Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vn-asrLHlpJoXAMFWvlp5gtmuAA.cer
File: Vn-asrLHlpJoXAMFWvlp5gtmuAA.cer (raw, json)
Hash identifier: jbNU1nMU4ZrW/IevH84GCI7+ouGM49NtDhyIg1Roe0g=
Subject key identifier: 56:7F:9A:B2:B2:C7:96:92:68:5C:03:05:5A:F9:69:E6:0B:66:B8:00
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0225C1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91ADB98/E2DA8518492111EDABD59C53C4F9AE02/Vn-asrLHlpJoXAMFWvlp5gtmuAA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91ADB98/E2DA8518492111EDABD59C53C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 30 Dec 2024 20:41:22 +0000
Certificate not after: Wed 30 Apr 2025 00:00:00 +0000
Subordinate resources: AS: 45867
AS: 132621
IP: 203.17.185.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140737 (0x225c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 30 20:41:22 2024 GMT
Not After : Apr 30 00:00:00 2025 GMT
Subject: CN=A91ADB98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:06:44:c5:77:c2:4b:1b:fe:b0:0a:ea:c8:37:
9c:dc:ef:6d:8e:6b:04:6d:ed:83:e3:f2:c5:0d:75:
e8:04:eb:c8:02:50:06:c0:dd:f3:dc:38:5e:65:11:
ff:d7:ce:ad:77:ec:31:5a:d7:9b:b9:6a:59:c3:7d:
d9:82:86:22:a9:88:ec:c5:16:2c:a7:85:33:57:e9:
d9:70:a6:a7:fd:a2:97:aa:db:10:fd:7b:a4:f9:d0:
b8:c2:c8:0f:4c:63:51:bf:61:e2:8f:83:69:ab:1b:
28:11:34:10:a6:d3:34:81:a4:13:a1:53:80:7b:6b:
92:b2:31:ee:e1:bb:1a:c7:f9:7b:af:38:d3:7a:62:
ed:4e:b3:57:81:f2:25:28:2e:99:eb:7d:08:4b:48:
bb:10:2d:9c:36:9e:39:31:da:2e:8c:16:8d:4e:90:
27:1d:47:51:e5:bd:66:aa:9d:c0:9d:34:6a:a5:bd:
44:bd:42:5d:38:59:5f:f6:64:ae:40:b7:aa:dc:9c:
fa:34:3c:9a:e5:d4:02:9e:53:d0:f3:53:ff:e3:64:
83:99:59:51:94:86:b8:bf:b2:b7:31:0a:62:df:b6:
9f:37:3f:3d:7f:89:de:64:3f:73:a2:5a:ab:e5:b4:
21:6b:81:f7:50:44:1d:35:07:cf:42:be:39:e2:f6:
03:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:7F:9A:B2:B2:C7:96:92:68:5C:03:05:5A:F9:69:E6:0B:66:B8:00
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91ADB98/E2DA8518492111EDABD59C53C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91ADB98/E2DA8518492111EDABD59C53C4F9AE02/Vn-asrLHlpJoXAMFWvlp5gtmuAA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
45867
132621
sbgp-ipAddrBlock: critical
IPv4:
203.17.185.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:95:f6:1e:ab:1d:ed:5b:42:f4:09:48:ee:97:bc:b3:19:cc:
0a:55:22:8b:f8:1f:6a:90:4d:14:9c:a5:48:0b:26:45:d6:d0:
2f:49:af:f7:63:6b:c4:2c:46:ec:6b:78:e0:f7:fd:d9:28:a0:
f0:25:b8:4b:b4:24:8f:b3:e3:de:0b:b8:39:a9:5a:e8:89:96:
95:26:9a:0f:03:cb:9d:1d:02:f3:75:2d:0a:e4:c1:2f:73:4c:
61:50:d6:99:4c:d8:d3:35:a5:cc:81:18:1a:c2:c8:3d:a2:5a:
ea:05:dd:8f:e7:02:f8:eb:e8:5d:01:5a:e2:b2:3c:95:4b:97:
3c:51:37:e7:39:0e:a6:e4:b3:34:28:61:1c:51:22:d8:1d:f2:
3e:fb:bd:3d:af:ee:9e:2b:fb:df:f3:91:74:93:8f:21:4b:a9:
df:3d:6d:4b:7c:3f:34:c5:ef:39:ce:d0:d5:ab:c9:fb:ed:6a:
2f:55:8f:fb:83:86:ce:77:b7:86:89:5b:03:cc:62:8c:15:8b:
61:df:d3:70:1c:b7:ac:7b:25:58:b0:6d:55:ad:32:4a:b7:e9:
3b:5d:bc:93:6b:ce:82:a6:12:49:8c:43:56:d3:bd:d1:66:e6:
05:7e:0e:57:e7:53:e9:c8:da:69:a5:52:37:26:5c:00:0e:9e:
27:21:27:ce
-----BEGIN CERTIFICATE-----
MIIGHzCCBQegAwIBAgIDAiXBMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTIzMDIwNDEyMloXDTI1MDQzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQURCOTgxMTAvBgNVBAUTKDU2N0Y5QUIyQjJDNzk2OTI2ODVDMDMw
NTVBRjk2OUU2MEI2NkI4MDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDQBkTFd8JLG/6wCurIN5zc722OawRt7YPj8sUNdegE68gCUAbA3fPcOF5lEf/X
zq137DFa15u5alnDfdmChiKpiOzFFiynhTNX6dlwpqf9opeq2xD9e6T50LjCyA9M
Y1G/YeKPg2mrGygRNBCm0zSBpBOhU4B7a5KyMe7huxrH+XuvONN6Yu1Os1eB8iUo
LpnrfQhLSLsQLZw2njkx2i6MFo1OkCcdR1HlvWaqncCdNGqlvUS9Ql04WV/2ZK5A
t6rcnPo0PJrl1AKeU9DzU//jZIOZWVGUhri/srcxCmLftp83Pz1/id5kP3OiWqvl
tCFrgfdQRB01B89Cvjni9gMHAgMBAAGjggMUMIIDEDAdBgNVHQ4EFgQUVn+asrLH
lpJoXAMFWvlp5gtmuAAwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUFEQjk4L0UyREE4NTE4NDkyMTExRURBQkQ1OUM1M0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFBREI5OC9FMkRBODUxODQ5MjExMUVEQUJENTlDNTNDNEY5QUUwMi9Wbi1hc3JM
SGxwSm9YQU1GV3ZscDVndG11QUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQgBAf8EEDAO
oAwwCgIDALMrAgMCBg0wHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLEbkw
DQYJKoZIhvcNAQELBQADggEBAMmV9h6rHe1bQvQJSO6XvLMZzApVIov4H2qQTRSc
pUgLJkXW0C9Jr/dja8QsRuxreOD3/dkooPAluEu0JI+z494LuDmpWuiJlpUmmg8D
y50dAvN1LQrkwS9zTGFQ1plM2NM1pcyBGBrCyD2iWuoF3Y/nAvjr6F0BWuKyPJVL
lzxRN+c5DqbkszQoYRxRItgd8j77vT2v7p4r+9/zkXSTjyFLqd89bUt8PzTF7znO
0NWryfvtai9Vj/uDhs53t4aJWwPMYowVi2Hf03Act6x7JViwbVWtMkq36TtdvJNr
zoKmEkmMQ1bTvdFm5gV+DlfnU+nI2mmlUjcmXAAOnichJ84=
-----END CERTIFICATE-----
Generated at Fri Apr 4 11:04:39 2025 by rpki-client