Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7AyaWMsKzUJztF4bkYE7___QgUA.cer
File: 7AyaWMsKzUJztF4bkYE7___QgUA.cer (raw, json)
Hash identifier: CvzxvoIfQBXwhQi7CnkOOBpwl1Ypp9ST3bSOGnt9LyY=
Subject key identifier: EC:0C:9A:58:CB:0A:CD:42:73:B4:5E:1B:91:81:3B:FF:FF:D0:81:40
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0231C6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B7691/82164D047D5911EDBEB55D0AC4F9AE02/7AyaWMsKzUJztF4bkYE7___QgUA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B7691/82164D047D5911EDBEB55D0AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 18 Feb 2025 05:17:45 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 7494
AS: 135772
IP: 14.192.52.0/22
IP: 103.54.230.0/23
IP: 103.68.216.0/22
IP: 2001:df6:6b00::/48
IP: 2400:cc60::/32
IP: 2407:a8c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143814 (0x231c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 18 05:17:45 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A91B7691
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:0c:59:9b:65:4b:7a:57:fa:73:4e:7f:fb:bc:
5b:ef:ba:e6:56:62:86:ea:22:c5:be:fb:93:c0:50:
7f:f5:d9:68:d4:13:bc:fc:c4:8b:1c:b7:a5:6e:53:
1d:61:97:91:2e:d5:9e:0d:df:09:23:16:81:1e:10:
df:74:b6:f9:48:4b:92:0a:52:d6:16:10:83:63:82:
85:27:18:bb:25:f1:59:b2:08:47:9f:55:c6:0c:66:
e8:13:6c:9f:bf:3f:4a:b3:fe:b7:c0:c5:0f:94:8d:
26:55:b3:9c:36:bf:b1:ac:14:49:a2:8d:35:d6:48:
75:48:e1:fc:c6:88:a3:20:42:ed:04:ca:af:1a:24:
46:df:f1:d3:68:ba:8d:4c:fe:e8:7f:10:d6:db:b0:
94:d2:37:df:57:7c:35:e6:82:55:4c:c1:3c:1a:95:
a1:bd:b8:4f:3a:52:96:d8:72:55:48:6e:8c:07:62:
be:11:0c:36:ba:b2:ef:00:09:62:62:69:d2:dd:ef:
3d:52:fe:2a:68:12:fe:07:dd:0a:9c:fc:35:49:74:
44:2b:f2:ac:30:de:dd:91:fd:d4:54:7c:1a:de:20:
a1:71:4d:0e:c3:35:83:5b:66:ea:bb:34:b3:53:8c:
41:30:1e:cc:90:c7:8d:2f:21:69:95:86:70:4d:5f:
8b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:0C:9A:58:CB:0A:CD:42:73:B4:5E:1B:91:81:3B:FF:FF:D0:81:40
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B7691/82164D047D5911EDBEB55D0AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B7691/82164D047D5911EDBEB55D0AC4F9AE02/7AyaWMsKzUJztF4bkYE7___QgUA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
7494
135772
sbgp-ipAddrBlock: critical
IPv4:
14.192.52.0/22
103.54.230.0/23
103.68.216.0/22
IPv6:
2001:df6:6b00::/48
2400:cc60::/32
2407:a8c0::/32
Signature Algorithm: sha256WithRSAEncryption
