Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAFITP9u_F0ACyYp-RFr4jXErDY.cer
File: WAFITP9u_F0ACyYp-RFr4jXErDY.cer (raw, json)
Hash identifier: MJ/AMN95QByz9RvuqWfWVxbXN7sWPWj7jLlqrpRuqcY=
Subject key identifier: 58:01:48:4C:FF:6E:FC:5D:00:0B:26:29:F9:11:6B:E2:35:C4:AC:36
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023BBF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914C531/0B0D0F665D5B11EFA4F32B13C4F9AE02/WAFITP9u_F0ACyYp-RFr4jXErDY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914C531/0B0D0F665D5B11EFA4F32B13C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 01 Apr 2025 17:41:52 +0000
Certificate not after: Fri 01 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 150722
IP: 103.69.160.0/23
IP: 2001:df1:d4c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 12 Apr 2025 05:11:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146367 (0x23bbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Apr 1 17:41:52 2025 GMT
Not After : Aug 1 00:00:00 2025 GMT
Subject: CN=A914C531
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:79:65:fe:b8:d5:ef:bc:e2:2e:bb:8e:18:18:
2b:95:25:e4:44:f1:6e:5e:71:60:03:f8:fe:15:81:
34:b7:cf:c3:6f:47:ad:9d:f8:b4:24:d6:af:7d:0c:
56:b1:0c:b8:07:08:73:6b:53:c2:db:18:5d:da:59:
d2:36:c5:94:fd:ff:7e:a6:cb:d4:49:32:da:0b:0c:
d1:09:5d:0f:23:c3:ce:3e:d1:de:15:a9:ae:e2:be:
b1:59:c3:2c:5a:cd:36:01:ec:48:fe:35:18:16:58:
f5:cd:2f:bb:42:84:d9:5a:91:6a:9b:97:a1:a7:22:
e6:d0:9e:87:d2:4a:88:75:76:bc:ec:9c:a5:b6:d6:
6d:3c:1a:33:0b:ce:da:68:b0:ef:d7:bb:ca:f2:0f:
73:61:2b:ec:e0:98:fc:11:33:b8:e6:51:7b:93:aa:
fb:87:b5:38:8f:6b:ed:6b:94:d5:a2:2a:b7:aa:10:
0f:ce:d0:45:c3:57:3a:70:60:42:56:2e:8c:67:fd:
fa:a3:5a:02:8b:a3:c0:1e:b2:ac:8f:16:ec:ee:39:
16:2a:1d:ab:17:2c:00:a1:32:47:54:d5:82:24:1c:
54:0c:95:14:65:a3:6f:51:4f:8b:83:73:7d:85:c0:
ec:5c:bf:6f:b5:c0:da:8e:d2:87:f5:01:dd:53:e0:
01:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:01:48:4C:FF:6E:FC:5D:00:0B:26:29:F9:11:6B:E2:35:C4:AC:36
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914C531/0B0D0F665D5B11EFA4F32B13C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914C531/0B0D0F665D5B11EFA4F32B13C4F9AE02/WAFITP9u_F0ACyYp-RFr4jXErDY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150722
sbgp-ipAddrBlock: critical
IPv4:
103.69.160.0/23
IPv6:
2001:df1:d4c0::/48
Signature Algorithm: sha256WithRSAEncryption
1c:5e:d4:04:ce:00:c1:8a:ed:64:7d:54:6f:41:d7:08:91:6b:
ed:81:ad:cd:1c:00:46:be:7d:cb:a0:3d:55:45:2b:f0:26:65:
69:44:01:c0:cf:3c:4f:e8:77:45:86:cd:ac:32:95:3e:47:09:
5d:07:af:d1:91:6a:35:64:d4:da:3d:c9:67:95:a1:c2:50:cf:
58:3c:e6:b0:51:c3:c5:46:13:99:a6:ae:ad:71:2a:b2:f5:7d:
66:b9:a8:c3:45:04:e5:3f:9e:81:e1:91:22:d3:1a:59:e7:c5:
34:51:b1:b7:6e:0e:bc:cb:ee:b1:72:18:8f:e4:06:77:e1:d6:
9a:89:65:ca:6b:e6:30:c0:3a:8d:44:5f:7e:4d:5f:4f:7e:8d:
34:4c:1c:9f:4f:51:b5:29:1f:5a:d5:5f:8e:be:c9:79:35:2a:
23:63:82:73:2b:c7:8c:ad:20:5f:ac:49:32:f8:e7:da:07:88:
c5:5c:10:13:9f:b7:a4:ba:88:d8:55:cb:73:8b:ec:ea:6f:35:
fc:40:a7:c3:e8:a3:b1:1b:77:b1:04:9e:14:58:d8:0c:44:f5:
41:96:70:d3:38:15:56:b9:2d:2f:69:68:ff:ee:46:df:ab:cc:
c4:a9:9d:40:72:40:9f:ce:9e:cf:9e:66:ed:2c:8b:47:0c:28:
7f:ce:0b:fb
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAju/MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDQwMTE3NDE1MloXDTI1MDgwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNEM1MzExMTAvBgNVBAUTKDU4MDE0ODRDRkY2RUZDNUQwMDBCMjYy
OUY5MTE2QkUyMzVDNEFDMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQD3eWX+uNXvvOIuu44YGCuVJeRE8W5ecWAD+P4VgTS3z8NvR62d+LQk1q99DFax
DLgHCHNrU8LbGF3aWdI2xZT9/36my9RJMtoLDNEJXQ8jw84+0d4Vqa7ivrFZwyxa
zTYB7Ej+NRgWWPXNL7tChNlakWqbl6GnIubQnofSSoh1drzsnKW21m08GjMLztpo
sO/Xu8ryD3NhK+zgmPwRM7jmUXuTqvuHtTiPa+1rlNWiKreqEA/O0EXDVzpwYEJW
Loxn/fqjWgKLo8AesqyPFuzuORYqHasXLAChMkdU1YIkHFQMlRRlo29RT4uDc32F
wOxcv2+1wNqO0of1Ad1T4AGjAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUWAFITP9u
/F0ACyYp+RFr4jXErDYwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTRDNTMxLzBCMEQwRjY2NUQ1QjExRUZBNEYzMkIxM0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE0QzUzMS8wQjBEMEY2NjVENUIxMUVGQTRGMzJCMTNDNEY5QUUwMi9XQUZJVFA5
dV9GMEFDeVlwLVJGcjRqWEVyRFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAkzCMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ0WgMA8EAgAC
MAkDBwAgAQ3x1MAwDQYJKoZIhvcNAQELBQADggEBABxe1ATOAMGK7WR9VG9B1wiR
a+2Brc0cAEa+fcugPVVFK/AmZWlEAcDPPE/od0WGzawylT5HCV0Hr9GRajVk1No9
yWeVocJQz1g85rBRw8VGE5mmrq1xKrL1fWa5qMNFBOU/noHhkSLTGlnnxTRRsbdu
DrzL7rFyGI/kBnfh1pqJZcpr5jDAOo1EX35NX09+jTRMHJ9PUbUpH1rVX46+yXk1
KiNjgnMrx4ytIF+sSTL459oHiMVcEBOft6S6iNhVy3OL7OpvNfxAp8Poo7Ebd7EE
nhRY2AxE9UGWcNM4FVa5LS9paP/uRt+rzMSpnUByQJ/Ons+eZu0si0cMKH/OC/s=
-----END CERTIFICATE-----
Generated at Sat Apr 5 07:46:43 2025 by rpki-client