Certificate

$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5OEB7vRDFQxiEQrK-ogVVMCJ_FM.cer
File:                     5OEB7vRDFQxiEQrK-ogVVMCJ_FM.cer (raw, json)
Hash identifier:          1EvPeV9kWejgJiV6OZivf7zPoyc5gMjTftppIWXlK3E=
Subject key identifier:   E4:E1:01:EE:F4:43:15:0C:62:11:0A:CA:FA:88:15:54:C0:89:FC:53
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer:       /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial:       02C311
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest:                 rsync://rpki.apnic.net/member_repository/A9131612/E3B84C8CBE8611E99A6C011FC4F9AE02/5OEB7vRDFQxiEQrK-ogVVMCJ_FM.mft
caRepository:             rsync://rpki.apnic.net/member_repository/A9131612/E3B84C8CBE8611E99A6C011FC4F9AE02/
Notify URL:               https://rrdp.apnic.net/notification.xml
Certificate not before:   Mon 06 Jul 2026 12:48:48 +0000
Certificate not after:    Thu 30 Sep 2027 00:00:00 +0000
Subordinate resources:    AS: 131332
                          IP: 103.24.134.0/24
                          IP: 103.163.4.0/24
Validation:               OK
Signature path:           rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 13 Jul 2026 17:33:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 181009 (0x2c311)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
        Validity
            Not Before: Jul  6 12:48:48 2026 GMT
            Not After : Sep 30 00:00:00 2027 GMT
        Subject: CN=A9131612, serialNumber=E4E101EEF443150C62110ACAFA881554C089FC53
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:66:67:2f:73:aa:d1:18:14:ba:f9:30:fc:35:
                    6f:06:c4:bd:4b:7e:df:53:33:a2:15:cf:99:3f:c4:
                    a1:12:8a:c3:cc:90:61:99:b0:e3:36:33:85:90:33:
                    f9:e9:01:8a:51:dd:7f:8f:16:2d:52:28:41:8e:41:
                    16:d7:61:ed:84:6e:a8:ed:c9:84:4f:d0:f2:9b:55:
                    bc:04:00:e2:15:89:df:5a:be:c2:53:7b:ae:a2:bf:
                    63:ff:bf:10:be:55:3b:54:c8:f7:cc:8c:8b:ff:b8:
                    35:fa:21:8a:44:9e:0c:0e:e3:12:c3:30:7b:c1:46:
                    c0:20:f9:78:9a:f2:7b:55:cd:13:9a:94:b4:05:8a:
                    2c:76:31:d0:57:98:35:58:5e:14:a8:71:19:47:86:
                    bf:bc:c3:37:8a:32:67:4b:ec:b9:04:36:df:9c:03:
                    3b:23:f3:b6:3c:99:a8:9c:c9:1a:93:21:77:df:d2:
                    19:18:28:90:b3:99:4f:94:b6:cf:c3:ce:bb:b3:15:
                    43:24:3a:3a:a7:28:be:74:8c:6f:f1:7d:33:bc:a0:
                    06:e0:97:1b:f0:d3:ef:53:11:0f:28:2c:a7:f7:5c:
                    b1:ea:e4:fb:53:8c:e9:a2:52:93:a5:9c:ab:79:d3:
                    d8:bb:41:41:18:76:ba:2a:86:79:da:e0:ea:7f:76:
                    71:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E4:E1:01:EE:F4:43:15:0C:62:11:0A:CA:FA:88:15:54:C0:89:FC:53
            X509v3 Authority Key Identifier:
                keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9131612/E3B84C8CBE8611E99A6C011FC4F9AE02/
                RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9131612/E3B84C8CBE8611E99A6C011FC4F9AE02/5OEB7vRDFQxiEQrK-ogVVMCJ_FM.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  131332

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.24.134.0/24
                  103.163.4.0/24

    Signature Algorithm: sha256WithRSAEncryption
         46:db:61:b7:32:b8:67:72:6d:6e:67:84:9d:38:36:b4:e3:97:
         8c:04:29:08:ba:ff:c8:48:f8:b2:fd:2e:a1:ed:07:f8:8c:2e:
         5c:a9:24:20:98:fa:3c:4a:ff:9e:67:8f:ce:a2:3d:5d:52:9a:
         12:66:f6:11:e3:be:a6:3f:80:cc:d8:87:0f:fd:5a:0a:08:8d:
         33:dd:20:c6:11:68:ab:80:de:5d:a3:cc:32:ef:9a:13:6c:d0:
         5d:e6:8a:77:3f:b0:34:e1:8b:25:6b:af:3e:0a:30:0b:e6:0b:
         9f:a2:3e:b6:ee:0e:b5:68:56:a3:8c:1a:df:92:82:1e:c6:4c:
         e1:a1:a2:20:03:54:ef:48:f5:79:dc:1d:52:35:df:93:ca:b5:
         1e:6e:da:34:41:d0:ef:ae:89:b8:77:58:5a:44:0d:79:5b:c6:
         7f:cd:a5:11:11:28:21:6b:5b:d5:fa:2e:ac:5a:21:12:83:b2:
         d0:9e:5a:a3:be:1d:27:81:58:f5:35:23:c7:3b:49:f5:d5:e6:
         6c:65:35:f3:08:8b:08:e6:95:c9:d1:20:3b:4b:2a:36:ab:fe:
         45:49:df:70:ff:a2:86:3f:af:eb:34:d1:70:72:e8:d3:85:21:
         8d:fd:2f:e7:ae:8f:07:3d:8b:e3:96:d3:33:82:1a:07:f0:13:
         68:0b:49:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 19:18:37 2026 by rpki-client