Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogxX9SzpjIhI9jYlDkpGcIEbUHY.cer
File: ogxX9SzpjIhI9jYlDkpGcIEbUHY.cer (raw, json)
Hash identifier: Cm5DPZXNsY8lZmdCl3hkdXN3dTOaHA0Is7JWIZCxW5s=
Subject key identifier: A2:0C:57:F5:2C:E9:8C:88:48:F6:36:25:0E:4A:46:70:81:1B:50:76
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0221EC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 10 Dec 2024 18:40:17 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 4859
AS: 7547 -- 7549
IP: 45.113.168.0/22
IP: 103.53.92.0/22
IP: 203.207.64.0 -- 203.207.91.255
IP: 203.207.96.0/20
IP: 203.207.128.0/18
IP: 203.207.200.0/21
IP: 203.207.224.0/19
IP: 2406:7d00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139756 (0x221ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 10 18:40:17 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91E7656
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6f:b7:71:f6:9d:5a:fc:75:60:b8:02:d8:95:
3d:b6:9d:29:c6:8f:e8:c0:cc:89:76:ef:14:6a:bd:
7d:01:c3:98:3f:be:6d:4d:c0:98:9e:69:73:ee:2b:
93:78:79:5e:9a:f5:a0:be:a7:55:61:03:d5:e0:ec:
e2:5d:53:4e:3b:2f:d7:c5:6a:6b:4a:58:59:5f:30:
55:1e:c4:1e:1c:c5:66:80:9b:ec:87:07:1b:fd:c0:
fc:68:5e:1c:e9:9c:08:51:59:ed:52:3e:17:35:b1:
5f:b6:ea:8c:67:57:89:79:42:b6:a7:2c:0e:fa:1d:
f7:33:57:b2:ef:dd:f9:b4:88:84:b7:cb:4a:83:e6:
7d:95:04:a4:ad:d5:f2:8e:23:e1:2a:d1:13:ef:8b:
02:2e:14:91:f7:e0:40:ba:0e:ba:92:9a:b7:6d:af:
6f:a6:f7:9b:02:24:60:85:15:74:fc:5f:e0:6d:aa:
27:cf:d3:5e:15:75:24:5e:99:f8:78:11:14:eb:38:
51:4d:e2:15:35:6e:43:1d:c2:3b:5a:14:35:66:e2:
f1:c6:7b:61:14:79:f2:de:24:7f:d6:9d:05:ca:31:
30:fe:a7:d2:ad:56:fa:b1:58:16:cf:e5:16:ab:fe:
c9:9d:93:40:e9:97:30:45:b6:b5:a4:44:18:c6:6b:
2f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:0C:57:F5:2C:E9:8C:88:48:F6:36:25:0E:4A:46:70:81:1B:50:76
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
4859
7547-7549
sbgp-ipAddrBlock: critical
IPv4:
45.113.168.0/22
103.53.92.0/22
203.207.64.0-203.207.91.255
203.207.96.0/20
203.207.128.0/18
203.207.200.0/21
203.207.224.0/19
IPv6:
2406:7d00::/32
Signature Algorithm: sha256WithRSAEncryption
63:3e:50:20:e8:e1:b6:cc:5c:15:ef:ef:78:d3:02:4f:cb:eb:
93:2b:83:4a:24:e2:02:c9:c4:a7:8f:74:2d:e6:f2:e1:42:c3:
5d:71:59:29:38:91:bc:6a:df:91:88:4a:18:89:11:7c:87:ed:
