Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-GGkJMXdlLdB2BgJtff_OVVjdl4.cer
File: -GGkJMXdlLdB2BgJtff_OVVjdl4.cer (raw, json)
Hash identifier: /0gMssJvhrnQIeuXsK1WBEf+eNTf8Ig0BoK86w2bR0E=
Subject key identifier: F8:61:A4:24:C5:DD:94:B7:41:D8:18:09:B5:F7:FF:39:55:63:76:5E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022753
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915B6E9/0A16919C858E11EC9C028454C4F9AE02/-GGkJMXdlLdB2BgJtff_OVVjdl4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915B6E9/0A16919C858E11EC9C028454C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 05 Jan 2025 13:43:12 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 149496
IP: 103.180.244.0/23
IP: 2001:df0:6340::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141139 (0x22753)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 5 13:43:12 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A915B6E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:a4:37:e8:88:c1:00:1a:b7:8d:82:8d:87:ba:
51:76:dd:43:5d:c8:04:3b:35:c3:84:51:15:ac:5c:
f6:7f:7f:03:b3:47:80:96:72:70:2d:b8:d5:40:fd:
be:4c:0b:fd:a0:c4:81:fc:57:2b:cc:82:ca:92:3a:
4f:dd:d6:c5:71:8c:0f:30:e9:63:fa:7a:36:f5:81:
9a:8e:9c:b0:00:00:55:51:15:9e:b2:b6:76:1a:b6:
a0:b9:6c:99:0f:0a:56:02:37:62:a5:f0:0a:28:2d:
a3:cb:08:38:26:d0:29:bc:3d:39:b6:70:e4:1f:dc:
45:8d:37:ee:1e:88:af:57:da:6d:b0:68:bd:bd:29:
c6:b6:fb:1e:e5:43:3b:63:6d:5c:ac:91:fa:04:fe:
19:1d:75:ab:18:43:1f:a3:88:2a:9f:28:e8:86:fe:
bc:6f:37:6d:30:2c:b8:e1:9a:b9:32:b4:8c:af:ef:
d7:34:d9:85:76:26:03:f2:f4:a6:b7:97:c6:51:12:
e0:49:c0:59:b2:1b:b1:25:47:93:18:e9:71:ab:b4:
5c:ac:32:1b:0c:6e:ed:d9:ac:8e:45:e3:2a:e4:11:
20:58:fb:e4:ce:07:15:11:f8:5c:7e:df:34:44:5b:
a7:f1:01:07:f9:f6:76:d9:98:f3:83:03:09:d2:56:
81:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:61:A4:24:C5:DD:94:B7:41:D8:18:09:B5:F7:FF:39:55:63:76:5E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915B6E9/0A16919C858E11EC9C028454C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915B6E9/0A16919C858E11EC9C028454C4F9AE02/-GGkJMXdlLdB2BgJtff_OVVjdl4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149496
sbgp-ipAddrBlock: critical
IPv4:
103.180.244.0/23
IPv6:
2001:df0:6340::/48
Signature Algorithm: sha256WithRSAEncryption
48:eb:d3:09:4c:83:0a:98:c0:ea:c4:1b:59:27:6f:35:47:fb:
b5:d0:80:d5:ba:e6:14:3d:17:de:70:00:14:23:d3:38:9f:45:
df:1d:4b:79:f9:d8:d2:2f:0e:c9:6b:1e:89:2c:ce:b6:3a:9f:
9e:47:66:fc:df:51:fd:b5:bd:6e:7a:97:89:99:64:15:19:a3:
3f:c4:f5:6b:43:63:bc:ab:05:dd:0c:1b:93:8c:ad:af:e3:eb:
77:6f:29:b9:57:c0:13:73:6a:2c:1d:7d:96:9a:10:45:8e:10:
04:0a:13:54:f6:0b:b4:88:bf:0a:a8:ac:82:21:25:84:6b:89:
b7:31:7e:37:22:19:e5:b5:8a:f3:bf:64:80:1f:c1:16:5a:1e:
ae:91:d8:41:30:78:d5:3b:97:27:34:21:94:0d:dc:2a:8d:18:
4f:ac:72:8e:4b:01:eb:01:7e:67:d9:70:df:59:f8:59:7c:57:
e4:20:0d:0d:b6:8b:6e:b6:a1:e1:a4:a4:79:72:d1:e0:42:0f:
5d:1c:39:ed:d9:74:9e:ea:bb:03:bb:b7:4d:33:2e:ef:a0:12:
a4:15:8b:95:44:40:bc:4d:c4:cf:62:58:fa:bc:21:db:c4:5b:
7c:b5:75:27:d2:04:eb:4a:26:b8:85:5d:75:e6:0f:fe:88:aa:
9d:d9:f8:e1
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAidTMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDEwNTEzNDMxMloXDTI2MDMzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNUI2RTkxMTAvBgNVBAUTKEY4NjFBNDI0QzVERDk0Qjc0MUQ4MTgw
OUI1RjdGRjM5NTU2Mzc2NUUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCZpDfoiMEAGreNgo2HulF23UNdyAQ7NcOEURWsXPZ/fwOzR4CWcnAtuNVA/b5M
C/2gxIH8VyvMgsqSOk/d1sVxjA8w6WP6ejb1gZqOnLAAAFVRFZ6ytnYatqC5bJkP
ClYCN2Kl8AooLaPLCDgm0Cm8PTm2cOQf3EWNN+4eiK9X2m2waL29Kca2+x7lQztj
bVyskfoE/hkddasYQx+jiCqfKOiG/rxvN20wLLjhmrkytIyv79c02YV2JgPy9Ka3
l8ZREuBJwFmyG7ElR5MY6XGrtFysMhsMbu3ZrI5F4yrkESBY++TOBxUR+Fx+3zRE
W6fxAQf59nbZmPODAwnSVoEXAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQU+GGkJMXd
lLdB2BgJtff/OVVjdl4wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTVCNkU5LzBBMTY5MTlDODU4RTExRUM5QzAyODQ1NEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1QjZFOS8wQTE2OTE5Qzg1OEUxMUVDOUMwMjg0NTRDNEY5QUUwMi8tR0drSk1Y
ZGxMZEIyQmdKdGZmX09WVmpkbDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAkf4MDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ7T0MA8EAgAC
MAkDBwAgAQ3wY0AwDQYJKoZIhvcNAQELBQADggEBAEjr0wlMgwqYwOrEG1knbzVH
+7XQgNW65hQ9F95wABQj0zifRd8dS3n52NIvDslrHokszrY6n55HZvzfUf21vW56
l4mZZBUZoz/E9WtDY7yrBd0MG5OMra/j63dvKblXwBNzaiwdfZaaEEWOEAQKE1T2
C7SIvwqorIIhJYRribcxfjciGeW1ivO/ZIAfwRZaHq6R2EEweNU7lyc0IZQN3CqN
GE+sco5LAesBfmfZcN9Z+Fl8V+QgDQ22i262oeGkpHly0eBCD10cOe3ZdJ7quwO7
t00zLu+gEqQVi5VEQLxNxM9iWPq8IdvEW3y1dSfSBOtKJriFXXXmD/6Iqp3Z+OE=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:24:08 2025 by rpki-client