Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-EA-AQBOgX5Iu4Ry04KvqbCK5g.cer
File: 4-EA-AQBOgX5Iu4Ry04KvqbCK5g.cer (raw, json)
Hash identifier: d5QTCEH4nwSHDdl2zxW2IqaAyDJQf9crCJgS1RmfrYs=
Subject key identifier: E3:E1:00:F8:04:01:3A:05:F9:22:EE:11:CB:4E:0A:BE:A6:C2:2B:98
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F2C9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9149B61/7616D4FC2ACD11EEB7222C3CC4F9AE02/4-EA-AQBOgX5Iu4Ry04KvqbCK5g.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9149B61/7616D4FC2ACD11EEB7222C3CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 20 May 2024 16:06:48 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 149787
IP: 103.186.86.0/23
IP: 2001:df0:a5c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127689 (0x1f2c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: May 20 16:06:48 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A9149B61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:51:16:e2:71:9b:cc:4c:6f:36:ea:b3:34:f4:
d9:35:f6:63:3f:9a:3c:97:dd:a3:11:40:e3:33:72:
cf:ac:83:4d:8d:6d:a6:c5:a9:4f:c7:d0:f0:e6:f6:
10:fb:1c:48:b9:41:e2:a6:4b:97:02:48:5a:05:94:
f1:85:5f:6a:57:47:e8:f3:db:16:19:74:26:b6:dc:
02:6e:31:de:03:eb:46:08:35:82:1f:1c:7c:a0:7a:
f0:20:6b:e9:e5:1e:08:a5:85:7d:a8:b2:d1:38:a1:
6b:aa:5a:eb:50:77:e6:10:d0:15:ee:e4:5f:76:87:
ca:b8:85:1f:83:61:ba:81:f3:bf:f4:39:92:d1:2b:
8c:99:33:a8:30:fa:4b:99:e0:a3:4a:27:b3:0e:d3:
5a:89:16:70:d4:db:03:33:1d:4c:46:d2:f0:10:29:
83:a7:4e:ea:8e:ae:08:09:e3:a6:a1:5f:4e:38:e8:
4c:67:97:79:7b:df:e8:f9:53:e4:4a:b0:92:53:78:
d3:04:7c:84:ec:f2:15:35:26:29:63:f6:57:bb:d2:
a3:c5:10:35:39:64:70:93:56:b9:99:11:68:26:d3:
ce:2b:5d:0d:ed:e7:59:dc:77:d7:d7:76:9e:85:77:
d9:8d:b3:55:5c:36:9f:09:cb:b3:12:80:10:2b:b0:
a1:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:E1:00:F8:04:01:3A:05:F9:22:EE:11:CB:4E:0A:BE:A6:C2:2B:98
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9149B61/7616D4FC2ACD11EEB7222C3CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9149B61/7616D4FC2ACD11EEB7222C3CC4F9AE02/4-EA-AQBOgX5Iu4Ry04KvqbCK5g.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149787
sbgp-ipAddrBlock: critical
IPv4:
103.186.86.0/23
IPv6:
2001:df0:a5c0::/48
Signature Algorithm: sha256WithRSAEncryption
03:8d:53:0c:39:17:17:93:f1:5b:b3:65:6e:ff:0d:4a:b6:c5:
94:5e:be:98:4a:81:39:46:ca:c2:57:5e:c7:f5:e5:f2:f5:81:
27:eb:c2:85:86:a3:18:39:d4:b7:78:55:4f:b4:0e:99:dd:eb:
2d:25:55:5f:e8:3d:b7:7d:25:d7:2a:9c:bd:43:80:1c:a2:5d:
07:5a:23:5b:cd:e2:1f:4b:6c:74:cd:a8:ac:6d:d3:5a:59:3e:
d5:c6:b4:57:f6:79:f3:07:b7:af:f7:24:a8:57:63:0e:92:0f:
a2:99:03:d5:75:1a:b7:ea:0c:fd:34:ce:aa:50:3a:54:cc:9f:
0c:aa:5d:04:d7:20:db:b3:5d:e0:b3:b7:45:7d:f8:41:3a:62:
af:00:8a:22:4e:a8:86:00:4c:c0:9f:82:65:fc:bb:4a:bd:46:
35:fa:fc:99:66:04:37:b1:e4:a0:fd:c1:19:4a:eb:3c:d9:fc:
88:05:71:70:a1:0c:77:b7:e5:e0:ff:00:1e:fa:dd:36:6e:04:
a6:df:75:7a:2e:4e:4e:22:75:7d:2d:39:90:a0:2c:f6:e4:69:
f0:fd:98:37:eb:ce:0c:b4:a7:af:bd:64:bc:04:80:63:32:fe:
20:77:96:2d:cf:ea:de:63:fb:58:f9:72:71:70:10:ab:a1:ee:
b2:b7:4b:1f
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAfLJMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDUyMDE2MDY0OFoXDTI1MDczMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNDlCNjExMTAvBgNVBAUTKEUzRTEwMEY4MDQwMTNBMDVGOTIyRUUx
MUNCNEUwQUJFQTZDMjJCOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDoURbicZvMTG826rM09Nk19mM/mjyX3aMRQOMzcs+sg02NbabFqU/H0PDm9hD7
HEi5QeKmS5cCSFoFlPGFX2pXR+jz2xYZdCa23AJuMd4D60YINYIfHHygevAga+nl
HgilhX2ostE4oWuqWutQd+YQ0BXu5F92h8q4hR+DYbqB87/0OZLRK4yZM6gw+kuZ
4KNKJ7MO01qJFnDU2wMzHUxG0vAQKYOnTuqOrggJ46ahX0446Exnl3l73+j5U+RK
sJJTeNMEfITs8hU1Jilj9le70qPFEDU5ZHCTVrmZEWgm084rXQ3t51ncd9fXdp6F
d9mNs1VcNp8Jy7MSgBArsKG3AgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQU4+EA+AQB
OgX5Iu4Ry04KvqbCK5gwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTQ5QjYxLzc2MTZENEZDMkFDRDExRUVCNzIyMkMzQ0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE0OUI2MS83NjE2RDRGQzJBQ0QxMUVFQjcyMjJDM0NDNEY5QUUwMi80LUVBLUFR
Qk9nWDVJdTRSeTA0S3ZxYkNLNWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAkkbMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ7pWMA8EAgAC
MAkDBwAgAQ3wpcAwDQYJKoZIhvcNAQELBQADggEBAAONUww5FxeT8VuzZW7/DUq2
xZRevphKgTlGysJXXsf15fL1gSfrwoWGoxg51Ld4VU+0Dpnd6y0lVV/oPbd9Jdcq
nL1DgByiXQdaI1vN4h9LbHTNqKxt01pZPtXGtFf2efMHt6/3JKhXYw6SD6KZA9V1
GrfqDP00zqpQOlTMnwyqXQTXINuzXeCzt0V9+EE6Yq8AiiJOqIYATMCfgmX8u0q9
RjX6/JlmBDex5KD9wRlK6zzZ/IgFcXChDHe35eD/AB763TZuBKbfdXouTk4idX0t
OZCgLPbkafD9mDfrzgy0p6+9ZLwEgGMy/iB3li3P6t5j+1j5cnFwEKuh7rK3Sx8=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:58 2025 by rpki-client