Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4x5nyg5b7bJI-Xplfe_2LshvUks.cer
File: 4x5nyg5b7bJI-Xplfe_2LshvUks.cer (raw, json)
Hash identifier: JmRGrKcPOppMT69yLZY7fzqRxokLiQskvsWHgfNHTaQ=
Subject key identifier: E3:1E:67:CA:0E:5B:ED:B2:48:F9:7A:65:7D:EF:F6:2E:C8:6F:52:4B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0225DC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91ED5D9/89E87FE00CC811EDB33B1371C4F9AE02/4x5nyg5b7bJI-Xplfe_2LshvUks.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91ED5D9/89E87FE00CC811EDB33B1371C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 31 Dec 2024 00:28:12 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 64065
IP: 103.19.36.0/24
IP: 103.88.136.0/23
IP: 2001:df5:6600::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140764 (0x225dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 31 00:28:12 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91ED5D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:01:3c:4d:87:30:48:9d:6f:ff:bc:b0:df:f5:
d5:44:b6:72:4d:c0:eb:27:00:11:e7:7e:3a:0e:3e:
64:cf:30:11:27:db:00:50:b6:c9:0a:62:1f:77:b2:
db:06:7c:b4:e7:60:9b:e0:f0:2d:96:00:aa:6d:2c:
a8:cb:b6:a1:a2:cc:78:e0:66:fa:d9:1f:61:ee:33:
d3:38:a6:92:e9:56:d6:e3:3a:1c:87:a7:b1:c8:eb:
ed:8c:06:9d:ca:6b:cf:bf:02:4a:74:a3:e9:5e:2b:
cf:6e:44:12:29:2e:14:19:9b:bc:00:22:02:54:ad:
06:95:52:6a:84:c7:a2:ac:10:f1:62:74:5d:73:3e:
f4:81:1a:7c:b9:ae:03:3a:cd:e6:3f:9f:0f:21:6e:
f8:85:49:0e:3f:19:0e:a8:75:31:e5:cb:95:1d:2e:
52:04:87:6a:3b:e3:a2:e4:71:df:45:2b:73:63:25:
b0:f9:5f:2e:2b:47:05:10:cf:18:6a:a8:ca:83:fc:
12:ad:f0:c1:50:44:31:54:9b:8f:e1:c6:eb:82:8c:
3a:8e:8d:90:61:60:89:14:e3:2f:55:c4:d9:30:fc:
ec:59:c3:0c:a0:87:5b:37:78:0f:c1:ad:90:ad:20:
91:a4:6d:bc:47:0f:7c:95:ea:41:da:0a:6a:53:6d:
50:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:1E:67:CA:0E:5B:ED:B2:48:F9:7A:65:7D:EF:F6:2E:C8:6F:52:4B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91ED5D9/89E87FE00CC811EDB33B1371C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91ED5D9/89E87FE00CC811EDB33B1371C4F9AE02/4x5nyg5b7bJI-Xplfe_2LshvUks.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
64065
sbgp-ipAddrBlock: critical
IPv4:
103.19.36.0/24
103.88.136.0/23
IPv6:
2001:df5:6600::/48
Signature Algorithm: sha256WithRSAEncryption
b1:c6:04:0e:b2:82:11:f5:bd:97:6f:04:21:9b:09:38:14:ec:
6e:37:51:6c:d2:a9:58:76:0d:3b:60:8b:90:3b:d1:fd:a6:06:
d6:72:08:b6:9f:e2:76:96:a9:e4:13:37:ce:bd:9a:a7:d4:87:
7d:94:f3:3c:e2:ad:05:c5:5f:66:f3:b9:d7:de:9d:99:da:27:
dc:f9:8b:f7:3d:0b:19:b1:4a:e0:d4:81:13:7f:5f:3a:43:4c:
7b:e7:70:48:44:a1:f7:de:e2:9e:0d:7e:c6:79:c2:f2:d3:18:
91:8c:25:d3:1a:f5:66:b4:b6:0a:5a:c2:11:f5:bb:18:5f:d3:
93:d2:13:3a:98:96:ab:14:a1:4a:48:1f:42:20:e3:6f:2f:98:
18:79:2f:27:1f:49:35:c1:86:4f:9a:5b:36:16:88:f3:94:8f:
ca:a7:1f:fa:58:fe:7a:c2:db:9a:7b:85:81:ba:da:5d:e2:11:
12:eb:26:b4:41:70:66:f2:92:f5:13:6f:58:7c:8b:0a:cb:54:
98:ad:8b:28:33:58:3e:14:08:c6:ae:65:2d:21:c9:6a:f8:9f:
d8:11:db:2b:a5:e9:ae:d6:21:7f:6b:0e:8e:fa:04:a0:03:cc:
65:10:9e:56:28:5d:57:96:ea:e7:4c:5a:fb:42:9a:b1:05:53:
d2:9b:f2:b9
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIDAiXcMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTIzMTAwMjgxMloXDTI2MDMwMjAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRUQ1RDkxMTAvBgNVBAUTKEUzMUU2N0NBMEU1QkVEQjI0OEY5N0E2
NTdERUZGNjJFQzg2RjUyNEIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDAATxNhzBInW//vLDf9dVEtnJNwOsnABHnfjoOPmTPMBEn2wBQtskKYh93stsG
fLTnYJvg8C2WAKptLKjLtqGizHjgZvrZH2HuM9M4ppLpVtbjOhyHp7HI6+2MBp3K
a8+/Akp0o+leK89uRBIpLhQZm7wAIgJUrQaVUmqEx6KsEPFidF1zPvSBGny5rgM6
zeY/nw8hbviFSQ4/GQ6odTHly5UdLlIEh2o746Lkcd9FK3NjJbD5Xy4rRwUQzxhq
qMqD/BKt8MFQRDFUm4/hxuuCjDqOjZBhYIkU4y9VxNkw/OxZwwygh1s3eA/BrZCt
IJGkbbxHD3yV6kHaCmpTbVBvAgMBAAGjggMmMIIDIjAdBgNVHQ4EFgQU4x5nyg5b
7bJI+Xplfe/2LshvUkswHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUVENUQ5Lzg5RTg3RkUwMENDODExRURCMzNCMTM3MUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFFRDVEOS84OUU4N0ZFMDBDQzgxMUVEQjMzQjEzNzFDNEY5QUUwMi80eDVueWc1
YjdiSkktWHBsZmVfMkxzaHZVa3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAPpBMDYGCCsGAQUFBwEHAQH/BCcwJTASBAIAATAMAwQAZxMkAwQBZ1iI
MA8EAgACMAkDBwAgAQ31ZgAwDQYJKoZIhvcNAQELBQADggEBALHGBA6yghH1vZdv
BCGbCTgU7G43UWzSqVh2DTtgi5A70f2mBtZyCLaf4naWqeQTN869mqfUh32U8zzi
rQXFX2bzudfenZnaJ9z5i/c9CxmxSuDUgRN/XzpDTHvncEhEoffe4p4NfsZ5wvLT
GJGMJdMa9Wa0tgpawhH1uxhf05PSEzqYlqsUoUpIH0Ig428vmBh5LycfSTXBhk+a
WzYWiPOUj8qnH/pY/nrC25p7hYG62l3iERLrJrRBcGbykvUTb1h8iwrLVJitiygz
WD4UCMauZS0hyWr4n9gR2yul6a7WIX9rDo76BKADzGUQnlYoXVeW6udMWvtCmrEF
U9Kb8rk=
-----END CERTIFICATE-----
Generated at Fri Apr 4 02:11:30 2025 by rpki-client