7:74:09:dd:8f:
76:f4:41:c6:d2:e1:98:48:15:fa:7b:fa:10:3e:e6:8a:86:f5:
47:72:f2:c8:fc:6b:62:a2:4a:49:86:4f:44:9b:97:57:1a:24:
04:2d:36:40:a6:11:45:84:da:7d:88:84:7f:e6:5c:3a:03:f8:
54:09:3f:ff:58:f3:1d:dd:8e:52:0f:ec:be:2e:f0:1a:b0:c0:
06:c4:fb:f4
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAhmXMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTEwNjA0MjE0OVoXDTI2MDEzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQjc3MDAxMTAvBgNVBAUTKENCQkYyNjAzNzI0RDc4NTY2QjFDMTJD
MzJENUM0ODFGNUQzMEYxRjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDAEQ25/BmXsLof9q8gaq7C5LBRodfa5L8Immq01Dx4ufThcOvBKvzxnigxMyVf
3P2T+bse/aQsm+OxLK3Bg8aHYGtqZY4r6Pf90BBrGuLA2pnzvpUc2VMvoMs6E1a0
BXCxC+UxpddjLUhDKAUdPC9uncdbGtDC7J7e1u8LR0t/1ePBNDiZ6jxku8wwGh+O
N3MH1A5y3Uf+qx++fGOhKbYFXtF1P3rhEh78cq2NV4Cf/ezhVAo2AHVz5DyK/wLH
wSFPMtoODjFW2A+zC2M+qO6bhNQLO52KXEr7+Nn80ICFsMlPMoh/ph39wyR5LaVd
gRHY3oUrLrKI/sjtsvzfO72RAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUy78mA3JN
eFZrHBLDLVxIH10w8fIwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUI3NzAwL0NDREJGNEYwQUU1NzExRUNCNEExREE2NEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFCNzcwMC9DQ0RCRjRGMEFFNTcxMUVDQjRBMURBNjRDNEY5QUUwMi95NzhtQTNK
TmVGWnJIQkxETFZ4SUgxMHc4ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAj9vMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBZ67EMA0EAgAC
MAcDBQAkABUgMA0GCSqGSIb3DQEBCwUAA4IBAQCPfZdJF3fGC4sqDG5MT71+HZZz
pQKQS2mUQgwA4NjpGk1GimZO0iJs5ejDB1qHzPBT6oDSkh3U5MIuTTHKZfZ963y6
Pn8ws3Qnb0D+ttAzlnpKKKyo/fZ8frxO0XhGkXy4iidfPEk93mibxmv7/QUkoLJu
2Tlakb4z8gMRfd67IiJL7oTY3uDQUGJ+FjRIjdmMmzgCQ+WJKVPDNhdlqjOo0lMM
EVkK0u2V2/fv9rrB53QJ3Y929EHG0uGYSBX6e/oQPuaKhvVHcvLI/GtiokpJhk9E
m5dXGiQELTZAphFFhNp9iIR/5lw6A/hUCT//WPMd3Y5SD+y+LvAasMAGxPv0
-----END CERTIFICATE-----
Generated at Wed Nov 27 02:05:40 2024 by rpki-client on console-ams.rpki-client.org