Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/apjAwIy9NBmpCCuGDSm_qXL98qc.cer
File: apjAwIy9NBmpCCuGDSm_qXL98qc.cer (raw, json)
Hash identifier: GNIRR/uW8Wut93vHiu/+oxvZ3kgOL8r7q3NcgpJLkf8=
Subject key identifier: 6A:98:C0:C0:8C:BD:34:19:A9:08:2B:86:0D:29:BF:A9:72:FD:F2:A7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022196
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/apjAwIy9NBmpCCuGDSm_qXL98qc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 09 Dec 2024 17:19:37 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 149012
IP: 103.176.82.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139670 (0x22196)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 9 17:19:37 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91A2BD6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f4:1c:a5:9c:66:ed:6d:d1:46:ed:e5:2b:d5:
30:fd:66:10:5c:2f:73:be:59:60:a2:ba:60:19:e3:
a6:25:56:f2:73:ac:52:84:5a:02:2a:db:7a:ce:8b:
29:35:df:59:fb:a8:1c:b7:de:af:b9:ab:0b:59:16:
4e:9d:f1:94:c3:de:54:cd:6a:a6:5b:0a:b5:ce:d4:
51:0e:e6:48:f1:1f:35:21:e8:2a:b8:cc:32:f1:05:
a6:d8:36:0b:59:e6:af:19:4e:18:df:b4:dd:d4:e3:
1b:c0:aa:60:b0:9d:21:dc:7b:c4:96:c3:9f:56:fb:
da:df:32:f7:2f:b3:fd:8c:6d:30:cb:84:80:19:ad:
0a:bb:a0:8a:1e:98:40:10:2a:01:24:45:b9:c6:e8:
1d:19:85:64:aa:3b:f3:21:02:47:fd:0e:be:02:cd:
03:a7:02:97:c9:3c:0c:d8:db:7f:cf:af:5c:37:09:
b9:96:f4:70:0c:60:f3:ce:8f:ea:ee:42:29:56:7e:
c1:6a:ca:a3:e9:a8:cd:a5:18:7c:47:4c:99:d4:d2:
6a:60:cd:84:ba:a2:fd:32:e9:45:8a:96:1b:52:25:
ca:76:7b:fa:52:ce:a6:b0:c5:bb:63:87:0c:88:e7:
3c:48:3c:5a:40:fb:23:ef:30:4f:82:23:12:70:fa:
33:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:98:C0:C0:8C:BD:34:19:A9:08:2B:86:0D:29:BF:A9:72:FD:F2:A7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/apjAwIy9NBmpCCuGDSm_qXL98qc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149012
sbgp-ipAddrBlock: critical
IPv4:
103.176.82.0/23
Signature Algorithm: sha256WithRSAEncryption
d1:4a:bc:0e:0c:ff:03:94:fd:38:dc:af:45:9a:7f:d9:d2:d0:
f9:ff:01:82:bc:3b:d4:4c:58:94:6b:d9:d9:76:eb:e2:ab:90:
90:03:0e:94:88:d7:2f:21:10:0e:c6:6f:37:cd:df:b4:d8:e1:
5b:99:03:b7:ed:d1:55:a9:a3:5e:5c:26:24:52:6e:76:b8:ee:
5d:19:52:5e:02:ae:91:b9:63:15:6d:31:fe:b5:fc:ad:d6:68:
4f:4b:82:29:2f:aa:f9:99:34:42:58:83:97:7d:94:c0:37:2e:
29:86:a6:fa:e1:af:e3:c6:b1:58:e0:b5:fe:35:eb:50:75:8f:
d2:cc:e1:d2:2c:16:bd:28:f2:c7:a1:33:aa:8b:a7:19:b0:e1:
ca:d6:98:85:a2:5e:60:4c:b7:4f:6b:3d:42:36:ee:32:ca:d9:
3c:92:7f:e7:b3:cf:68:bc:d3:73:d9:68:2c:21:71:c8:de:35:
9d:ae:b8:f2:65:3a:5d:a3:fe:1a:c0:c3:82:b1:67:91:8e:24:
e3:bd:1c:ef:fd:f5:21:21:40:60:b0:e1:26:a8:a2:6a:c0:1f:
d4:48:80:29:6a:71:0a:cd:e6:04:e4:6c:bd:71:9f:f6:8f:32:
32:3e:46:9b:88:be:a3:fb:3b:3a:a1:1f:5d:64:d8:7d:c7:d2:
4c:43:51:a4
-----BEGIN CERTIFICATE-----
MIIGGjCCBQKgAwIBAgIDAiGWMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTIwOTE3MTkzN1oXDTI2MDMwMjAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQTJCRDYxMTAvBgNVBAUTKDZBOThDMEMwOENCRDM0MTlBOTA4MkI4
NjBEMjlCRkE5NzJGREYyQTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDV9BylnGbtbdFG7eUr1TD9ZhBcL3O+WWCiumAZ46YlVvJzrFKEWgIq23rOiyk1
31n7qBy33q+5qwtZFk6d8ZTD3lTNaqZbCrXO1FEO5kjxHzUh6Cq4zDLxBabYNgtZ
5q8ZThjftN3U4xvAqmCwnSHce8SWw59W+9rfMvcvs/2MbTDLhIAZrQq7oIoemEAQ
KgEkRbnG6B0ZhWSqO/MhAkf9Dr4CzQOnApfJPAzY23/Pr1w3CbmW9HAMYPPOj+ru
QilWfsFqyqPpqM2lGHxHTJnU0mpgzYS6ov0y6UWKlhtSJcp2e/pSzqawxbtjhwyI
5zxIPFpA+yPvME+CIxJw+jP7AgMBAAGjggMPMIIDCzAdBgNVHQ4EFgQUapjAwIy9
NBmpCCuGDSm/qXL98qcwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUEyQkQ2LzlDNTg1REIwNjMxNTExRUNCQTUzNjk2OUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFBMkJENi85QzU4NURCMDYzMTUxMUVDQkE1MzY5NjlDNEY5QUUwMi9hcGpBd0l5
OU5CbXBDQ3VHRFNtX3FYTDk4cWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAkYUMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7BSMA0GCSqG
SIb3DQEBCwUAA4IBAQDRSrwODP8DlP043K9Fmn/Z0tD5/wGCvDvUTFiUa9nZduvi
q5CQAw6UiNcvIRAOxm83zd+02OFbmQO37dFVqaNeXCYkUm52uO5dGVJeAq6RuWMV
bTH+tfyt1mhPS4IpL6r5mTRCWIOXfZTANy4phqb64a/jxrFY4LX+NetQdY/SzOHS
LBa9KPLHoTOqi6cZsOHK1piFol5gTLdPaz1CNu4yytk8kn/ns89ovNNz2WgsIXHI
3jWdrrjyZTpdo/4awMOCsWeRjiTjvRzv/fUhIUBgsOEmqKJqwB/USIApanEKzeYE
5Gy9cZ/2jzIyPkabiL6j+zs6oR9dZNh9x9JMQ1Gk
-----END CERTIFICATE-----
Generated at Sat Apr 5 02:35:28 2025 by rpki-client