Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bywgdVh2TqtQ74UGb3hZDOWxxWE.cer
File: bywgdVh2TqtQ74UGb3hZDOWxxWE.cer (raw, json)
Hash identifier: IbemjDd1OYGyUed+lybj+NJoWPWa+p/dC8db0z8VU20=
Subject key identifier: 6F:2C:20:75:58:76:4E:AB:50:EF:85:06:6F:78:59:0C:E5:B1:C5:61
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022527
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Dec 2024 18:11:26 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 138443
IP: 103.125.136.0/22
IP: 2403:f540::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140583 (0x22527)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 27 18:11:26 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91995D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ab:25:1e:74:13:5b:b1:dd:75:f4:44:2e:6e:
4c:20:d5:51:37:e9:69:bb:3e:ca:bb:82:f6:3d:93:
a0:6f:26:e4:3c:eb:0e:ff:c7:0c:8f:64:53:b9:5a:
9f:48:95:3a:f3:ce:76:7e:40:c5:d2:fd:c1:44:c1:
0c:07:a8:ee:b5:a6:d9:4a:88:b5:99:c0:ed:02:86:
cb:3b:a5:8e:94:25:6a:d6:a3:5e:41:3e:6e:e3:4e:
75:50:31:c3:1e:a2:6a:9e:82:58:34:47:0a:f4:81:
31:c2:f2:bf:18:cf:0e:f8:d5:a2:98:34:a2:e1:c9:
86:81:d3:37:f2:3c:14:d1:d2:b6:2a:d6:11:e0:1c:
f7:fb:19:ce:f4:66:93:7a:89:4c:62:38:01:27:5f:
f4:06:0a:f2:a5:ee:8d:87:04:80:07:99:7b:4a:2e:
c7:35:c9:62:37:6e:c3:bd:30:00:b9:2c:9d:ac:a0:
22:b0:6f:b3:12:6e:f3:fb:d2:8a:17:b4:7b:bf:bf:
14:2d:fa:31:54:1e:29:b0:f9:91:bc:62:e6:e8:75:
63:03:c6:f0:5c:a3:8a:a7:a2:b9:cd:26:b2:4a:bd:
0d:b7:61:b2:70:3b:a9:8a:41:28:ec:e3:c3:75:30:
ea:bf:fa:04:51:db:fd:27:0c:11:7c:9a:3e:44:1c:
e4:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:2C:20:75:58:76:4E:AB:50:EF:85:06:6F:78:59:0C:E5:B1:C5:61
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138443
sbgp-ipAddrBlock: critical
IPv4:
103.125.136.0/22
IPv6:
2403:f540::/32
Signature Algorithm: sha256WithRSAEncryption
3e:96:65:9c:b8:3a:6d:13:1d:1e:c2:e8:a5:dc:9e:17:b6:85:
b7:4d:5e:25:d2:f4:f9:10:a4:45:58:ae:5f:3f:9b:61:fb:e5:
07:d2:64:22:1c:b4:65:02:38:17:6f:a0:f2:7f:e5:bb:40:e6:
23:bd:da:b1:f8:fa:01:bd:e8:8e:de:cc:ef:02:2c:10:da:de:
a8:2e:7b:53:aa:e3:74:b3:fa:ed:61:17:a9:8f:8d:2b:0f:7f:
71:b6:40:48:f5:a6:0c:48:8f:5f:51:2c:32:46:d5:ce:ff:40:
5c:03:80:00:51:93:7b:05:6b:ab:07:cd:a0:20:4c:58:0e:87:
a0:22:b3:64:09:3a:81:4f:71:08:3a:ba:e0:53:a2:ad:ae:f8:
6c:c0:08:e1:f8:ea:87:d4:e5:fd:23:0e:a4:a2:3c:47:87:bc:
06:9e:3c:ba:f3:df:81:1a:99:0f:bb:12:d6:3d:38:6c:9b:ca:
06:bd:51:73:4a:7a:d3:64:1b:6d:11:a0:ef:7c:8a:ee:66:42:
6a:72:db:fe:ea:6b:f1:53:67:5e:94:ba:c3:7b:88:ea:f6:27:
81:a3:63:d7:82:4e:e7:75:7e:7c:ef:0a:bc:f0:a8:28:3e:98:
00:92:9c:a2:c1:af:4c:03:90:e5:16:4a:1d:04:d7:ba:1c:01:
d0:df:68:5d
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAiUnMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTIyNzE4MTEyNloXDTI2MDMwMjAwMDAwMFowRjERMA8G
A1UEAxMIQTkxOTk1RDUxMTAvBgNVBAUTKDZGMkMyMDc1NTg3NjRFQUI1MEVGODUw
NjZGNzg1OTBDRTVCMUM1NjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCnqyUedBNbsd119EQubkwg1VE36Wm7Psq7gvY9k6BvJuQ86w7/xwyPZFO5Wp9I
lTrzznZ+QMXS/cFEwQwHqO61ptlKiLWZwO0Chss7pY6UJWrWo15BPm7jTnVQMcMe
omqeglg0Rwr0gTHC8r8Yzw741aKYNKLhyYaB0zfyPBTR0rYq1hHgHPf7Gc70ZpN6
iUxiOAEnX/QGCvKl7o2HBIAHmXtKLsc1yWI3bsO9MAC5LJ2soCKwb7MSbvP70ooX
tHu/vxQt+jFUHimw+ZG8YubodWMDxvBco4qnornNJrJKvQ23YbJwO6mKQSjs48N1
MOq/+gRR2/0nDBF8mj5EHOQpAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUbywgdVh2
TqtQ74UGb3hZDOWxxWEwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTk5NUQ1LzE2M0IxRTdDMkFBRTExRTlBQTU3NEU0RUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE5OTVENS8xNjNCMUU3QzJBQUUxMUU5QUE1NzRFNEVDNEY5QUUwMi9ieXdnZFZo
MlRxdFE3NFVHYjNoWkRPV3h4V0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhzLMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZ32IMA0EAgAC
MAcDBQAkA/VAMA0GCSqGSIb3DQEBCwUAA4IBAQA+lmWcuDptEx0ewuil3J4XtoW3
TV4l0vT5EKRFWK5fP5th++UH0mQiHLRlAjgXb6Dyf+W7QOYjvdqx+PoBveiO3szv
AiwQ2t6oLntTquN0s/rtYRepj40rD39xtkBI9aYMSI9fUSwyRtXO/0BcA4AAUZN7
BWurB82gIExYDoegIrNkCTqBT3EIOrrgU6KtrvhswAjh+OqH1OX9Iw6kojxHh7wG
njy689+BGpkPuxLWPThsm8oGvVFzSnrTZBttEaDvfIruZkJqctv+6mvxU2delLrD
e4jq9ieBo2PXgk7ndX587wq88KgoPpgAkpyiwa9MA5DlFkodBNe6HAHQ32hd
-----END CERTIFICATE-----
Generated at Fri Apr 4 02:14:30 2025 by rpki-client