Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Qhzr0de1u63y5Y8ZejZgFuLtWk.cer
File: 5Qhzr0de1u63y5Y8ZejZgFuLtWk.cer (raw, json)
Hash identifier: dcAqc9z/wSD7uY58EKXgDNd4LAc4LgNIKPD6X5kVCEo=
Subject key identifier: E5:08:73:AF:47:5E:D6:EE:B7:CB:96:3C:65:E8:D9:80:5B:8B:B5:69
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02357A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916148F/68848268074111EDAB19D447C4F9AE02/5Qhzr0de1u63y5Y8ZejZgFuLtWk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916148F/68848268074111EDAB19D447C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 05 Mar 2025 03:02:49 +0000
Certificate not after: Mon 01 May 2028 00:00:00 +0000
Subordinate resources: AS: 58527
IP: 103.247.238.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 20 Apr 2025 22:44:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144762 (0x2357a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 5 03:02:49 2025 GMT
Not After : May 1 00:00:00 2028 GMT
Subject: CN=A916148F, serialNumber=E50873AF475ED6EEB7CB963C65E8D9805B8BB569
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d2:76:73:ba:a3:7b:af:86:2d:7a:83:41:a6:
e8:3e:91:2e:88:8f:df:59:63:5b:7d:12:07:b5:77:
95:d0:ed:27:c6:51:88:b5:bd:6d:ab:ba:fc:5d:85:
45:4d:18:de:94:c5:f3:64:0c:ca:22:f4:78:71:87:
25:1f:de:52:fd:a9:72:f3:60:42:87:64:75:d1:fb:
66:44:2a:ce:a0:62:9c:c2:b2:f6:ea:05:bc:ff:44:
b0:01:c3:1a:d5:79:29:5d:9b:9c:70:6a:89:1d:e8:
81:50:cf:f6:b2:7c:fc:8b:77:0a:77:4f:19:1a:c0:
25:cd:5e:07:81:8e:07:8e:38:c6:6d:8c:fa:26:b7:
26:5c:40:dd:dc:59:3f:16:9b:0a:46:07:ba:fc:b2:
16:bf:c3:af:d7:23:87:a6:b3:36:7e:d2:28:81:ba:
0e:89:3c:1d:ec:4c:75:be:e9:ba:1b:bf:fb:a4:1d:
23:24:1f:03:ec:27:06:ce:79:0f:db:5b:4e:b3:35:
dd:30:62:95:4c:83:06:07:c3:b0:36:e6:89:7b:47:
a6:4e:f8:09:4a:9d:1e:95:0a:19:77:38:b9:0c:c4:
00:61:99:e3:d0:9f:d4:d6:0f:66:63:52:de:22:36:
99:58:86:9b:af:59:be:56:19:19:50:0c:af:59:5f:
bb:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:08:73:AF:47:5E:D6:EE:B7:CB:96:3C:65:E8:D9:80:5B:8B:B5:69
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916148F/68848268074111EDAB19D447C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916148F/68848268074111EDAB19D447C4F9AE02/5Qhzr0de1u63y5Y8ZejZgFuLtWk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58527
sbgp-ipAddrBlock: critical
IPv4:
103.247.238.0/23
Signature Algorithm: sha256WithRSAEncryption
5e:be:97:47:f7:ff:df:65:c4:89:80:a0:4d:8b:ad:3a:44:b9:
5b:38:42:c6:a9:5a:eb:d6:9c:92:fd:6b:9b:94:9e:74:29:64:
de:5d:bd:25:e1:34:6c:dd:7c:5f:d5:f8:a9:20:13:2e:f5:82:
25:71:7f:3d:cb:09:94:f1:e3:bf:b9:94:55:9a:85:0f:8c:28:
3a:dd:28:ee:b0:80:ab:27:0e:3b:80:6d:56:7a:a1:91:e9:13:
3e:00:27:e2:74:7e:93:d1:e7:e7:2b:01:c7:de:6c:e1:8c:ad:
c9:92:c2:6c:b1:2b:64:76:fe:76:9a:d1:db:bd:e3:c7:78:b5:
5b:57:32:bf:75:8e:cd:e4:3c:76:95:d4:10:02:70:8c:cc:2f:
46:8b:7b:3c:6e:3a:90:58:1a:6d:b3:5f:b1:7e:2a:38:c3:55:
19:d1:60:03:55:07:b5:95:31:4b:67:0d:fd:4b:76:80:08:6f:
3f:3a:7d:1c:f7:95:fa:fb:82:79:ea:df:c7:dd:64:e4:e5:64:
18:d5:b5:b4:ed:2c:0b:05:0f:10:d1:e9:ed:7b:3b:37:e6:7e:
b1:bd:8b:39:27:99:20:ac:d1:9b:50:24:27:de:db:02:30:2c:
31:b5:a1:4e:dd:26:6d:31:85:2d:38:3c:c6:88:89:df:69:67:
e4:81:be:fe
-----BEGIN CERTIFICATE-----
MIIGGjCCBQKgAwIBAgIDAjV6MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDMwNTAzMDI0OVoXDTI4MDUwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNjE0OEYxMTAvBgNVBAUTKEU1MDg3M0FGNDc1RUQ2RUVCN0NCOTYz
QzY1RThEOTgwNUI4QkI1NjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCf0nZzuqN7r4YteoNBpug+kS6Ij99ZY1t9Ege1d5XQ7SfGUYi1vW2ruvxdhUVN
GN6UxfNkDMoi9HhxhyUf3lL9qXLzYEKHZHXR+2ZEKs6gYpzCsvbqBbz/RLABwxrV
eSldm5xwaokd6IFQz/ayfPyLdwp3TxkawCXNXgeBjgeOOMZtjPomtyZcQN3cWT8W
mwpGB7r8sha/w6/XI4emszZ+0iiBug6JPB3sTHW+6bobv/ukHSMkHwPsJwbOeQ/b
W06zNd0wYpVMgwYHw7A25ol7R6ZO+AlKnR6VChl3OLkMxABhmePQn9TWD2ZjUt4i
NplYhpuvWb5WGRlQDK9ZX7vpAgMBAAGjggMPMIIDCzAdBgNVHQ4EFgQU5Qhzr0de
1u63y5Y8ZejZgFuLtWkwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTYxNDhGLzY4ODQ4MjY4MDc0MTExRURBQjE5RDQ0N0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE2MTQ4Ri82ODg0ODI2ODA3NDExMUVEQUIxOUQ0NDdDNEY5QUUwMi81UWh6cjBk
ZTF1NjN5NVk4WmVqWmdGdUx0V2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAOSfMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ/fuMA0GCSqG
SIb3DQEBCwUAA4IBAQBevpdH9//fZcSJgKBNi606RLlbOELGqVrr1pyS/WublJ50
KWTeXb0l4TRs3Xxf1fipIBMu9YIlcX89ywmU8eO/uZRVmoUPjCg63SjusICrJw47
gG1WeqGR6RM+ACfidH6T0efnKwHH3mzhjK3JksJssStkdv52mtHbvePHeLVbVzK/
dY7N5Dx2ldQQAnCMzC9Gi3s8bjqQWBpts1+xfio4w1UZ0WADVQe1lTFLZw39S3aA
CG8/On0c95X6+4J56t/H3WTk5WQY1bW07SwLBQ8Q0entezs35n6xvYs5J5kgrNGb
UCQn3tsCMCwxtaFO3SZtMYUtODzGiInfaWfkgb7+
-----END CERTIFICATE-----
Generated at Mon Apr 14 05:12:17 2025 by rpki-client