Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4klmeNb9TiLorA6f9s1YENb7eU0.cer
File: 4klmeNb9TiLorA6f9s1YENb7eU0.cer (raw, json)
Hash identifier: 2q3HxJagBg2S3+IRC493kDk70f6RNdBrg9yoEEj9KeI=
Subject key identifier: E2:49:66:78:D6:FD:4E:22:E8:AC:0E:9F:F6:CD:58:10:D6:FB:79:4D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0230A1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 12 Feb 2025 14:29:01 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 9264
AS: 18217
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143521 (0x230a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 12 14:29:01 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A9177E33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:fa:1b:5c:4d:c8:60:7a:10:7f:fc:5e:2a:55:
60:18:45:ec:e3:64:3c:6f:8a:76:60:65:ad:d0:18:
9e:f2:28:0a:fd:43:8f:c1:4c:42:40:a1:0a:c0:6d:
61:67:c5:db:0d:ce:62:b9:b0:4b:0b:7a:8a:c8:a4:
bc:d2:fc:41:de:f5:ca:9c:25:c8:91:ef:b9:94:30:
cb:4e:3b:62:9f:ca:6e:2d:61:26:09:83:5b:63:d7:
bf:f7:ee:a5:b9:50:f2:e3:ea:20:4a:30:34:87:58:
22:47:ab:90:56:53:04:70:90:28:61:2b:9e:3e:55:
42:a4:ce:c2:ea:b6:e3:cc:2e:09:4f:b6:2f:13:67:
7b:3a:6c:f5:bd:47:b6:6b:e7:bf:32:6f:c4:b0:d8:
40:1b:ac:dc:71:31:9f:2c:29:e4:ee:83:63:34:ca:
2f:cb:33:e9:f2:61:62:93:8b:83:85:1c:cc:17:48:
6a:a7:fc:f4:b9:e6:15:74:bd:8b:9d:87:5a:35:ef:
0c:c1:4b:99:91:10:94:c5:dc:3a:b8:c5:49:52:68:
b7:e0:63:87:bc:6c:77:21:2c:a0:87:0d:e2:ee:05:
cb:bb:27:07:f8:b7:91:64:7b:11:1f:b0:8d:86:67:
39:e0:5b:8c:f5:c9:a5:23:a7:c8:4e:49:cb:96:78:
23:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:49:66:78:D6:FD:4E:22:E8:AC:0E:9F:F6:CD:58:10:D6:FB:79:4D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9264
18217
Signature Algorithm: sha256WithRSAEncryption
3f:0a:56:9a:b4:3b:d6:9c:fd:97:22:53:0b:6d:7e:8c:39:0d:
b7:de:ad:43:15:81:9f:6e:51:13:f5:c2:df:fc:50:a1:ad:0e:
e3:6c:06:81:74:d0:a1:6c:e6:46:fa:d6:04:24:2b:1f:67:cd:
77:54:6a:55:8f:1e:f7:a7:f2:11:ef:f7:00:5e:26:4a:7e:8b:
8c:3c:17:75:99:fd:1c:12:4b:27:a5:ed:7d:80:78:60:aa:49:
50:b9:10:a0:17:4f:68:8c:c8:32:0b:bc:c7:9a:7a:6b:55:26:
16:60:21:5c:35:2e:34:03:0c:02:44:dc:d8:9c:ca:e9:72:ea:
5c:70:52:59:eb:5a:8e:d7:d4:b4:95:f3:4a:7f:3c:eb:a5:b9:
da:d1:49:a0:4b:a1:00:f7:58:8f:50:26:1e:67:cc:08:2e:5d:
11:4f:1f:cb:86:1c:45:2f:d2:f7:e3:f0:ce:dd:ba:e1:31:43:
f8:8c:0c:a0:3d:6c:15:31:3e:5f:27:1d:e4:94:42:12:14:99:
50:6e:26:57:3c:13:42:9a:e8:f5:f9:b7:51:5f:f4:0e:2e:59:
01:1f:70:96:44:26:f1:0d:92:ce:a8:d6:71:c3:66:64:a3:6e:
a2:cf:9f:ce:c9:da:c0:97:4c:01:8e:cb:ea:ed:33:b0:d9:d3:
5b:c6:ff:e2
-----BEGIN CERTIFICATE-----
MIIF/DCCBOSgAwIBAgIDAjChMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDIxMjE0MjkwMVoXDTI2MDUwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNzdFMzMxMTAvBgNVBAUTKEUyNDk2Njc4RDZGRDRFMjJFOEFDMEU5
RkY2Q0Q1ODEwRDZGQjc5NEQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDA+htcTchgehB//F4qVWAYRezjZDxvinZgZa3QGJ7yKAr9Q4/BTEJAoQrAbWFn
xdsNzmK5sEsLeorIpLzS/EHe9cqcJciR77mUMMtOO2Kfym4tYSYJg1tj17/37qW5
UPLj6iBKMDSHWCJHq5BWUwRwkChhK54+VUKkzsLqtuPMLglPti8TZ3s6bPW9R7Zr
578yb8Sw2EAbrNxxMZ8sKeTug2M0yi/LM+nyYWKTi4OFHMwXSGqn/PS55hV0vYud
h1o17wzBS5mREJTF3Dq4xUlSaLfgY4e8bHchLKCHDeLuBcu7Jwf4t5FkexEfsI2G
ZzngW4z1yaUjp8hOScuWeCPlAgMBAAGjggLxMIIC7TAdBgNVHQ4EFgQU4klmeNb9
TiLorA6f9s1YENb7eU0wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTc3RTMzL0E4MEVDRTQ4MUQ4NjExRTJCRTkzMEFERTA4QjAyQ0QyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE3N0UzMy9BODBFQ0U0ODFEODYxMUUyQkU5MzBBREUwOEIwMkNEMi80a2xtZU5i
OVRpTG9yQTZmOXMxWUVOYjdlVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHQYIKwYBBQUHAQgBAf8EDjAM
oAowCAICJDACAkcpMA0GCSqGSIb3DQEBCwUAA4IBAQA/ClaatDvWnP2XIlMLbX6M
OQ233q1DFYGfblET9cLf/FChrQ7jbAaBdNChbOZG+tYEJCsfZ813VGpVjx73p/IR
7/cAXiZKfouMPBd1mf0cEksnpe19gHhgqklQuRCgF09ojMgyC7zHmnprVSYWYCFc
NS40AwwCRNzYnMrpcupccFJZ61qO19S0lfNKfzzrpbna0UmgS6EA91iPUCYeZ8wI
Ll0RTx/LhhxFL9L34/DO3brhMUP4jAygPWwVMT5fJx3klEISFJlQbiZXPBNCmuj1
+bdRX/QOLlkBH3CWRCbxDZLOqNZxw2Zko26iz5/OydrAl0wBjsvq7TOw2dNbxv/i
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:22:17 2025 by rpki-client