Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wS8PVy2jONITRB7wfKUR0anIm20.cer
File: wS8PVy2jONITRB7wfKUR0anIm20.cer (raw, json)
Hash identifier: 8ARWsGbMTvdD1F9ws9wqyBw+NV/Cqu+7hUWPMrZBrNs=
Subject key identifier: C1:2F:0F:57:2D:A3:38:D2:13:44:1E:F0:7C:A5:11:D1:A9:C8:9B:6D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022B1A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916CA70/A7125D7603AA11EB8C158229C4F9AE02/wS8PVy2jONITRB7wfKUR0anIm20.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916CA70/A7125D7603AA11EB8C158229C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 23 Jan 2025 16:00:01 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 139917
IP: 103.147.44.0/24
IP: 2001:df2:8380::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142106 (0x22b1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 23 16:00:01 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A916CA70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e1:59:5b:f2:c1:37:00:5b:81:a3:b7:aa:d9:
32:c7:e7:2f:87:8e:5a:98:de:35:81:42:42:75:56:
15:95:3b:b0:26:b3:2b:9f:ab:6f:ba:e7:a3:85:ba:
fb:84:7f:e5:d5:3f:bc:af:86:ef:0a:fc:dc:59:3f:
29:f6:1d:e2:71:ca:bd:89:d0:74:45:c0:7d:1a:f0:
8b:e6:02:33:a0:a7:ad:81:b6:d6:76:95:f1:f4:d2:
72:22:9d:8d:9f:7d:01:b7:f6:e8:12:b4:7b:bb:4a:
23:92:32:d5:48:e3:2a:c2:ed:bf:ac:6a:13:b5:00:
4f:c2:0a:9a:36:2f:40:e1:cb:7f:4a:4f:f4:0b:ea:
be:0c:ea:82:e4:ec:8c:22:42:c9:b2:76:a0:a0:f8:
e9:5f:b0:e0:bb:3b:a4:f8:2e:7c:35:d1:af:69:d6:
0b:72:d4:01:07:79:f7:59:f8:6f:3f:85:ba:60:f2:
a2:ef:88:f0:16:54:a9:c6:b4:52:67:6b:79:1d:b0:
e6:07:b4:42:f8:c1:30:f8:37:87:02:f6:99:8a:cc:
64:4c:41:ab:d8:22:d7:ed:94:c7:c4:ff:66:a7:11:
6e:87:db:25:c4:77:23:9a:c6:f2:17:24:b6:b6:a0:
e3:cc:84:52:a1:90:f2:da:8e:b3:cb:59:21:d0:05:
83:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:2F:0F:57:2D:A3:38:D2:13:44:1E:F0:7C:A5:11:D1:A9:C8:9B:6D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916CA70/A7125D7603AA11EB8C158229C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916CA70/A7125D7603AA11EB8C158229C4F9AE02/wS8PVy2jONITRB7wfKUR0anIm20.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139917
sbgp-ipAddrBlock: critical
IPv4:
103.147.44.0/24
IPv6:
2001:df2:8380::/48
Signature Algorithm: sha256WithRSAEncryption
0f:81:5d:9f:45:78:67:82:74:a4:46:69:54:51:38:4c:04:66:
3b:95:b6:80:15:cf:de:17:34:16:69:3f:ab:0f:6f:a3:f3:09:
a5:3f:63:b0:e0:c5:b6:d7:f4:32:d3:00:06:f4:be:b3:60:30:
f8:cf:45:79:65:bc:de:a7:bf:e2:5c:39:69:be:5f:72:64:0b:
50:b5:d0:a5:55:89:a5:60:fe:63:a8:36:8e:81:bd:4d:d0:26:
52:4a:76:12:d1:9c:04:7d:97:6c:6e:f9:99:d5:03:83:65:35:
75:03:09:d5:15:3b:ea:d3:41:19:d1:ba:bf:80:7b:0e:98:3f:
88:9f:0f:db:09:c6:de:e3:da:50:9b:ba:84:6f:dd:7d:b7:7a:
ab:08:f4:24:98:58:ef:98:ad:9b:6f:84:c0:a0:4b:70:dd:2a:
f0:87:75:89:db:ea:5e:5f:46:1a:33:5a:ba:4f:f7:30:74:e1:
dd:20:c0:5e:23:bc:ba:da:0e:fd:be:f1:75:d0:07:da:8e:e4:
f2:bf:ea:17:37:90:39:56:c9:7c:62:7f:c5:eb:f4:6a:6c:63:
85:bb:c4:12:a1:23:c6:cb:81:51:74:54:cf:15:04:56:68:15:
5c:b7:f6:a7:6e:8b:c9:f7:3a:6f:8d:30:fe:b6:32:a8:88:dc:
0e:11:dc:12
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAisaMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDEyMzE2MDAwMVoXDTI2MDMzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNkNBNzAxMTAvBgNVBAUTKEMxMkYwRjU3MkRBMzM4RDIxMzQ0MUVG
MDdDQTUxMUQxQTlDODlCNkQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDJ4Vlb8sE3AFuBo7eq2TLH5y+HjlqY3jWBQkJ1VhWVO7Amsyufq2+656OFuvuE
f+XVP7yvhu8K/NxZPyn2HeJxyr2J0HRFwH0a8IvmAjOgp62BttZ2lfH00nIinY2f
fQG39ugStHu7SiOSMtVI4yrC7b+sahO1AE/CCpo2L0Dhy39KT/QL6r4M6oLk7Iwi
QsmydqCg+OlfsOC7O6T4Lnw10a9p1gty1AEHefdZ+G8/hbpg8qLviPAWVKnGtFJn
a3kdsOYHtEL4wTD4N4cC9pmKzGRMQavYItftlMfE/2anEW6H2yXEdyOaxvIXJLa2
oOPMhFKhkPLajrPLWSHQBYOjAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUwS8PVy2j
ONITRB7wfKUR0anIm20wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTZDQTcwL0E3MTI1RDc2MDNBQTExRUI4QzE1ODIyOUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE2Q0E3MC9BNzEyNUQ3NjAzQUExMUVCOEMxNTgyMjlDNEY5QUUwMi93UzhQVnky
ak9OSVRSQjd3ZktVUjBhbkltMjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAiKNMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAZ5MsMA8EAgAC
MAkDBwAgAQ3yg4AwDQYJKoZIhvcNAQELBQADggEBAA+BXZ9FeGeCdKRGaVRROEwE
ZjuVtoAVz94XNBZpP6sPb6PzCaU/Y7DgxbbX9DLTAAb0vrNgMPjPRXllvN6nv+Jc
OWm+X3JkC1C10KVViaVg/mOoNo6BvU3QJlJKdhLRnAR9l2xu+ZnVA4NlNXUDCdUV
O+rTQRnRur+Aew6YP4ifD9sJxt7j2lCbuoRv3X23eqsI9CSYWO+YrZtvhMCgS3Dd
KvCHdYnb6l5fRhozWrpP9zB04d0gwF4jvLraDv2+8XXQB9qO5PK/6hc3kDlWyXxi
f8Xr9GpsY4W7xBKhI8bLgVF0VM8VBFZoFVy39qdui8n3Om+NMP62MqiI3A4R3BI=
-----END CERTIFICATE-----
Generated at Fri Apr 4 20:15:32 2025 by rpki-client