Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4lNNJseMlwF5CZZDjBFBCCVHdqo.cer
File: 4lNNJseMlwF5CZZDjBFBCCVHdqo.cer (raw, json)
Hash identifier: svfaH+fmWrdGFjWlZ354Ntol3x6vohaIhNqoIKX/VUE=
Subject key identifier: E2:53:4D:26:C7:8C:97:01:79:09:96:43:8C:11:41:08:25:47:76:AA
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02027B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9127E99/0ACE19B07A8511EDAD692887C4F9AE02/4lNNJseMlwF5CZZDjBFBCCVHdqo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9127E99/0ACE19B07A8511EDAD692887C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 26 Jul 2024 13:23:16 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 133534
IP: 45.117.24.0/22
IP: 103.234.108.0/22
IP: 2001:df6:8800::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131707 (0x2027b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jul 26 13:23:16 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A9127E99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:d5:1c:73:93:ec:38:41:97:02:a3:7c:6f:63:
da:11:33:2e:39:76:08:1d:cb:29:e2:fb:6d:35:ac:
32:06:06:81:b2:bb:8d:d4:92:58:65:4a:c2:9e:8a:
bc:f7:34:93:d2:57:c2:e9:9f:f0:d4:d6:48:18:41:
8a:11:4c:63:9d:16:40:90:9c:70:58:80:f5:2a:47:
91:6a:4f:12:fe:ac:80:10:72:25:f1:f0:f6:a6:3c:
a2:46:e4:d0:ef:91:97:5d:48:04:c0:aa:3b:73:0a:
24:35:f7:bc:e0:eb:5b:44:de:88:6b:af:25:d6:2b:
60:79:38:2b:82:d0:37:6f:ac:f6:5c:bc:df:77:fd:
6c:75:31:b4:9c:03:45:3c:2f:9b:47:fb:f9:3b:86:
d6:8b:c2:71:b9:4d:9c:52:8c:3b:74:c9:0a:ce:01:
f0:6a:5c:2e:65:ad:4a:4e:13:73:af:b8:97:76:5f:
57:a2:57:2e:e4:00:5c:ae:f9:a8:82:3a:0e:68:73:
8d:35:23:b3:23:8a:30:ae:40:3b:23:cb:f3:9b:13:
03:e7:d6:d8:b5:3a:c5:ba:2a:dc:c4:4e:77:db:4f:
fc:32:1b:b2:3f:71:b1:eb:c1:ea:96:65:cb:e7:26:
71:16:b2:dc:79:ae:f5:42:46:64:5a:8d:7a:d8:5b:
84:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:53:4D:26:C7:8C:97:01:79:09:96:43:8C:11:41:08:25:47:76:AA
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9127E99/0ACE19B07A8511EDAD692887C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9127E99/0ACE19B07A8511EDAD692887C4F9AE02/4lNNJseMlwF5CZZDjBFBCCVHdqo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133534
sbgp-ipAddrBlock: critical
IPv4:
45.117.24.0/22
103.234.108.0/22
IPv6:
2001:df6:8800::/48
Signature Algorithm: sha256WithRSAEncryption
a4:f4:ad:2f:d2:8e:9c:c3:b9:cf:54:af:41:e9:4d:91:ef:f7:
81:40:95:69:72:d9:d3:b0:eb:02:59:fd:0d:12:05:1c:8d:b2:
f9:4a:a7:14:f4:72:49:46:e5:83:e6:af:af:11:0f:18:29:d5:
d9:87:9d:46:7f:52:b4:08:da:cc:ad:bc:d4:96:0f:2d:83:ea:
68:af:18:95:3e:4f:94:af:5b:c8:a9:73:f9:16:e0:eb:f7:87:
49:6b:00:4d:c3:4f:fa:bf:5c:1c:18:82:a7:59:0c:4a:18:a7:
71:7a:95:c3:77:a9:c3:09:18:26:83:e5:fd:dc:0c:68:16:44:
56:01:86:45:12:7a:f7:05:c2:a9:6a:bb:7e:3b:7d:3e:97:1e:
f6:a2:9b:0b:15:e0:10:17:81:9c:17:be:e3:c7:c9:9f:c0:c8:
f1:69:84:80:b4:b3:4e:23:38:72:90:e9:aa:c0:d0:cd:c3:1a:
25:2c:db:21:b0:44:c1:32:4d:9c:6f:14:01:45:ec:71:46:9f:
bd:93:d0:37:63:70:2d:f7:f1:50:d9:a0:ae:4a:32:16:1f:36:
33:3a:79:14:d5:c9:76:7c:1d:5b:26:28:73:de:9f:33:31:cb:
7d:8f:31:13:03:f2:df:65:a8:c0:d6:65:47:9c:b4:47:6a:62:
e2:6b:4e:c7
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIDAgJ7MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDcyNjEzMjMxNloXDTI1MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMjdFOTkxMTAvBgNVBAUTKEUyNTM0RDI2Qzc4Qzk3MDE3OTA5OTY0
MzhDMTE0MTA4MjU0Nzc2QUEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDj1Rxzk+w4QZcCo3xvY9oRMy45dggdyyni+201rDIGBoGyu43UklhlSsKeirz3
NJPSV8Lpn/DU1kgYQYoRTGOdFkCQnHBYgPUqR5FqTxL+rIAQciXx8PamPKJG5NDv
kZddSATAqjtzCiQ197zg61tE3ohrryXWK2B5OCuC0DdvrPZcvN93/Wx1MbScA0U8
L5tH+/k7htaLwnG5TZxSjDt0yQrOAfBqXC5lrUpOE3OvuJd2X1eiVy7kAFyu+aiC
Og5oc401I7MjijCuQDsjy/ObEwPn1ti1OsW6KtzETnfbT/wyG7I/cbHrweqWZcvn
JnEWstx5rvVCRmRajXrYW4RDAgMBAAGjggMmMIIDIjAdBgNVHQ4EFgQU4lNNJseM
lwF5CZZDjBFBCCVHdqowHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTI3RTk5LzBBQ0UxOUIwN0E4NTExRURBRDY5Mjg4N0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEyN0U5OS8wQUNFMTlCMDdBODUxMUVEQUQ2OTI4ODdDNEY5QUUwMi80bE5OSnNl
TWx3RjVDWlpEakJGQkNDVkhkcW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAgmeMDYGCCsGAQUFBwEHAQH/BCcwJTASBAIAATAMAwQCLXUYAwQCZ+ps
MA8EAgACMAkDBwAgAQ32iAAwDQYJKoZIhvcNAQELBQADggEBAKT0rS/SjpzDuc9U
r0HpTZHv94FAlWly2dOw6wJZ/Q0SBRyNsvlKpxT0cklG5YPmr68RDxgp1dmHnUZ/
UrQI2sytvNSWDy2D6mivGJU+T5SvW8ipc/kW4Ov3h0lrAE3DT/q/XBwYgqdZDEoY
p3F6lcN3qcMJGCaD5f3cDGgWRFYBhkUSevcFwqlqu347fT6XHvaimwsV4BAXgZwX
vuPHyZ/AyPFphIC0s04jOHKQ6arA0M3DGiUs2yGwRMEyTZxvFAFF7HFGn72T0Ddj
cC338VDZoK5KMhYfNjM6eRTVyXZ8HVsmKHPenzMxy32PMRMD8t9lqMDWZUectEdq
YuJrTsc=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:05:19 2025 by rpki-client