12:28:53:21:2b:1f:1c:bf:d6:71:24:48:da:1c:87:61:e8:68:
53:44:35:af:cd:03:07:d1:c1:45:71:5d:db:ae:cd:d2:08:00:
62:58:25:52:ec:b6:6a:51:3a:cb:62:d9:2e:d1:45:95:85:c4:
fe:1a:4d:e3:e6:6e:47:da:74:e3:9f:a5:a3:d8:5e:38:18:dd:
b6:c6:13:c4:23:bd:f9:aa:74:ce:d0:52:1e:a5:19:7c:db:1c:
27:cb:c4:00:b9:1c:8e:8a:05:9d:4f:7f:05:1f:6f:88:a6:dd:
3d:ec:41:2f:69:69:b3:4b:9a:b2:f0:0b:c9:8e:cd:a1:4a:68:
c6:af:8b:91:47:a0:f8:06:a6:97:2e:fe:44:cb:c0:ac:17:ee:
41:1c:2f:39:6d:3d:ac:35:c8:79:1b:52:2a:67:8b:42:62:4a:
de:77:0e:c5:52:cb:dc:33:6e:51:dd:04:d0:bc:a1:12:ae:e0:
39:07:50:9f:2d:b7:4d:54:12:77:06:cd:c4:66:56:5e:36:c9:
b6:93:18:44:fb:0e:53:fa:be:37:03:2f:d5:e3:c6:6e:c6:9e:
e8:f0:29:fd:93:78:3c:e5:63:17:8f:c9:f2:9e:d5:b1:09:74:
43:3c:92:dd:f7:b6:bb:97:b7:6b:22:34:aa:83:63:50:e9:16:
f6:1e:91:12
-----BEGIN CERTIFICATE-----
MIIGSTCCBTGgAwIBAgIDAjHGMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDIxODA1MTc0NVoXDTI2MDMzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQjc2OTExMTAvBgNVBAUTKEVDMEM5QTU4Q0IwQUNENDI3M0I0NUUx
QjkxODEzQkZGRkZEMDgxNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQD1DFmbZUt6V/pzTn/7vFvvuuZWYobqIsW++5PAUH/12WjUE7z8xIsct6VuUx1h
l5Eu1Z4N3wkjFoEeEN90tvlIS5IKUtYWEINjgoUnGLsl8VmyCEefVcYMZugTbJ+/
P0qz/rfAxQ+UjSZVs5w2v7GsFEmijTXWSHVI4fzGiKMgQu0Eyq8aJEbf8dNouo1M
/uh/ENbbsJTSN99XfDXmglVMwTwalaG9uE86UpbYclVIbowHYr4RDDa6su8ACWJi
adLd7z1S/ipoEv4H3Qqc/DVJdEQr8qww3t2R/dRUfBreIKFxTQ7DNYNbZuq7NLNT
jEEwHsyQx40vIWmVhnBNX4vjAgMBAAGjggM+MIIDOjAdBgNVHQ4EFgQU7AyaWMsK
zUJztF4bkYE7///QgUAwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUI3NjkxLzgyMTY0RDA0N0Q1OTExRURCRUI1NUQwQUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFCNzY5MS84MjE2NEQwNDdENTkxMUVEQkVCNTVEMEFDNEY5QUUwMi83QXlhV01z
S3pVSnp0RjRia1lFN19fX1FnVUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQgBAf8EDzAN
oAswCQICHUYCAwISXDBKBggrBgEFBQcBBwEB/wQ7MDkwGAQCAAEwEgMEAg7ANAME
AWc25gMEAmdE2DAdBAIAAjAXAwcAIAEN9msAAwUAJADMYAMFACQHqMAwDQYJKoZI
hvcNAQELBQADggEBABIoUyErHxy/1nEkSNoch2HoaFNENa/NAwfRwUVxXduuzdII
AGJYJVLstmpROsti2S7RRZWFxP4aTePmbkfadOOfpaPYXjgY3bbGE8QjvfmqdM7Q
Uh6lGXzbHCfLxAC5HI6KBZ1PfwUfb4im3T3sQS9pabNLmrLwC8mOzaFKaMavi5FH
oPgGppcu/kTLwKwX7kEcLzltPaw1yHkbUipni0JiSt53DsVSy9wzblHdBNC8oRKu
4DkHUJ8tt01UEncGzcRmVl42ybaTGET7DlP6vjcDL9Xjxm7GnujwKf2TeDzlYxeP
yfKe1bEJdEM8kt33truXt2siNKqDY1DpFvYekRI=
-----END CERTIFICATE-----
Generated at Fri Apr 4 02:10:21 2025 by rpki-client