Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OWpdnmemeQypf7kxMEtE57CoIc8.cer
File: OWpdnmemeQypf7kxMEtE57CoIc8.cer (raw, json)
Hash identifier: i8CLBzqk2CaoqwQHlmpwDTaWLcRnPaDWtiv87Gv0/6E=
Subject key identifier: 39:6A:5D:9E:67:A6:79:0C:A9:7F:B9:31:30:4B:44:E7:B0:A8:21:CF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FA79
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 21 Jun 2024 15:29:46 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 139054
IP: 103.151.180.0/23
IP: 2001:df3:f980::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129657 (0x1fa79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 21 15:29:46 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A915664E/serialNumber=396A5D9E67A6790CA97FB931304B44E7B0A821CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:81:b1:26:3e:e3:8a:11:24:ed:19:b2:0f:10:
7b:60:95:56:b0:8c:8d:fc:ba:05:fd:1a:64:77:05:
7d:e1:a3:81:28:c8:73:81:8b:0c:a8:fb:41:ac:80:
79:ca:1d:8e:92:d7:d0:ea:26:ae:80:27:50:7e:d2:
0a:05:e8:2d:96:58:15:30:8f:d5:8a:33:d0:14:7b:
e3:64:92:cb:95:72:bd:44:4e:64:4b:db:63:d5:7f:
93:a3:ed:fc:ef:6f:85:33:8c:09:71:ca:fe:12:d7:
25:fc:51:29:af:dc:2d:f5:d2:4a:6e:15:6c:a7:0c:
c7:36:25:57:68:2c:d9:5c:e9:ec:be:40:f8:c0:ae:
f2:9d:10:7b:9d:34:60:11:80:5c:58:37:f6:49:f0:
a4:a4:d0:81:7b:20:b2:d0:78:0d:81:87:55:47:c6:
28:d5:0c:dc:91:ab:4b:a9:67:d8:54:45:ed:b7:a3:
4f:39:c9:38:7b:1e:8f:49:e1:7f:3b:40:47:24:90:
8c:87:57:fb:55:56:68:03:01:4d:a8:7a:2a:d7:f9:
4d:b5:7b:c5:66:af:03:ad:fc:b0:37:5d:9f:b9:31:
c2:ae:32:d5:47:21:d9:d6:d8:48:62:ae:7f:e2:29:
cd:d3:e7:1a:60:21:9b:03:c2:68:ab:a0:7f:b7:f6:
19:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:6A:5D:9E:67:A6:79:0C:A9:7F:B9:31:30:4B:44:E7:B0:A8:21:CF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915664E/B46A9C1EB13D11EAB12D121CC4F9AE02/OWpdnmemeQypf7kxMEtE57CoIc8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139054
sbgp-ipAddrBlock: critical
IPv4:
103.151.180.0/23
IPv6:
2001:df3:f980::/48
Signature Algorithm: sha256WithRSAEncryption
34:b7:ce:ce:8d:a4:d6:39:b1:1d:7b:99:17:dd:64:1d:b5:4a:
9e:f7:f9:99:0d:47:95:81:54:85:6e:52:31:75:ec:5c:f8:6d:
a7:dc:98:4b:01:2b:5f:2b:d6:52:2e:93:04:80:5b:08:5e:3f:
e5:b0:91:06:d6:ed:fd:16:3b:fc:2f:46:cd:79:b6:f4:bb:0c:
5b:41:1a:a9:4f:b6:c2:20:68:77:4a:66:07:66:7a:3a:ef:fe:
b4:7d:7f:04:5f:5f:71:0e:4f:2e:ba:b0:1c:5b:89:8b:20:f2:
b2:3c:91:63:bd:13:a8:50:f0:29:70:e0:a2:3c:be:de:21:20:
2b:01:d1:5e:70:16:d0:2b:64:76:f1:18:b3:c4:4e:7c:12:66:
71:9a:5b:c9:8e:ae:d9:c5:c5:e3:c1:48:24:38:b6:73:26:2f:
ca:c9:3c:be:ed:4d:b2:07:60:fa:32:0a:2e:a1:22:d9:09:0a:
a0:5d:1b:6c:98:1c:65:35:91:19:71:0b:5e:89:2b:47:42:d3:
48:cb:d5:db:73:06:4c:e5:0f:a7:16:f4:28:a4:70:43:6e:bb:
fc:e7:93:c7:a6:aa:d0:65:f0:fb:4b:4a:6e:69:fb:68:7b:46:
07:b1:16:a9:2e:c7:ef:c3:b6:a4:ef:d4:78:84:5f:10:a8:f0:
1e:0e:5b:78
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAfp5MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDYyMTE1Mjk0NloXDTI1MDgzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNTY2NEUxMTAvBgNVBAUTKDM5NkE1RDlFNjdBNjc5MENBOTdGQjkz
MTMwNEI0NEU3QjBBODIxQ0YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDEgbEmPuOKESTtGbIPEHtglVawjI38ugX9GmR3BX3ho4EoyHOBiwyo+0GsgHnK
HY6S19DqJq6AJ1B+0goF6C2WWBUwj9WKM9AUe+NkksuVcr1ETmRL22PVf5Oj7fzv
b4UzjAlxyv4S1yX8USmv3C310kpuFWynDMc2JVdoLNlc6ey+QPjArvKdEHudNGAR
gFxYN/ZJ8KSk0IF7ILLQeA2Bh1VHxijVDNyRq0upZ9hURe23o085yTh7Ho9J4X87
QEckkIyHV/tVVmgDAU2oeirX+U21e8VmrwOt/LA3XZ+5McKuMtVHIdnW2Ehirn/i
Kc3T5xpgIZsDwmiroH+39hlxAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUOWpdnmem
eQypf7kxMEtE57CoIc8wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTU2NjRFL0I0NkE5QzFFQjEzRDExRUFCMTJEMTIxQ0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1NjY0RS9CNDZBOUMxRUIxM0QxMUVBQjEyRDEyMUNDNEY5QUUwMi9PV3Bkbm1l
bWVReXBmN2t4TUV0RTU3Q29JYzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAh8uMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ5e0MA8EAgAC
MAkDBwAgAQ3z+YAwDQYJKoZIhvcNAQELBQADggEBADS3zs6NpNY5sR17mRfdZB21
Sp73+ZkNR5WBVIVuUjF17Fz4bafcmEsBK18r1lIukwSAWwheP+WwkQbW7f0WO/wv
Rs15tvS7DFtBGqlPtsIgaHdKZgdmejrv/rR9fwRfX3EOTy66sBxbiYsg8rI8kWO9
E6hQ8Clw4KI8vt4hICsB0V5wFtArZHbxGLPETnwSZnGaW8mOrtnFxePBSCQ4tnMm
L8rJPL7tTbIHYPoyCi6hItkJCqBdG2yYHGU1kRlxC16JK0dC00jL1dtzBkzlD6cW
9CikcENuu/znk8emqtBl8PtLSm5p+2h7RgexFqkux+/DtqTv1HiEXxCo8B4OW3g=
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:48 2024 by rpki-client on console.sobornost.net