Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/H03ONDmx9ANf_4xxzjWeXSDmmiQ.cer
File: H03ONDmx9ANf_4xxzjWeXSDmmiQ.cer (raw, json)
Hash identifier: RP8XqdgwkdfCeM2PBlLoz6nNDE+TN/+1k5/UOW5dL3w=
Subject key identifier: 1F:4D:CE:34:39:B1:F4:03:5F:FF:8C:71:CE:35:9E:5D:20:E6:9A:24
Authority key identifier: 0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
Certificate issuer: /CN=A90DC5BE/serialNumber=0CFCE77857FCF01F39D99A62B4AA62E6159E76F8
Certificate serial: 4AAD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 08 Mar 2025 09:17:44 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: IP: 82.100.184.0/21
IP: 95.87.112.0/21
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 14:50:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19117 (0x4aad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 8 09:17:44 2025 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91F8282
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d7:58:83:3a:70:89:22:65:a1:86:3b:37:00:
df:69:a7:b6:7f:b2:0c:c2:3c:c4:74:25:9f:f4:58:
3e:70:f6:8c:7b:2e:8e:53:87:ae:fb:f4:de:db:8e:
5b:3d:b7:61:b4:12:9f:e6:4b:09:1a:ac:29:e1:d6:
0b:04:81:7b:f4:33:2d:ab:fa:f8:fd:01:5b:de:1b:
33:a2:e5:75:fc:40:69:24:77:a4:71:19:ce:5b:c6:
d5:36:8e:e8:a1:bb:b1:16:9d:b6:03:f5:a6:7f:57:
c5:b0:15:b3:e1:bb:60:9b:82:6b:9c:79:fc:88:1e:
9d:3f:14:63:dd:f3:ba:cd:1b:7f:61:42:a2:2f:29:
bb:3d:6a:3a:0f:31:8a:c2:80:50:5c:6a:8f:61:c7:
d4:1e:ce:4b:43:fb:39:55:67:59:43:34:91:6e:fb:
66:82:7d:7f:67:94:ca:25:ab:67:a6:65:3d:9c:56:
cf:b5:f9:b5:e1:4c:91:d5:04:2f:39:62:24:b2:0f:
f4:3e:7d:f7:55:47:02:ee:18:a9:f6:ce:d4:0a:27:
f3:0c:50:bc:bf:69:0a:c8:78:7f:5f:54:ad:f2:b8:
d6:21:a8:63:c9:36:47:a7:1c:06:56:7b:2c:ce:f7:
f8:8a:75:4d:17:41:83:11:9c:08:53:b2:2d:d6:4d:
8c:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:4D:CE:34:39:B1:F4:03:5F:FF:8C:71:CE:35:9E:5D:20:E6:9A:24
X509v3 Authority Key Identifier:
keyid:0C:FC:E7:78:57:FC:F0:1F:39:D9:9A:62:B4:AA:62:E6:15:9E:76:F8
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F8282/2F253C1AFBFE11EFB5520A12C4F9AE02/H03ONDmx9ANf_4xxzjWeXSDmmiQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
82.100.184.0/21
95.87.112.0/21
Signature Algorithm: sha256WithRSAEncryption
a1:a9:0c:a5:be:cd:1f:de:71:a2:de:b3:07:b5:5e:4a:fd:74:
33:bb:d9:59:c1:2f:82:53:3f:6d:26:a1:f3:f8:bc:58:0a:83:
ce:bb:02:2f:01:16:a4:ad:6f:d7:b8:42:d3:05:8b:dd:a3:a7:
9e:fe:34:86:9e:63:ad:90:c8:2e:03:0a:ec:6a:87:ff:a6:6a:
