Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer
File: ewHKzBcP5qYbIDBBheholG33KFo.cer (raw, json)
Hash identifier: 5cmHogj/BFZ1P5UOe4VbTjSETqg25W6834c2CDcbFCI=
Subject key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0233B1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 27 Feb 2025 18:00:43 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 18210
AS: 38796
AS: 58620
AS: 134384 -- 134399
IP: 103.208.92.0/23
IP: 119.161.48.0/20
IP: 120.29.248.0/21
IP: 202.65.12.0/22
IP: 203.17.72.0/24
IP: 203.18.56.0/24
IP: 203.119.14.0/24
IP: 2001:dcd::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144305 (0x233b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 27 18:00:43 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A91919EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:6d:1f:9d:fe:7d:e9:52:99:74:2e:a4:99:8a:
dc:3f:3c:2c:28:f8:e4:46:00:4e:a4:2c:f5:81:8b:
ac:bc:71:d5:25:86:36:2d:c9:2b:66:5b:47:49:48:
90:49:72:2b:62:5f:c6:09:7b:77:e4:be:92:5d:76:
27:7c:45:b0:b4:0d:2f:f3:95:c5:31:59:55:37:36:
cc:7c:3c:4b:18:33:57:a2:ec:d5:94:3b:65:42:a3:
d7:06:a1:6b:e5:13:95:da:5a:9a:97:1e:26:86:4b:
84:ab:8a:6b:b5:cd:67:08:0e:cc:95:8a:f4:bd:2c:
13:ba:9b:86:01:ba:d9:9b:53:db:2d:06:2b:49:a3:
c5:66:18:d0:4a:a7:45:a9:c1:f7:b7:7f:9c:ec:6b:
e7:57:5c:4f:d5:97:e4:6c:96:de:09:de:a5:56:a0:
09:33:53:f1:04:f6:5b:c6:44:6f:70:ea:d8:39:69:
43:63:18:ae:1e:c2:39:fb:de:13:6a:62:e8:5f:07:
b8:82:9a:9c:8c:0c:77:b6:97:89:a6:65:e9:6f:ac:
dd:c2:cb:b3:a5:1e:95:a1:e4:48:73:4d:1d:4a:e2:
58:51:a6:b7:15:cc:19:5e:2d:06:db:f8:94:68:e5:
0a:ec:05:88:73:0b:f4:27:3f:0a:8d:7f:5d:c9:11:
9c:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
18210
38796
58620
134384-134399
sbgp-ipAddrBlock: critical
IPv4:
103.208.92.0/23
119.161.48.0/20
120.29.248.0/21
202.65.12.0/22
203.17.72.0/24
203.18.56.0/24
203.119.14.0/24
IPv6:
2001:dcd::/32
Signature Algorithm: sha256WithRSAEncryption
6b:91:46:bf:4c:17:52:6a:69:8b:23:75:95:21:b6:6e:e2:25:
e8:e7:8e:a4:02:07:64:cd:b4:14:73:01:65:7f:47:07:75:20:
e0:00:43:29:83:e1:22:9f:ea:af:f2:91:d5:ef:8c:02:4e:20:
bb:d4:b4:04:27:09:4b:0e:80:29:ce:54:d1:cb:a8:92:47:f2:
36:8d:1e:41:3f:a9:09:ad:ea:cc:40:98:fd:6d:71:b8:dc:7d:
03:c5:17:6c:ca:75:66:73:83:99:6c:df:69:8a:6d:1d:0d:43:
b6:cd:87:cc:2f:60:e1:73:4c:09:30:d8:63:0b:a7:c0:da:5d:
49:ca:98:8a:4f:59:81:58:c1:c2:50:dc:bf:f9:11:ae:d7:4f:
d7:4f:b4:f6:a7:d0:fe:d0:a1:ee:12:f3:ba:8b:ab:64:9b:6a:
53:e6:66:e2:e6:3b:39:2b:b0:a8:4b:9c:95:89:f2:78:dc:ec:
e9:37:00:77:83:fd:cb:fb:37:99:9c:2d:05:05:41:ee:4d:0d:
8f:39:68:c2:c6:56:7d:4a:d4:1c:7d:29:c6:c0:f5:f2:5d:da:
4f:4c:4e:c5:50:0a:fb:1d:8a:f6:a7:7b:94:b2:b5:70:bc:13:
e9:3c:dc:08:5d:57:19:7c:94:6e:80:45:6e:b4:03:ef:82:de:
7e:ee:68:2b
-----BEGIN CERTIFICATE-----
MIIGYjCCBUqgAwIBAgIDAjOxMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDIyNzE4MDA0M1oXDTI2MDUwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxOTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0
MTg1RTg2ODk0NkRGNzI4NUEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCrbR+d/n3pUpl0LqSZitw/PCwo+ORGAE6kLPWBi6y8cdUlhjYtyStmW0dJSJBJ
citiX8YJe3fkvpJddid8RbC0DS/zlcUxWVU3Nsx8PEsYM1ei7NWUO2VCo9cGoWvl
E5XaWpqXHiaGS4Srimu1zWcIDsyVivS9LBO6m4YButmbU9stBitJo8VmGNBKp0Wp
wfe3f5zsa+dXXE/Vl+Rslt4J3qVWoAkzU/EE9lvGRG9w6tg5aUNjGK4ewjn73hNq
YuhfB7iCmpyMDHe2l4mmZelvrN3Cy7OlHpWh5EhzTR1K4lhRprcVzBleLQbb+JRo
5QrsBYhzC/QnPwqNf13JEZxdAgMBAAGjggNXMIIDUzAdBgNVHQ4EFgQUewHKzBcP
5qYbIDBBheholG33KFowHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTkxOUVBLzZENDYzQ0ZFMDRGRDExRUE4MkNDQ0ExOEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE5MTlFQS82RDQ2M0NGRTA0RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJj
UDVxWWJJREJCaGVob2xHMzNLRm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQgBAf8EIDAe
oBwwGgICRyICAwCXjAIDAOT8MAoCAwIM8AIDAgz/MFIGCCsGAQUFBwEHAQH/BEMw
QTAwBAIAATAqAwQBZ9BcAwQEd6EwAwQDeB34AwQCykEMAwQAyxFIAwQAyxI4AwQA
y3cOMA0EAgACMAcDBQAgAQ3NMA0GCSqGSIb3DQEBCwUAA4IBAQBrkUa/TBdSammL
I3WVIbZu4iXo546kAgdkzbQUcwFlf0cHdSDgAEMpg+Ein+qv8pHV74wCTiC71LQE
JwlLDoApzlTRy6iSR/I2jR5BP6kJrerMQJj9bXG43H0DxRdsynVmc4OZbN9pim0d
DUO2zYfML2Dhc0wJMNhjC6fA2l1JypiKT1mBWMHCUNy/+RGu10/XT7T2p9D+0KHu
EvO6i6tkm2pT5mbi5js5K7CoS5yVifJ43OzpNwB3g/3L+zeZnC0FBUHuTQ2POWjC
xlZ9StQcfSnGwPXyXdpPTE7FUAr7HYr2p3uUsrVwvBPpPNwIXVcZfJRugEVutAPv
gt5+7mgr
-----END CERTIFICATE-----
Generated at Fri Apr 4 02:13:32 2025 by rpki-client