Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7RecR9QOMR1deb07gwOjFZ744g.cer
File: y7RecR9QOMR1deb07gwOjFZ744g.cer (raw, json)
Hash identifier: fgB8wD7kvKsBUMvbkalZAFP+5lEUMZhXlPZBFZj16kg=
Subject key identifier: CB:B4:5E:71:1F:50:38:C4:75:75:E6:F4:EE:0C:0E:8C:56:7B:E3:88
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022232
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9186CDF/4481F0A811DE11EBB9F9F777C4F9AE02/y7RecR9QOMR1deb07gwOjFZ744g.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9186CDF/4481F0A811DE11EBB9F9F777C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 11 Dec 2024 16:19:23 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 24062
IP: 103.157.136.0/23
IP: 2406:9f40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 21:11:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139826 (0x22232)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 11 16:19:23 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A9186CDF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:c8:d9:e4:9f:83:eb:7e:e3:ed:80:9d:46:65:
ba:7e:04:d2:1a:3d:b3:91:fa:fc:33:ce:2c:9e:10:
59:81:22:1d:7b:46:f5:5a:65:0f:49:3e:7d:5f:37:
95:e4:01:22:e6:56:f7:58:e0:ac:4a:e8:1e:e5:dc:
90:70:d6:90:bb:09:b1:d8:77:66:10:2a:8d:d4:75:
54:44:71:33:bc:e7:2a:12:aa:32:90:d6:d9:71:cc:
bd:4d:1b:e1:00:df:f9:42:98:2d:ba:c6:d4:18:e0:
af:48:9a:63:44:e4:37:ce:0c:bd:d7:49:fd:12:a2:
4a:a7:31:d5:4f:23:4e:4d:70:b7:84:04:09:e6:70:
8c:8d:d7:2d:c6:5e:d7:ea:fe:89:2d:90:66:c3:51:
c0:95:7d:3b:c7:ce:65:0b:2d:f9:51:3d:f4:33:43:
2e:c4:c7:de:9c:c7:38:cc:30:35:6e:b7:a7:a9:d5:
7b:3a:9e:26:6c:c6:46:a6:e9:7c:41:5c:2a:86:91:
74:66:41:ce:f0:8e:58:29:d8:75:41:e8:c6:cf:80:
44:60:53:2e:9d:cf:3a:4f:31:ac:ad:bf:04:df:15:
e0:02:8a:05:3e:31:46:85:9f:1a:40:53:19:f2:56:
9f:79:b0:ef:4c:1b:3d:ac:f7:2b:08:92:06:5e:18:
ac:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:B4:5E:71:1F:50:38:C4:75:75:E6:F4:EE:0C:0E:8C:56:7B:E3:88
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9186CDF/4481F0A811DE11EBB9F9F777C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9186CDF/4481F0A811DE11EBB9F9F777C4F9AE02/y7RecR9QOMR1deb07gwOjFZ744g.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24062
sbgp-ipAddrBlock: critical
IPv4:
103.157.136.0/23
IPv6:
2406:9f40::/32
Signature Algorithm: sha256WithRSAEncryption
0c:7b:34:72:7f:79:11:a7:5b:20:79:1b:14:28:20:24:85:b0:
8f:8b:39:cf:39:2e:64:f6:b1:2e:c4:af:cd:2b:f3:18:73:2e:
81:eb:70:22:12:d1:91:7c:97:c3:57:10:18:41:92:98:88:11:
af:8e:67:bd:6f:67:72:82:d2:b7:52:14:cd:0f:7d:9c:7e:4a:
04:63:f6:8a:cf:0e:8c:70:bf:9f:d3:e0:27:2c:d3:fb:01:90:
92:e7:f6:34:8b:6f:87:46:8b:8e:48:26:ad:61:19:90:f4:a1:
8c:78:0e:83:59:d9:32:40:16:dc:11:09:7e:ed:57:cb:ac:9e:
40:9f:83:fe:8c:e1:7c:33:7d:fb:fa:47:bc:80:27:6a:e4:71:
87:20:da:9b:d6:54:53:f6:8e:0f:68:5c:4f:91:e4:85:c8:57:
f1:cd:d4:96:b0:ea:07:37:2e:11:37:b4:e5:79:78:5b:5a:36:
a5:6f:dd:9c:c7:6f:74:26:ff:56:2d:a4:e7:c1:41:f9:94:5e:
a2:26:13:21:45:55:f6:c3:71:53:ab:fe:50:1d:3b:79:c0:a2:
92:03:e8:29:c0:82:fc:35:b9:e1:09:b1:5b:54:ef:08:34:fc:
bb:07:39:ff:25:55:35:bf:4b:56:d5:e4:8c:63:2e:74:f3:aa:
ed:f4:07:b5
-----BEGIN CERTIFICATE-----
MIIGKDCCBRCgAwIBAgIDAiIyMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTIxMTE2MTkyM1oXDTI2MDEzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxODZDREYxMTAvBgNVBAUTKENCQjQ1RTcxMUY1MDM4QzQ3NTc1RTZG
NEVFMEMwRThDNTY3QkUzODgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDdyNnkn4PrfuPtgJ1GZbp+BNIaPbOR+vwzziyeEFmBIh17RvVaZQ9JPn1fN5Xk
ASLmVvdY4KxK6B7l3JBw1pC7CbHYd2YQKo3UdVREcTO85yoSqjKQ1tlxzL1NG+EA
3/lCmC26xtQY4K9ImmNE5DfODL3XSf0SokqnMdVPI05NcLeEBAnmcIyN1y3GXtfq
/oktkGbDUcCVfTvHzmULLflRPfQzQy7Ex96cxzjMMDVut6ep1Xs6niZsxkam6XxB
XCqGkXRmQc7wjlgp2HVB6MbPgERgUy6dzzpPMaytvwTfFeACigU+MUaFnxpAUxny
Vp95sO9MGz2s9ysIkgZeGKyFAgMBAAGjggMdMIIDGTAdBgNVHQ4EFgQUy7RecR9Q
OMR1deb07gwOjFZ744gwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTg2Q0RGLzQ0ODFGMEE4MTFERTExRUJCOUY5Rjc3N0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE4NkNERi80NDgxRjBBODExREUxMUVCQjlGOUY3NzdDNEY5QUUwMi95N1JlY1I5
UU9NUjFkZWIwN2d3T2pGWjc0NGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGQYIKwYBBQUHAQgBAf8ECjAI
oAYwBAICXf4wLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAFnnYgwDQQCAAIw
BwMFACQGn0AwDQYJKoZIhvcNAQELBQADggEBAAx7NHJ/eRGnWyB5GxQoICSFsI+L
Oc85LmT2sS7Er80r8xhzLoHrcCIS0ZF8l8NXEBhBkpiIEa+OZ71vZ3KC0rdSFM0P
fZx+SgRj9orPDoxwv5/T4Ccs0/sBkJLn9jSLb4dGi45IJq1hGZD0oYx4DoNZ2TJA
FtwRCX7tV8usnkCfg/6M4Xwzffv6R7yAJ2rkcYcg2pvWVFP2jg9oXE+R5IXIV/HN
1Jaw6gc3LhE3tOV5eFtaNqVv3ZzHb3Qm/1YtpOfBQfmUXqImEyFFVfbDcVOr/lAd
O3nAopID6CnAgvw1ueEJsVtU7wg0/LsHOf8lVTW/S1bV5IxjLnTzqu30B7U=
-----END CERTIFICATE-----
Generated at Sat Apr 5 00:33:48 2025 by rpki-client