Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3BtgUfXeSB9ma-a053V8t_lneQ.cer
File: z3BtgUfXeSB9ma-a053V8t_lneQ.cer (raw, json)
Hash identifier: xBjmRsNmQPyFcXbvKH9MuCGZVzO7TiVzEvfQM6Rdz50=
Subject key identifier: CF:70:6D:81:47:D7:79:20:7D:99:AF:9A:D3:9D:D5:F2:DF:E5:9D:E4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023A14
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/z3BtgUfXeSB9ma-a053V8t_lneQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 27 Mar 2025 00:20:40 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 10120
AS: 134667
AS: 135291
AS: 138450
IP: 103.195.128.0/22
IP: 103.212.168.0/22
IP: 160.202.136.0/22
IP: 203.143.128.0/19
IP: 2001:df6:1400::/48
IP: 2401:3460::/32
IP: 2404:a580::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 12 Apr 2025 00:59:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145940 (0x23a14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 27 00:20:40 2025 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91C9350
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:6c:06:f8:e4:0d:61:b2:2e:38:f2:ce:47:d1:
6a:73:90:1e:eb:83:40:a8:7b:08:0f:53:4b:2e:69:
c1:80:cc:2e:73:0e:b3:8d:5d:f5:f3:82:6e:7e:03:
cd:07:ca:7f:d9:8b:4c:0a:2d:97:56:de:9a:ad:f6:
4a:f4:46:fe:8f:ff:26:ad:b4:f2:0e:ba:b9:fe:21:
e2:fc:54:47:20:74:04:02:13:de:f1:96:a3:27:06:
79:b4:35:f3:97:ef:67:e8:f3:06:08:80:6f:f1:4e:
b7:64:a3:f8:f3:05:e2:35:ed:bc:77:58:03:52:08:
12:e9:47:35:06:b6:18:0e:74:f0:46:f1:f1:e7:a1:
01:ca:57:ff:4d:79:75:82:79:c7:00:8e:d8:7e:4f:
e5:6e:2d:f5:9d:82:c4:e0:81:cf:87:be:b0:0c:23:
61:59:21:e9:ee:ac:15:8f:a2:ea:22:28:b6:7b:fe:
7f:fa:2e:14:94:a5:1d:3e:03:6a:f1:59:1b:fc:04:
c6:e3:d7:e6:46:3d:6d:1b:d0:94:1a:83:11:b1:e3:
1b:3f:47:2c:12:3f:41:7f:2f:4b:1c:fd:82:0f:eb:
98:f9:53:d5:49:fa:80:5a:2b:e1:fd:3e:e3:96:93:
77:e3:28:f8:19:51:33:89:66:b2:10:ac:89:7a:b2:
48:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:70:6D:81:47:D7:79:20:7D:99:AF:9A:D3:9D:D5:F2:DF:E5:9D:E4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/z3BtgUfXeSB9ma-a053V8t_lneQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
10120
134667
135291
138450
sbgp-ipAddrBlock: critical
IPv4:
103.195.128.0/22
103.212.168.0/22
160.202.136.0/22
203.143.128.0/19
IPv6:
2001:df6:1400::/48
2401:3460::/32
2404:a580::/32
Signature Algorithm: sha256WithRSAEncryption
c7:21:3e:ff:af:8d:86:66:a4:6a:5e:08:c7:7f:46:a4:b3:43:
