Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCSWwSsdqlhOQrNDNM8XIBI2snw.cer
File: kCSWwSsdqlhOQrNDNM8XIBI2snw.cer (raw, json)
Hash identifier: l9ds0kZ5EB7u/KyF10glwE90sZvOyn57PX7q0GHTYsE=
Subject key identifier: 90:24:96:C1:2B:1D:AA:58:4E:42:B3:43:34:CF:17:20:12:36:B2:7C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022576
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912346E/85C43FFEA06211EB859E7653C4F9AE02/kCSWwSsdqlhOQrNDNM8XIBI2snw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912346E/85C43FFEA06211EB859E7653C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 30 Dec 2024 12:55:21 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 134804
IP: 103.13.132.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 07:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140662 (0x22576)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 30 12:55:21 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A912346E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:35:6c:70:e0:7e:dd:8e:13:ae:c2:cb:0f:55:
96:71:72:62:b7:a0:91:d6:31:83:d7:ef:12:ea:83:
b3:fd:63:86:a7:8f:a3:e5:21:60:16:8d:25:19:52:
6a:b0:79:5e:5f:4d:ee:01:4f:b1:50:8c:90:0c:e8:
1c:7a:dd:65:00:39:29:48:17:66:cf:80:08:4e:f7:
5f:4d:6e:d9:bd:4a:cc:73:64:3b:87:99:1f:e8:d6:
ff:3e:fb:c8:d7:23:c9:68:40:19:13:d5:22:d7:ca:
e3:92:39:be:7a:72:f2:25:b4:fc:c7:79:89:4b:f0:
5f:d8:e6:28:c6:ca:1f:79:ba:73:16:9e:81:d3:5e:
52:ba:e5:1e:8c:c7:57:3b:e9:a8:f8:93:ee:18:77:
f1:fa:10:f3:3f:0e:43:6d:ed:9c:1f:10:37:08:5b:
08:fc:bd:fe:e7:ce:68:71:b1:69:cd:79:0f:0f:56:
84:8a:ba:e0:72:ca:76:2e:ee:2c:72:00:d5:d0:80:
e0:02:26:fe:54:42:9b:d7:28:26:8e:68:d8:fe:a6:
24:25:66:4c:4f:eb:59:f1:9a:73:d1:2d:83:8c:db:
36:53:66:fb:f3:91:8e:2b:8c:83:9f:9f:ca:4c:65:
6c:64:7e:4a:58:36:d8:16:bc:c3:42:c3:85:33:86:
90:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:24:96:C1:2B:1D:AA:58:4E:42:B3:43:34:CF:17:20:12:36:B2:7C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912346E/85C43FFEA06211EB859E7653C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912346E/85C43FFEA06211EB859E7653C4F9AE02/kCSWwSsdqlhOQrNDNM8XIBI2snw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134804
sbgp-ipAddrBlock: critical
IPv4:
103.13.132.0/23
Signature Algorithm: sha256WithRSAEncryption
1e:21:03:87:e5:c8:0a:a1:7c:8f:cf:c6:90:b8:aa:f4:ff:a5:
7b:6f:c2:82:24:1f:13:a2:ae:7c:23:97:7a:57:aa:03:7d:da:
94:5d:54:ae:7a:eb:ec:6f:fa:36:7b:3a:60:08:4d:af:85:a8:
d6:bf:0c:06:c2:df:61:8c:8a:80:ba:d2:bd:43:50:f8:95:96:
bd:a7:2c:c1:41:89:5d:de:c8:10:c8:dc:cd:26:20:78:f7:e0:
cc:c4:a5:27:cf:de:c3:f5:a8:ce:7e:53:4a:c5:ba:d5:df:84:
65:37:c1:c4:f6:3d:03:84:82:5a:cf:53:b9:a3:f5:a2:a6:fa:
91:87:11:4c:0b:b6:77:5d:f4:d0:66:f9:25:31:69:50:e0:f2:
f6:fd:b0:04:83:8b:73:63:cd:a7:7b:6d:09:d6:09:f8:28:db:
31:9f:4f:09:48:9c:fe:8f:3f:6f:80:61:20:80:7a:f8:e9:f5:
39:73:21:0f:1f:5e:78:b4:81:59:c2:76:65:31:7d:52:49:75:
a1:0c:28:7e:4a:12:b0:b5:eb:68:cf:c6:0e:9a:60:ee:9c:a0:
f2:95:82:95:2d:0d:91:94:a8:e2:5c:18:1a:ab:09:a9:fa:07:
30:45:15:2a:c9:ef:88:3a:11:af:6f:3e:6e:93:cc:d8:99:96:
97:07:3b:50
-----BEGIN CERTIFICATE-----
MIIGGjCCBQKgAwIBAgIDAiV2MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTIzMDEyNTUyMVoXDTI2MDMwMjAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMjM0NkUxMTAvBgNVBAUTKDkwMjQ5NkMxMkIxREFBNTg0RTQyQjM0
MzM0Q0YxNzIwMTIzNkIyN0MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCiNWxw4H7djhOuwssPVZZxcmK3oJHWMYPX7xLqg7P9Y4anj6PlIWAWjSUZUmqw
eV5fTe4BT7FQjJAM6Bx63WUAOSlIF2bPgAhO919Nbtm9SsxzZDuHmR/o1v8++8jX
I8loQBkT1SLXyuOSOb56cvIltPzHeYlL8F/Y5ijGyh95unMWnoHTXlK65R6Mx1c7
6aj4k+4Yd/H6EPM/DkNt7ZwfEDcIWwj8vf7nzmhxsWnNeQ8PVoSKuuByynYu7ixy
ANXQgOACJv5UQpvXKCaOaNj+piQlZkxP61nxmnPRLYOM2zZTZvvzkY4rjIOfn8pM
ZWxkfkpYNtgWvMNCw4UzhpA7AgMBAAGjggMPMIIDCzAdBgNVHQ4EFgQUkCSWwSsd
qlhOQrNDNM8XIBI2snwwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTIzNDZFLzg1QzQzRkZFQTA2MjExRUI4NTlFNzY1M0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEyMzQ2RS84NUM0M0ZGRUEwNjIxMUVCODU5RTc2NTNDNEY5QUUwMi9rQ1NXd1Nz
ZHFsaE9Rck5ETk04WElCSTJzbncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAg6UMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZw2EMA0GCSqG
SIb3DQEBCwUAA4IBAQAeIQOH5cgKoXyPz8aQuKr0/6V7b8KCJB8Toq58I5d6V6oD
fdqUXVSueuvsb/o2ezpgCE2vhajWvwwGwt9hjIqAutK9Q1D4lZa9pyzBQYld3sgQ
yNzNJiB49+DMxKUnz97D9ajOflNKxbrV34RlN8HE9j0DhIJaz1O5o/WipvqRhxFM
C7Z3XfTQZvklMWlQ4PL2/bAEg4tzY82ne20J1gn4KNsxn08JSJz+jz9vgGEggHr4
6fU5cyEPH154tIFZwnZlMX1SSXWhDCh+ShKwtetoz8YOmmDunKDylYKVLQ2RlKji
XBgaqwmp+gcwRRUqye+IOhGvbz5uk8zYmZaXBztQ
-----END CERTIFICATE-----
Generated at Fri Apr 4 10:36:48 2025 by rpki-client