Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_4zL5hh1Wh9Rmb0MgnYOjtuPhbo.cer
File: _4zL5hh1Wh9Rmb0MgnYOjtuPhbo.cer (raw, json)
Hash identifier: mq2AbJ2LchYcZPS38eSuh801gcVbaY0GKQWaRys6v18=
Subject key identifier: FF:8C:CB:E6:18:75:5A:1F:51:99:BD:0C:82:76:0E:8E:DB:8F:85:BA
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0238DE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915BC98/ABAFF5EA061211F08E9AE529C4F9AE02/_4zL5hh1Wh9Rmb0MgnYOjtuPhbo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915BC98/ABAFF5EA061211F08E9AE529C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 21 Mar 2025 05:09:36 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 153725
IP: 163.223.178.0/23
IP: 2401:f860::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145630 (0x238de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 21 05:09:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A915BC98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:4b:24:9a:55:b3:f3:34:38:f0:3f:02:08:f6:
95:80:bc:4b:a9:53:ec:f2:30:93:05:f6:ae:d5:2e:
5c:8a:35:cf:02:1c:16:f3:c5:83:5e:2f:4b:ee:8d:
10:dd:a0:fd:75:40:9e:12:ad:04:f2:60:b9:8c:09:
33:02:f6:92:c5:af:01:5f:8f:03:b3:cc:86:12:33:
ba:65:60:56:6c:a0:88:98:43:f5:aa:7e:a7:8b:6b:
d6:51:c5:e0:a8:37:07:28:01:64:6a:22:a8:95:8f:
79:59:b7:4c:f1:22:80:0d:d7:d2:8d:06:12:cd:4b:
0b:23:b9:cd:d9:cb:b2:bd:14:99:ae:80:a0:e4:76:
4a:1a:e1:b9:d3:2d:f3:0c:35:2c:be:71:3b:de:bc:
6a:32:ac:b3:d9:77:be:e7:af:38:d1:a7:4b:af:49:
8d:ce:b0:1b:fc:a9:a4:d5:3a:bc:6f:2f:7c:8d:8a:
f2:1f:83:d9:cb:7f:04:3f:8d:43:65:52:5b:45:2c:
97:dd:2b:12:b2:67:e5:54:0b:0b:a1:39:d8:c8:09:
b7:4d:af:1d:75:dc:3e:ca:95:52:10:39:86:be:13:
ea:f5:da:28:ef:9c:62:6e:ba:73:9e:91:ac:ef:c5:
2b:9f:76:59:c2:69:ac:e3:0b:7f:96:8c:2f:ce:cd:
3d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:8C:CB:E6:18:75:5A:1F:51:99:BD:0C:82:76:0E:8E:DB:8F:85:BA
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915BC98/ABAFF5EA061211F08E9AE529C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915BC98/ABAFF5EA061211F08E9AE529C4F9AE02/_4zL5hh1Wh9Rmb0MgnYOjtuPhbo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153725
sbgp-ipAddrBlock: critical
IPv4:
163.223.178.0/23
IPv6:
2401:f860::/32
Signature Algorithm: sha256WithRSAEncryption
36:d4:7d:4d:76:cb:36:73:cc:89:96:f4:48:80:4d:c3:1e:2a:
d6:cd:86:56:33:14:1b:4d:d7:bf:c5:0e:78:3f:da:37:af:7e:
ec:b9:f3:12:52:95:df:ac:44:17:f5:cb:07:af:3b:8e:ac:d2:
ad:f0:58:09:75:3e:52:75:3e:ba:51:ba:40:54:46:cc:cd:51:
ce:67:22:4f:f6:78:80:b4:92:23:af:db:a8:ef:2b:8e:06:36:
82:bd:75:0d:ed:b0:31:54:87:88:02:ef:c4:20:e1:8d:ad:d3:
a8:ab:db:3c:41:ec:d9:1b:06:05:36:51:6c:b9:9a:b4:44:3d:
ad:06:83:e0:5e:c0:9e:b9:57:38:33:83:4c:b6:77:99:7b:02:
4a:d9:5a:6f:0d:b9:63:db:8b:5b:5e:b2:75:99:49:d9:f1:ab:
cb:ea:16:87:73:c0:d7:43:22:ff:b4:c5:0e:81:5f:d0:6c:a5:
83:49:7a:e6:38:9b:22:46:09:4b:27:e8:04:e5:b1:71:7e:e0:
46:8a:6a:00:27:f6:5f:ff:a9:d3:b6:a5:f0:b0:b4:da:72:15:
f8:66:40:98:eb:a0:52:f0:66:b0:26:71:d5:bd:3a:4b:e1:50:
9b:63:82:91:a3:a5:6b:3f:37:7b:1c:ec:78:08:23:0f:c5:41:
d5:2a:2f:9f
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAjjeMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDMyMTA1MDkzNloXDTI2MDcwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNUJDOTgxMTAvBgNVBAUTKEZGOENDQkU2MTg3NTVBMUY1MTk5QkQw
QzgyNzYwRThFREI4Rjg1QkEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDsSySaVbPzNDjwPwII9pWAvEupU+zyMJMF9q7VLlyKNc8CHBbzxYNeL0vujRDd
oP11QJ4SrQTyYLmMCTMC9pLFrwFfjwOzzIYSM7plYFZsoIiYQ/WqfqeLa9ZRxeCo
NwcoAWRqIqiVj3lZt0zxIoAN19KNBhLNSwsjuc3Zy7K9FJmugKDkdkoa4bnTLfMM
NSy+cTvevGoyrLPZd77nrzjRp0uvSY3OsBv8qaTVOrxvL3yNivIfg9nLfwQ/jUNl
UltFLJfdKxKyZ+VUCwuhOdjICbdNrx113D7KlVIQOYa+E+r12ijvnGJuunOekazv
xSufdlnCaazjC3+WjC/OzT2TAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQU/4zL5hh1
Wh9Rmb0MgnYOjtuPhbowHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTVCQzk4L0FCQUZGNUVBMDYxMjExRjA4RTlBRTUyOUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1QkM5OC9BQkFGRjVFQTA2MTIxMUYwOEU5QUU1MjlDNEY5QUUwMi9fNHpMNWho
MVdoOVJtYjBNZ25ZT2p0dVBoYm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAlh9MC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBo9+yMA0EAgAC
MAcDBQAkAfhgMA0GCSqGSIb3DQEBCwUAA4IBAQA21H1Ndss2c8yJlvRIgE3DHirW
zYZWMxQbTde/xQ54P9o3r37sufMSUpXfrEQX9csHrzuOrNKt8FgJdT5SdT66UbpA
VEbMzVHOZyJP9niAtJIjr9uo7yuOBjaCvXUN7bAxVIeIAu/EIOGNrdOoq9s8QezZ
GwYFNlFsuZq0RD2tBoPgXsCeuVc4M4NMtneZewJK2VpvDblj24tbXrJ1mUnZ8avL
6haHc8DXQyL/tMUOgV/QbKWDSXrmOJsiRglLJ+gE5bFxfuBGimoAJ/Zf/6nTtqXw
sLTachX4ZkCY66BS8GawJnHVvTpL4VCbY4KRo6VrPzd7HOx4CCMPxUHVKi+f
-----END CERTIFICATE-----
Generated at Fri Apr 4 19:49:41 2025 by rpki-client