Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HIAVCsljCYTTjMb1nD7MdRsl8-c.cer
File: HIAVCsljCYTTjMb1nD7MdRsl8-c.cer (raw, json)
Hash identifier: XOh9O/vSXqC2VSPEn5IQVWA8nhX1Gti2LjUnYxnR2c4=
Subject key identifier: 1C:80:15:0A:C9:63:09:84:D3:8C:C6:F5:9C:3E:CC:75:1B:25:F3:E7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022910
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915A549/4D25BCAAD24411EF9E654B14C4F9AE02/HIAVCsljCYTTjMb1nD7MdRsl8-c.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915A549/4D25BCAAD24411EF9E654B14C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 14 Jan 2025 06:53:51 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 55571
IP: 202.52.61.0/24
IP: 2402:4b00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141584 (0x22910)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 14 06:53:51 2025 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A915A549
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:da:02:f5:cc:15:ed:5f:40:37:35:24:85:9f:
86:df:d6:56:20:82:76:49:ba:12:f2:e9:b2:1d:a4:
1f:c8:0f:7c:b3:1b:fb:c3:eb:f8:fa:7b:3b:a7:5a:
4c:86:5a:59:a3:3c:48:89:66:6d:10:04:8a:e7:28:
c4:77:2b:4f:75:d4:54:9d:d5:92:e5:78:64:be:51:
39:fc:7f:c6:5e:85:72:41:e0:8e:a0:e6:89:b8:b1:
49:b5:8b:bd:e3:66:a1:42:0b:9d:ee:e5:a7:e1:99:
60:d3:b5:a7:cc:f2:3a:e5:98:c9:e0:24:a4:02:ba:
7c:25:28:22:46:f0:b9:76:cd:d5:69:58:51:23:9a:
e6:4a:7c:40:c5:76:4b:bd:61:68:52:a5:27:fe:72:
03:b6:18:6c:81:b0:5d:b7:4b:fc:38:91:4c:80:ea:
92:36:6d:29:4d:62:f5:e7:e4:a5:b4:43:6a:4e:9b:
aa:5c:4a:b2:12:12:57:f7:3a:f9:76:8e:4d:d4:e8:
af:ed:2c:16:33:55:a7:26:4f:e1:5c:bb:2d:97:1d:
6b:16:52:04:ba:1d:8a:01:2f:d1:61:d8:c4:c5:ba:
43:8a:22:22:88:e2:66:47:1d:b0:23:0d:c3:3e:ed:
a5:df:e8:b1:be:34:d6:26:57:96:27:35:9a:8b:6f:
5f:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:80:15:0A:C9:63:09:84:D3:8C:C6:F5:9C:3E:CC:75:1B:25:F3:E7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915A549/4D25BCAAD24411EF9E654B14C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915A549/4D25BCAAD24411EF9E654B14C4F9AE02/HIAVCsljCYTTjMb1nD7MdRsl8-c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55571
sbgp-ipAddrBlock: critical
IPv4:
202.52.61.0/24
IPv6:
2402:4b00::/32
Signature Algorithm: sha256WithRSAEncryption
60:07:70:33:0b:dc:bd:60:92:0f:1a:9b:ec:ea:dc:b6:bc:db:
10:b9:26:34:68:84:bb:dc:0d:c7:95:d6:92:41:b1:ba:ad:85:
c6:5e:79:0c:54:dc:d5:3a:59:6b:dc:21:d4:0d:95:2a:54:74:
04:d0:44:00:81:50:01:c9:aa:c2:c7:c8:ce:e6:d5:8b:ac:f9:
af:b6:a9:96:93:06:04:55:1b:57:61:24:02:4d:05:3b:31:93:
f7:9d:32:ee:17:0b:c0:bb:57:0e:34:da:d6:af:14:f4:d7:42:
21:87:8d:e8:d1:40:ba:30:4e:b4:28:cd:e5:12:00:f0:40:5b:
43:cc:1e:c3:76:9c:bc:d0:2c:3f:9f:95:17:dc:71:32:4f:b1:
69:67:82:38:7b:c5:d0:e0:92:cb:6f:e2:ee:82:aa:99:72:9f:
14:a7:03:a1:c7:d9:5f:f6:34:68:0d:f3:69:79:e7:59:c3:2b:
d8:b1:3c:e4:c8:de:e8:d6:2a:a7:64:76:9f:31:db:32:61:95:
bd:ba:31:ef:48:87:f2:61:98:a9:c0:3c:83:be:5e:0b:0a:6e:
de:6c:24:0f:c4:72:ae:40:2a:53:ab:55:64:ef:ca:fe:7b:aa:
5f:66:28:70:5c:31:23:4a:9f:13:10:37:e9:5a:b3:e1:a9:c4:
72:d4:e9:9b
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAikQMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDExNDA2NTM1MVoXDTI1MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNUE1NDkxMTAvBgNVBAUTKDFDODAxNTBBQzk2MzA5ODREMzhDQzZG
NTlDM0VDQzc1MUIyNUYzRTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC92gL1zBXtX0A3NSSFn4bf1lYggnZJuhLy6bIdpB/ID3yzG/vD6/j6ezunWkyG
WlmjPEiJZm0QBIrnKMR3K0911FSd1ZLleGS+UTn8f8ZehXJB4I6g5om4sUm1i73j
ZqFCC53u5afhmWDTtafM8jrlmMngJKQCunwlKCJG8Ll2zdVpWFEjmuZKfEDFdku9
YWhSpSf+cgO2GGyBsF23S/w4kUyA6pI2bSlNYvXn5KW0Q2pOm6pcSrISElf3Ovl2
jk3U6K/tLBYzVacmT+Fcuy2XHWsWUgS6HYoBL9Fh2MTFukOKIiKI4mZHHbAjDcM+
7aXf6LG+NNYmV5YnNZqLb1/XAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUHIAVCslj
CYTTjMb1nD7MdRsl8+cwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTVBNTQ5LzREMjVCQ0FBRDI0NDExRUY5RTY1NEIxNEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1QTU0OS80RDI1QkNBQUQyNDQxMUVGOUU2NTRCMTRDNEY5QUUwMi9ISUFWQ3Ns
akNZVFRqTWIxbkQ3TWRSc2w4LWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDANkTMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAyjQ9MA0EAgAC
MAcDBQAkAksAMA0GCSqGSIb3DQEBCwUAA4IBAQBgB3AzC9y9YJIPGpvs6ty2vNsQ
uSY0aIS73A3HldaSQbG6rYXGXnkMVNzVOllr3CHUDZUqVHQE0EQAgVAByarCx8jO
5tWLrPmvtqmWkwYEVRtXYSQCTQU7MZP3nTLuFwvAu1cONNrWrxT010Ihh43o0UC6
ME60KM3lEgDwQFtDzB7Ddpy80Cw/n5UX3HEyT7FpZ4I4e8XQ4JLLb+LugqqZcp8U
pwOhx9lf9jRoDfNpeedZwyvYsTzkyN7o1iqnZHafMdsyYZW9ujHvSIfyYZipwDyD
vl4LCm7ebCQPxHKuQCpTq1Vk78r+e6pfZihwXDEjSp8TEDfpWrPhqcRy1Omb
-----END CERTIFICATE-----
Generated at Fri Apr 4 02:05:13 2025 by rpki-client