73:3b:41:90:d6:71:d0:27:0c:56:cf:01:a1:ca:af:24:97:7f:
c8:83:f4:78:5f:64:83:35:f2:8d:30:a9:e2:50:92:3b:c4:cf:
5e:65:48:a8:f0:58:3c:f9:45:a2:68:d1:77:df:2e:da:a7:3b:
d1:7e:01:81:cd:e0:90:c1:1d:03:b8:3c:da:76:4d:54:5c:53:
37:1e:74:46:10:40:05:ee:f7:d4:67:21:8e:4a:22:55:3c:6e:
b5:9c:25:c2:34:8d:76:3f:0b:3b:e0:94:98:96:1c:c7:db:3f:
ce:a8:ff:33:a9:c7:26:42:8c:cd:21:fc:ab:1f:c9:2b:ce:06:
2f:99:41:80:5f:af:dc:f5:ee:4b:f6:46:1a:83:fe:f3:e3:29:
27:fe:30:00:17:2a:54:d4:c0:ae:54:c4:0c:12:57:73:10:12:
53:81:ac:f4:b4:e2:89:d1:42:33:71:20:37:15:63:7a:5d:de:
43:86:28:6e
-----BEGIN CERTIFICATE-----
MIIGAzCCBOugAwIBAgICSq0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDBDRkNFNzc4NTdGQ0YwMUYzOUQ5OUE2MkI0QUE2MkU2
MTU5RTc2RjgwHhcNMjUwMzA4MDkxNzQ0WhcNMjYwMTMxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTFGODI4MjExMC8GA1UEBRMoMUY0RENFMzQzOUIxRjQwMzVGRkY4Qzcx
Q0UzNTlFNUQyMEU2OUEyNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
ALXXWIM6cIkiZaGGOzcA32mntn+yDMI8xHQln/RYPnD2jHsujlOHrvv03tuOWz23
YbQSn+ZLCRqsKeHWCwSBe/QzLav6+P0BW94bM6LldfxAaSR3pHEZzlvG1TaO6KG7
sRadtgP1pn9XxbAVs+G7YJuCa5x5/IgenT8UY93zus0bf2FCoi8puz1qOg8xisKA
UFxqj2HH1B7OS0P7OVVnWUM0kW77ZoJ9f2eUyiWrZ6ZlPZxWz7X5teFMkdUELzli
JLIP9D5991VHAu4YqfbO1Aon8wxQvL9pCsh4f19UrfK41iGoY8k2R6ccBlZ7LM73
+Ip1TRdBgxGcCFOyLdZNjHECAwEAAaOCAvkwggL1MB0GA1UdDgQWBBQfTc40ObH0
A1//jHHONZ5dIOaaJDAfBgNVHSMEGDAWgBQM/Od4V/zwHznZmmK0qmLmFZ52+DAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2
MTFFMkEzRjI3RjdDNzJGRDFGRjIvRFB6bmVGZjg4Qjg1MlpwaXRLcGk1aFdlZHZn
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9EUHpuZUZmODhCODUyWnBpdEtwaTVoV2VkdmcuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RjgyODIvMkYyNTNDMUFGQkZFMTFFRkI1NTIwQTEyQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUY4MjgyLzJGMjUzQzFBRkJGRTExRUZCNTUyMEExMkM0RjlBRTAyL0gwM09ORG14
OUFOZl80eHh6aldlWFNEbW1pUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQWMBQw
EgQCAAEwDAMEA1JkuAMEA19XcDANBgkqhkiG9w0BAQsFAAOCAQEAoakMpb7NH95x
ot6zB7VeSv10M7vZWcEvglM/bSah8/i8WAqDzrsCLwEWpK1v17hC0wWL3aOnnv40
hp5jrZDILgMK7GqH/6ZqcztBkNZx0CcMVs8BocqvJJd/yIP0eF9kgzXyjTCp4lCS
O8TPXmVIqPBYPPlFomjRd98u2qc70X4Bgc3gkMEdA7g82nZNVFxTNx50RhBABe73
1GchjkoiVTxutZwlwjSNdj8LO+CUmJYcx9s/zqj/M6nHJkKMzSH8qx/JK84GL5lB
gF+v3PXuS/ZGGoP+8+MpJ/4wABcqVNTArlTEDBJXcxASU4Gs9LTiidFCM3EgNxVj
el3eQ4Yobg==
-----END CERTIFICATE-----
Generated at Fri Apr 4 20:38:53 2025 by rpki-client