e7:9a:f3:c7:96:4c:4e:f2:3a:22:0b:ca:80:a1:d5:09:43:7b:
bc:94:5c:bb:e2:b0:42:72:6e:dc:ef:d5:3f:8d:46:5a:a4:4e:
a5:74:e2:18:54:32:f8:a6:86:95:98:8f:06:e7:5d:f2:68:b6:
96:02:bf:2f:5e:b5:b5:05:8e:cd:4e:5d:5d:b9:e7:77:f0:0d:
22:df:c7:1f:38:32:e9:26:a4:9e:ce:44:d7:bc:e3:61:e0:1f:
fd:07:9b:9e:4b:da:c8:68:51:f2:01:d9:23:da:38:80:b4:f0:
2b:66:e2:43:a7:c0:e2:11:32:29:6a:8f:3f:5b:ba:ae:c5:4e:
fe:68:2b:4b:3e:81:b4:16:32:de:3a:08:82:bc:68:2c:21:78:
6a:ae:7f:ca:7f:78:74:76:a1:fd:d0:45:dd:38:d7:ab:1f:d7:
46:57:b2:80:30:94:2c:55:6f:0a:41:99:d7:e8:45:70:6a:98:
15:05:a6:ce:c1:c9:01:03:65:a4:d6:0f:28:99:b9:17:8f:f1:
d8:f0:26:03:1d:a9:22:2c:45:0f:89:56:78:e9:e2:4a:e4:a5:
7b:9c:b0:e7:9e:82:43:1a:24:f3:a7:43:34:3b:1f:e5:15:69:
48:b1:c8:94
-----BEGIN CERTIFICATE-----
MIIGWTCCBUGgAwIBAgIDAjoUMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDMyNzAwMjA0MFoXDTI1MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQzkzNTAxMTAvBgNVBAUTKENGNzA2RDgxNDdENzc5MjA3RDk5QUY5
QUQzOURENUYyREZFNTlERTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDJbAb45A1hsi448s5H0WpzkB7rg0CoewgPU0suacGAzC5zDrONXfXzgm5+A80H
yn/Zi0wKLZdW3pqt9kr0Rv6P/yattPIOurn+IeL8VEcgdAQCE97xlqMnBnm0NfOX
72fo8wYIgG/xTrdko/jzBeI17bx3WANSCBLpRzUGthgOdPBG8fHnoQHKV/9NeXWC
eccAjth+T+VuLfWdgsTggc+HvrAMI2FZIenurBWPouoiKLZ7/n/6LhSUpR0+A2rx
WRv8BMbj1+ZGPW0b0JQagxGx4xs/RywSP0F/L0sc/YIP65j5U9VJ+oBaK+H9PuOW
k3fjKPgZUTOJZrIQrIl6skhfAgMBAAGjggNOMIIDSjAdBgNVHQ4EFgQUz3BtgUfX
eSB9ma+a053V8t/lneQwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUM5MzUwLzM5MTNCQ0EwMUQ4NzExRTJCNDJCMDJERjA4QjAyQ0QyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFDOTM1MC8zOTEzQkNBMDFEODcxMUUyQjQyQjAyREYwOEIwMkNEMi96M0J0Z1Vm
WGVTQjltYS1hMDUzVjh0X2xuZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKAYIKwYBBQUHAQgBAf8EGTAX
oBUwEwICJ4gCAwIOCwIDAhB7AgMCHNIwUAYIKwYBBQUHAQcBAf8EQTA/MB4EAgAB
MBgDBAJnw4ADBAJn1KgDBAKgyogDBAXLj4AwHQQCAAIwFwMHACABDfYUAAMFACQB
NGADBQAkBKWAMA0GCSqGSIb3DQEBCwUAA4IBAQDHIT7/r42GZqRqXgjHf0aks0Pn
mvPHlkxO8joiC8qAodUJQ3u8lFy74rBCcm7c79U/jUZapE6ldOIYVDL4poaVmI8G
513yaLaWAr8vXrW1BY7NTl1dued38A0i38cfODLpJqSezkTXvONh4B/9B5ueS9rI
aFHyAdkj2jiAtPArZuJDp8DiETIpao8/W7quxU7+aCtLPoG0FjLeOgiCvGgsIXhq
rn/Kf3h0dqH90EXdONerH9dGV7KAMJQsVW8KQZnX6EVwapgVBabOwckBA2Wk1g8o
mbkXj/HY8CYDHakiLEUPiVZ46eJK5KV7nLDnnoJDGiTzp0M0Ox/lFWlIsciU
-----END CERTIFICATE-----
Generated at Sat Apr 5 03:57:05 2025 by rpki-client