Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.cer
File: UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.cer (raw, json)
Hash identifier: ls2AyKru/fuJ3q+xaOg62tzmiGvjCB3OaIhN8Vzjnic=
Subject key identifier: 50:08:BE:04:1F:99:97:B2:59:D2:58:44:83:A5:3A:0D:FF:0B:17:8C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022728
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 03 Jan 2025 17:47:41 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 132080
IP: 103.11.216.0/22
IP: 2400:fa60::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141096 (0x22728)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 3 17:47:41 2025 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91A3D65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d1:6c:1f:50:6e:e3:0d:eb:53:b4:29:c8:ae:
c7:2a:b8:b7:b1:c3:ff:80:d9:76:72:5d:3e:88:f9:
bd:12:38:e5:0a:91:85:67:67:63:8d:10:ff:4e:90:
b5:27:f8:0b:94:99:87:f4:d8:fd:5d:82:56:71:ec:
cb:71:ed:4e:a1:b0:44:8e:c0:98:0e:5d:61:6e:bd:
e1:89:5a:1a:54:3b:bf:c9:6c:af:1a:bf:04:da:fd:
3e:c1:4c:02:20:c0:84:20:aa:a5:29:25:37:1f:7e:
a6:6c:ca:71:29:fb:b4:39:ee:a0:07:06:b4:3b:a4:
b9:77:b1:2e:24:fd:48:e0:74:9a:90:34:42:3e:15:
70:3a:53:87:ca:ec:5a:9f:ed:ae:20:de:b6:af:50:
a2:d4:23:c8:29:4a:d2:fd:ab:cd:6e:e3:b7:90:3c:
ff:f3:98:3f:da:8d:8d:a1:a9:10:01:32:d2:a2:cd:
76:79:62:ab:b8:ec:ff:23:81:16:18:2c:f2:80:e9:
55:6c:73:d1:f9:a3:58:ce:1b:ad:1f:0e:d1:52:4b:
38:67:66:03:8e:2c:7b:d7:bf:e5:08:cc:59:55:50:
66:45:20:56:d0:11:06:31:40:bc:65:30:97:a0:f8:
b4:58:44:44:34:c2:71:ee:47:f5:d9:e4:bc:0f:29:
39:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:08:BE:04:1F:99:97:B2:59:D2:58:44:83:A5:3A:0D:FF:0B:17:8C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132080
sbgp-ipAddrBlock: critical
IPv4:
103.11.216.0/22
IPv6:
2400:fa60::/32
Signature Algorithm: sha256WithRSAEncryption
22:ce:c7:62:55:7f:63:0d:a1:4a:ea:73:a3:c0:49:67:0d:64:
ed:2c:c6:1e:f4:c6:e4:03:6f:76:c2:41:ea:ed:9a:bf:6e:2d:
0e:a3:8c:36:99:15:8e:44:47:36:0e:2b:de:b8:71:4f:6c:ac:
7f:bd:f6:3e:da:f9:44:a8:9f:ff:35:b1:18:98:dd:e5:a5:03:
ab:6d:86:ca:d7:55:13:69:fc:64:32:a0:45:fe:13:0a:79:74:
d0:39:42:3d:a0:0a:a8:ef:34:61:e0:c8:53:37:e5:e4:c9:af:
49:0f:10:e8:5c:5e:f6:94:e5:bd:08:3f:92:c3:94:73:b9:18:
ff:16:04:d7:85:b4:ff:7e:10:e1:3f:3c:46:7e:36:3c:cf:98:
5a:8c:2d:c1:a3:cc:64:74:42:90:b0:f6:95:ef:08:7f:fc:2b:
c8:21:dc:bd:b1:0b:52:1a:9b:cc:0b:e5:79:bd:6d:bf:83:db:
ba:b0:3f:d7:27:86:5b:4e:53:e1:a6:21:4b:aa:00:3a:e5:8f:
46:08:0d:90:be:5a:d4:05:62:eb:8f:f8:ee:7b:74:93:2b:cb:
91:51:a1:1e:a0:b8:09:e3:15:8d:c7:72:a3:8c:dc:d5:0e:a8:
75:4c:8b:d2:32:b9:a1:f6:4f:02:d4:a7:47:7d:5f:1b:d5:96:
08:24:f2:2f
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAicoMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDEwMzE3NDc0MVoXDTI2MDEzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQTNENjUxMTAvBgNVBAUTKDUwMDhCRTA0MUY5OTk3QjI1OUQyNTg0
NDgzQTUzQTBERkYwQjE3OEMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDQ0WwfUG7jDetTtCnIrscquLexw/+A2XZyXT6I+b0SOOUKkYVnZ2ONEP9OkLUn
+AuUmYf02P1dglZx7Mtx7U6hsESOwJgOXWFuveGJWhpUO7/JbK8avwTa/T7BTAIg
wIQgqqUpJTcffqZsynEp+7Q57qAHBrQ7pLl3sS4k/UjgdJqQNEI+FXA6U4fK7Fqf
7a4g3ravUKLUI8gpStL9q81u47eQPP/zmD/ajY2hqRABMtKizXZ5Yqu47P8jgRYY
LPKA6VVsc9H5o1jOG60fDtFSSzhnZgOOLHvXv+UIzFlVUGZFIFbQEQYxQLxlMJeg
+LRYREQ0wnHuR/XZ5LwPKTmtAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUUAi+BB+Z
l7JZ0lhEg6U6Df8LF4wwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUEzRDY1L0VBMUU2MkQ2N0M3NTExRUQ4QkU2NUIzOEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFBM0Q2NS9FQTFFNjJENjdDNzUxMUVEOEJFNjVCMzhDNEY5QUUwMi9VQWktQkIt
Wmw3SlowbGhFZzZVNkRmOExGNHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAgPwMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZwvYMA0EAgAC
MAcDBQAkAPpgMA0GCSqGSIb3DQEBCwUAA4IBAQAizsdiVX9jDaFK6nOjwElnDWTt
LMYe9MbkA292wkHq7Zq/bi0Oo4w2mRWOREc2DiveuHFPbKx/vfY+2vlEqJ//NbEY
mN3lpQOrbYbK11UTafxkMqBF/hMKeXTQOUI9oAqo7zRh4MhTN+Xkya9JDxDoXF72
lOW9CD+Sw5RzuRj/FgTXhbT/fhDhPzxGfjY8z5hajC3Bo8xkdEKQsPaV7wh//CvI
Idy9sQtSGpvMC+V5vW2/g9u6sD/XJ4ZbTlPhpiFLqgA65Y9GCA2QvlrUBWLrj/ju
e3STK8uRUaEeoLgJ4xWNx3KjjNzVDqh1TIvSMrmh9k8C1KdHfV8b1ZYIJPIv
-----END CERTIFICATE-----
Generated at Fri Apr 4 02:19:59 2025 by rpki-client