Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SldfK_MxJGL4VkYa6d3Qo4RKvS8.cer
File: SldfK_MxJGL4VkYa6d3Qo4RKvS8.cer (raw, json)
Hash identifier: L/Cp9sOGKyBUdQE/U3D2SjKgMeYLMRw7raX/8ypvdoc=
Subject key identifier: 4A:57:5F:2B:F3:31:24:62:F8:56:46:1A:E9:DD:D0:A3:84:4A:BD:2F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021EB6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E01A9/83C31108335C11E6A8000F4DC4F9AE02/SldfK_MxJGL4VkYa6d3Qo4RKvS8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E01A9/83C31108335C11E6A8000F4DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 29 Nov 2024 21:21:07 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 134787
IP: 103.9.20.0/23
IP: 2001:df7:2400::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138934 (0x21eb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 29 21:21:07 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91E01A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:44:4b:ab:1d:d7:cf:0f:fc:b9:78:51:b8:6c:
f6:17:94:51:47:d8:5e:00:d5:74:db:7c:49:05:a0:
c3:e8:47:f7:2c:98:16:36:27:eb:c6:c0:4e:c6:cb:
d9:d8:35:0a:93:49:74:e1:f8:ba:a9:14:9b:81:08:
26:6f:e7:8c:e3:b4:c9:5e:3d:3b:e5:7b:27:17:f3:
06:97:46:04:de:07:0e:5a:ae:5f:8c:68:e2:3e:4e:
8f:53:58:0f:03:05:e0:71:88:b7:3c:5b:a7:64:fb:
92:5d:74:26:9c:ab:79:ef:db:28:30:e2:86:bf:6b:
c9:32:26:5e:39:41:c0:ab:9a:0c:8a:4d:40:0e:b2:
b1:73:06:61:a3:ac:5c:5f:1d:5c:30:1b:63:37:72:
7f:a4:16:b5:a0:32:ea:6c:72:4e:12:a4:cd:ba:24:
ed:b3:26:9c:ab:f0:77:76:3e:b8:68:99:43:49:89:
61:58:ca:3c:e1:fc:af:f1:de:1b:dd:30:7d:ba:59:
63:21:a2:ee:2f:b0:27:7d:73:3a:96:bb:44:1c:68:
03:19:fa:9d:43:34:79:2e:88:2b:10:da:78:ca:80:
a2:23:33:fd:7b:99:96:30:c9:96:4b:1d:58:27:7a:
76:98:80:15:11:40:df:0f:a6:4f:c6:db:3c:fc:2a:
d9:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:57:5F:2B:F3:31:24:62:F8:56:46:1A:E9:DD:D0:A3:84:4A:BD:2F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E01A9/83C31108335C11E6A8000F4DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E01A9/83C31108335C11E6A8000F4DC4F9AE02/SldfK_MxJGL4VkYa6d3Qo4RKvS8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134787
sbgp-ipAddrBlock: critical
IPv4:
103.9.20.0/23
IPv6:
2001:df7:2400::/48
Signature Algorithm: sha256WithRSAEncryption
45:de:25:ec:26:01:d8:0c:95:19:40:2f:98:67:d0:81:08:99:
0c:b4:e0:ef:2a:9b:bd:c9:a6:da:8a:fa:1e:c9:f5:7b:c2:6e:
44:e1:44:1b:88:b9:69:11:b6:0d:00:0a:35:14:18:8b:6f:68:
bc:43:e9:d8:0a:04:b4:1d:61:cf:8f:3b:96:2d:90:c3:c0:27:
49:4c:c5:2a:a0:06:7f:bd:87:e7:07:03:40:5a:de:f1:bb:e5:
bf:66:15:a6:53:f0:13:c2:08:f1:bc:6a:68:3a:28:57:8e:11:
a2:6b:20:50:ac:f6:40:98:2f:4f:f6:d2:19:5e:84:51:bb:25:
a3:3c:19:ad:0f:d8:01:ea:ef:db:e7:bc:12:8e:ce:44:e2:cf:
fa:77:17:cd:4f:91:7b:d9:f4:bd:80:67:bf:6c:b8:bc:91:3a:
ed:4d:43:f9:e1:95:c0:96:e0:38:20:62:0d:55:57:01:72:19:
6a:4f:64:32:cb:c4:cc:25:e9:a4:d4:af:a7:81:7b:90:46:6c:
c1:0e:c3:b2:57:3b:65:19:98:84:b9:5d:25:2e:95:92:cb:57:
95:46:3c:ca:c9:d3:50:5d:39:06:37:8c:08:71:4d:8c:0c:21:
7e:ab:0e:10:9d:6e:91:13:b5:30:16:f7:c8:1d:94:20:f8:ef:
39:03:68:f8
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAh62MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTEyOTIxMjEwN1oXDTI2MDEzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRTAxQTkxMTAvBgNVBAUTKDRBNTc1RjJCRjMzMTI0NjJGODU2NDYx
QUU5REREMEEzODQ0QUJEMkYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDOREurHdfPD/y5eFG4bPYXlFFH2F4A1XTbfEkFoMPoR/csmBY2J+vGwE7Gy9nY
NQqTSXTh+LqpFJuBCCZv54zjtMlePTvleycX8waXRgTeBw5arl+MaOI+To9TWA8D
BeBxiLc8W6dk+5JddCacq3nv2ygw4oa/a8kyJl45QcCrmgyKTUAOsrFzBmGjrFxf
HVwwG2M3cn+kFrWgMupsck4SpM26JO2zJpyr8Hd2PrhomUNJiWFYyjzh/K/x3hvd
MH26WWMhou4vsCd9czqWu0QcaAMZ+p1DNHkuiCsQ2njKgKIjM/17mZYwyZZLHVgn
enaYgBURQN8Ppk/G2zz8KtkXAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUSldfK/Mx
JGL4VkYa6d3Qo4RKvS8wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUUwMUE5LzgzQzMxMTA4MzM1QzExRTZBODAwMEY0REM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFFMDFBOS84M0MzMTEwODMzNUMxMUU2QTgwMDBGNERDNEY5QUUwMi9TbGRmS19N
eEpHTDRWa1lhNmQzUW80Ukt2UzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAg6DMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZwkUMA8EAgAC
MAkDBwAgAQ33JAAwDQYJKoZIhvcNAQELBQADggEBAEXeJewmAdgMlRlAL5hn0IEI
mQy04O8qm73JptqK+h7J9XvCbkThRBuIuWkRtg0ACjUUGItvaLxD6dgKBLQdYc+P
O5YtkMPAJ0lMxSqgBn+9h+cHA0Ba3vG75b9mFaZT8BPCCPG8amg6KFeOEaJrIFCs
9kCYL0/20hlehFG7JaM8Ga0P2AHq79vnvBKOzkTiz/p3F81PkXvZ9L2AZ79suLyR
Ou1NQ/nhlcCW4DggYg1VVwFyGWpPZDLLxMwl6aTUr6eBe5BGbMEOw7JXO2UZmIS5
XSUulZLLV5VGPMrJ01BdOQY3jAhxTYwMIX6rDhCdbpETtTAW98gdlCD47zkDaPg=
-----END CERTIFICATE-----
Generated at Fri Apr 4 11:02:19 2025 by rpki-client