Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.cer
File: kqxPvhcOqd-J8MgxjDzUX5OlIzQ.cer (raw, json)
Hash identifier: H+zq9Pcp04+8hPH5PVDrPU79x6ORy6EfRObRjLZasdE=
Subject key identifier: 92:AC:4F:BE:17:0E:A9:DF:89:F0:C8:31:8C:3C:D4:5F:93:A5:23:34
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0234A3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FDCFE/96505B2480E411ECB92DCB4DC4F9AE02/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FDCFE/96505B2480E411ECB92DCB4DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 02 Mar 2025 20:22:12 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 149480
IP: 103.180.206.0/23
IP: 2001:df0:6040::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144547 (0x234a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 2 20:22:12 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A91FDCFE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b6:b1:81:ed:82:e8:c5:2b:22:e9:10:81:d5:
7e:b3:83:41:48:dc:c8:aa:c1:cb:6f:15:8c:c1:57:
a9:73:c1:ad:ca:7a:30:70:38:3d:1c:8f:2f:95:7d:
7e:5e:6e:e9:b8:76:67:c6:de:3e:b1:e6:68:f9:f1:
18:81:32:6a:71:4d:1e:6f:8a:b8:d0:1a:d3:36:11:
53:bf:77:1d:b5:e9:b4:39:71:64:05:55:b0:15:82:
7a:bc:ae:e7:ba:81:73:14:5d:d4:75:48:5c:7d:e6:
bf:d0:3d:36:56:ca:20:44:f3:4f:93:95:98:8b:a8:
bc:73:63:41:c3:66:06:74:26:f9:08:60:bf:ce:71:
52:5c:fc:dd:04:d5:4d:00:cf:2f:30:2e:f1:4f:7f:
2c:54:6b:36:95:25:56:9f:c0:6d:f4:4e:89:b2:10:
b3:a9:22:50:e5:f1:1a:34:24:69:2a:5e:f8:c7:22:
c0:57:d7:90:0a:22:00:23:a4:86:4b:c9:09:3b:90:
83:95:63:78:1c:00:79:d7:39:c3:cf:e7:94:1f:e4:
e1:ab:c3:ad:10:ef:2e:f9:f4:c3:4d:46:1d:ac:1b:
85:56:5b:fb:5b:de:89:40:a1:5a:d4:63:d2:dc:28:
88:2e:d7:dc:80:0b:26:a0:e6:67:17:04:9a:24:0a:
99:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:AC:4F:BE:17:0E:A9:DF:89:F0:C8:31:8C:3C:D4:5F:93:A5:23:34
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FDCFE/96505B2480E411ECB92DCB4DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FDCFE/96505B2480E411ECB92DCB4DC4F9AE02/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149480
sbgp-ipAddrBlock: critical
IPv4:
103.180.206.0/23
IPv6:
2001:df0:6040::/48
Signature Algorithm: sha256WithRSAEncryption
56:f3:1e:fc:20:66:a4:b2:24:19:bb:a5:d2:90:32:2a:14:99:
49:c5:ef:88:9f:80:6c:c3:45:94:5f:15:50:46:93:be:c7:56:
a2:bf:39:a2:3a:3d:ab:55:2d:54:1b:d9:29:37:68:1f:4b:84:
1a:57:c2:02:7b:e6:85:1b:33:ef:13:01:66:cb:76:50:38:42:
a2:2a:01:12:b8:b9:77:3f:b9:00:31:c0:34:1c:d3:23:52:6e:
1c:92:e6:b4:02:51:73:a1:28:98:37:e4:40:60:7a:a0:b5:ab:
1e:17:94:61:10:b8:93:44:dc:44:e1:1c:d6:9b:c5:b8:fc:9b:
65:dd:b6:34:c0:2d:dd:d8:23:bd:05:b5:4a:f2:02:02:1d:01:
f2:86:75:00:e0:3f:91:e4:5b:2a:74:25:2d:e4:c9:be:37:fa:
60:65:cd:92:a5:fc:fc:f7:99:fd:93:86:00:b8:08:ea:e1:06:
2d:75:4f:89:18:cc:df:5b:95:8f:f2:a3:be:a1:78:4f:23:ec:
5a:50:e3:33:8f:cc:c0:fc:b3:cd:70:ac:be:6a:59:8a:be:55:
c7:d5:91:4e:70:8f:53:87:8b:29:b9:4c:ee:9f:a5:93:1d:02:
b0:9e:3a:be:04:9a:b6:5b:1c:b2:fb:d7:eb:ab:47:cf:5d:76:
ae:a5:57:c8
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAjSjMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDMwMjIwMjIxMloXDTI2MDUwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRkRDRkUxMTAvBgNVBAUTKDkyQUM0RkJFMTcwRUE5REY4OUYwQzgz
MThDM0NENDVGOTNBNTIzMzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC+trGB7YLoxSsi6RCB1X6zg0FI3MiqwctvFYzBV6lzwa3KejBwOD0cjy+VfX5e
bum4dmfG3j6x5mj58RiBMmpxTR5virjQGtM2EVO/dx216bQ5cWQFVbAVgnq8rue6
gXMUXdR1SFx95r/QPTZWyiBE80+TlZiLqLxzY0HDZgZ0JvkIYL/OcVJc/N0E1U0A
zy8wLvFPfyxUazaVJVafwG30TomyELOpIlDl8Ro0JGkqXvjHIsBX15AKIgAjpIZL
yQk7kIOVY3gcAHnXOcPP55Qf5OGrw60Q7y759MNNRh2sG4VWW/tb3olAoVrUY9Lc
KIgu19yACyag5mcXBJokCpnrAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUkqxPvhcO
qd+J8MgxjDzUX5OlIzQwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUZEQ0ZFLzk2NTA1QjI0ODBFNDExRUNCOTJEQ0I0REM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFGRENGRS85NjUwNUIyNDgwRTQxMUVDQjkyRENCNERDNEY5QUUwMi9rcXhQdmhj
T3FkLUo4TWd4akR6VVg1T2xJelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAkfoMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ7TOMA8EAgAC
MAkDBwAgAQ3wYEAwDQYJKoZIhvcNAQELBQADggEBAFbzHvwgZqSyJBm7pdKQMioU
mUnF74ifgGzDRZRfFVBGk77HVqK/OaI6PatVLVQb2Sk3aB9LhBpXwgJ75oUbM+8T
AWbLdlA4QqIqARK4uXc/uQAxwDQc0yNSbhyS5rQCUXOhKJg35EBgeqC1qx4XlGEQ
uJNE3EThHNabxbj8m2XdtjTALd3YI70FtUryAgIdAfKGdQDgP5HkWyp0JS3kyb43
+mBlzZKl/Pz3mf2ThgC4COrhBi11T4kYzN9blY/yo76heE8j7FpQ4zOPzMD8s81w
rL5qWYq+VcfVkU5wj1OHiym5TO6fpZMdArCeOr4EmrZbHLL71+urR89ddq6lV8g=
-----END CERTIFICATE-----
Generated at Fri Apr 4 02:13:35 2025 by rpki-client