b4:ba:a7:7b:e9:37:69:d6:aa:99:dd:ed:01:b5:71:bd:2b:57:
eb:97:fd:d3:7d:1c:05:77:32:f2:56:c9:3f:d7:59:77:ec:24:
7e:ea:bb:7a:4b:28:08:a2:51:57:32:a5:4d:3c:44:44:d0:40:
dd:a9:93:42:cb:59:ae:3f:bf:bf:ef:9a:3e:b7:d9:7b:2c:95:
b8:c9:a5:b7:95:48:94:41:c3:dc:20:7f:41:25:ec:72:36:1c:
a6:d2:6a:9b:87:db:5d:3e:1a:7d:15:21:a2:90:09:2d:8e:70:
f5:3b:c8:a4:05:c0:d6:ec:e7:23:fd:c8:c0:09:56:18:52:9d:
b5:c4:54:61:2f:4f:d9:50:38:db:ac:bc:b7:21:22:4d:6f:bd:
f5:00:24:ae:02:3a:cf:73:48:e6:c3:46:b4:23:e1:43:2b:12:
f4:b2:cc:ef:78:d7:31:30:d7:ab:21:32:dc:0e:d1:30:30:fb:
b2:2e:ba:2c:fa:bf:46:e9:11:58:5e:bd:1b:0f:71:8e:2a:50:
23:ee:2f:ed
-----BEGIN CERTIFICATE-----
MIIGXjCCBUagAwIBAgIDAiHsMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTIxMDE4NDAxN1oXDTI2MDMwMjAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRTc2NTYxMTAvBgNVBAUTKEEyMEM1N0Y1MkNFOThDODg0OEY2MzYy
NTBFNEE0NjcwODExQjUwNzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC9b7dx9p1a/HVguALYlT22nSnGj+jAzIl27xRqvX0Bw5g/vm1NwJieaXPuK5N4
eV6a9aC+p1VhA9Xg7OJdU047L9fFamtKWFlfMFUexB4cxWaAm+yHBxv9wPxoXhzp
nAhRWe1SPhc1sV+26oxnV4l5QranLA76HfczV7Lv3fm0iIS3y0qD5n2VBKSt1fKO
I+Eq0RPviwIuFJH34EC6DrqSmrdtr2+m95sCJGCFFXT8X+BtqifP014VdSRemfh4
ERTrOFFN4hU1bkMdwjtaFDVm4vHGe2EUefLeJH/WnQXKMTD+p9KtVvqxWBbP5Rar
/smdk0DplzBFtrWkRBjGay+tAgMBAAGjggNTMIIDTzAdBgNVHQ4EFgQUogxX9Szp
jIhI9jYlDkpGcIEbUHYwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUU3NjU2LzBFRTNBNUJDMENENjExRUFCRjU2MjU1M0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFFNzY1Ni8wRUUzQTVCQzBDRDYxMUVBQkY1NjI1NTNDNEY5QUUwMi9vZ3hYOVN6
cGpJaEk5allsRGtwR2NJRWJVSFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIwYIKwYBBQUHAQgBAf8EFDAS
oBAwDgICEvswCAICHXsCAh19MFoGCCsGAQUFBwEHAQH/BEswSTA4BAIAATAyAwQC
LXGoAwQCZzVcMAwDBAbLz0ADBALLz1gDBATLz2ADBAbLz4ADBAPLz8gDBAXLz+Aw
DQQCAAIwBwMFACQGfQAwDQYJKoZIhvcNAQELBQADggEBAGM+UCDo4bbMXBXv73jT
Ak/L65Mrg0ok4gLJxKePdC3m8uFCw11xWSk4kbxq35GIShiJEXyH7bS6p3vpN2nW
qpnd7QG1cb0rV+uX/dN9HAV3MvJWyT/XWXfsJH7qu3pLKAiiUVcypU08RETQQN2p
k0LLWa4/v7/vmj632XsslbjJpbeVSJRBw9wgf0El7HI2HKbSapuH210+Gn0VIaKQ
CS2OcPU7yKQFwNbs5yP9yMAJVhhSnbXEVGEvT9lQONusvLchIk1vvfUAJK4COs9z
SObDRrQj4UMrEvSyzO941zEw16shMtwO0TAw+7Iuuiz6v0bpEVhevRsPcY4qUCPu
L+0=
-----END CERTIFICATE-----
Generated at Fri Apr 4 02:14:25 2025 by rpki-client