Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5c6UvYXPCPR6j97JcE8dztA4Bow.cer
File: 5c6UvYXPCPR6j97JcE8dztA4Bow.cer (raw, json)
Hash identifier: MUOa4xUEcaoOqdWQZyQrb6EoeIVWVCNntb0ERAPw+2A=
Subject key identifier: E5:CE:94:BD:85:CF:08:F4:7A:8F:DE:C9:70:4F:1D:CE:D0:38:06:8C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021A7C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91517A0/955FA5529F6911EFA4FEAF65C4F9AE02/5c6UvYXPCPR6j97JcE8dztA4Bow.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91517A0/955FA5529F6911EFA4FEAF65C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 10 Nov 2024 13:42:14 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 131189
IP: 103.38.144.0/24
IP: 103.85.212.0/24
IP: 103.198.18.0/23
IP: 2001:df1:b0c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137852 (0x21a7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 10 13:42:14 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91517A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:12:8a:6c:84:21:6d:96:aa:b8:87:94:5d:52:
89:f8:98:a7:4a:70:18:73:1d:28:52:17:7f:41:5a:
d9:33:41:58:ad:70:fe:c1:cc:1b:49:f7:42:34:c2:
52:7d:6a:96:c2:ac:e7:4e:b7:38:f5:04:55:1d:76:
57:c7:9e:b1:67:fb:0b:67:c0:c1:48:7d:8c:0c:1a:
b2:94:3c:0b:33:cc:d3:e2:e6:65:d5:d8:af:2b:39:
2a:49:8e:0f:27:e0:f0:90:b2:88:e1:62:35:cd:8e:
cf:c9:e0:35:09:50:55:fa:dc:c7:82:ca:c2:f4:9a:
c9:f0:b1:23:db:98:69:25:47:e9:71:08:09:d6:78:
bd:42:09:bb:f8:99:27:bb:9e:3d:9a:ad:06:98:a6:
05:3e:f6:99:b5:ad:bf:55:c3:40:16:f8:d7:69:80:
e5:12:e6:46:c5:e6:ab:09:a8:3a:92:19:5b:b0:7b:
08:16:52:63:8e:dc:08:c7:d7:32:93:a5:df:f0:22:
66:0d:8a:75:c4:bc:78:1a:ff:97:e0:0e:6f:c9:54:
44:bf:c8:b1:d9:d7:9d:a5:44:4e:ca:cc:89:59:35:
1c:36:d5:24:fe:9e:ce:db:e3:0b:6a:73:f0:0d:3b:
2c:e9:a4:7b:d6:13:a7:37:9b:84:43:99:f9:c2:1e:
75:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:CE:94:BD:85:CF:08:F4:7A:8F:DE:C9:70:4F:1D:CE:D0:38:06:8C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91517A0/955FA5529F6911EFA4FEAF65C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91517A0/955FA5529F6911EFA4FEAF65C4F9AE02/5c6UvYXPCPR6j97JcE8dztA4Bow.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
131189
sbgp-ipAddrBlock: critical
IPv4:
103.38.144.0/24
103.85.212.0/24
103.198.18.0/23
IPv6:
2001:df1:b0c0::/48
Signature Algorithm: sha256WithRSAEncryption
3d:ab:63:d9:c9:3b:c5:21:a7:69:95:f1:9a:94:bc:d6:dd:4c:
ed:e2:e0:e6:f2:21:fd:47:74:32:c8:cb:cb:d8:8a:ba:db:b8:
dc:9e:e0:55:15:63:88:f8:b9:9f:63:24:9e:e3:fc:99:46:48:
7e:fe:da:0d:7e:cb:c2:d2:b0:04:aa:cd:3d:6e:d7:3e:ea:e8:
14:ed:d1:c5:da:53:67:eb:bc:35:b8:23:6a:a1:14:c0:07:37:
28:2c:6b:b3:23:d1:cb:20:08:5a:7f:ba:1f:94:da:48:be:67:
6b:43:5e:69:70:2d:b9:ee:7a:b5:41:0a:3f:ed:5f:2d:d2:a5:
55:b4:b4:44:bf:69:24:0b:fc:b4:59:ef:56:b2:4d:d0:a6:ae:
8b:5f:29:8f:e0:e7:72:02:ea:91:9c:c8:9d:35:4b:b3:e8:36:
01:9c:70:e3:88:c2:a6:43:19:c9:ea:ea:56:ac:0a:88:5f:3f:
2f:b6:25:43:a6:89:8e:1b:5f:ed:b6:1d:c2:2c:ed:1c:41:da:
52:3a:6e:5a:84:2f:2d:79:6c:43:79:6a:aa:9f:ee:ee:50:c3:
5d:c7:de:8f:75:26:b9:24:5f:e9:7e:8e:64:d6:01:d1:36:e5:
00:0b:42:c7:f3:9c:15:7e:1d:80:ab:a4:f1:a1:1d:a7:32:e9:
f9:c7:4c:14
-----BEGIN CERTIFICATE-----
MIIGNzCCBR+gAwIBAgIDAhp8MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTExMDEzNDIxNFoXDTI1MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNTE3QTAxMTAvBgNVBAUTKEU1Q0U5NEJEODVDRjA4RjQ3QThGREVD
OTcwNEYxRENFRDAzODA2OEMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCwEopshCFtlqq4h5RdUon4mKdKcBhzHShSF39BWtkzQVitcP7BzBtJ90I0wlJ9
apbCrOdOtzj1BFUddlfHnrFn+wtnwMFIfYwMGrKUPAszzNPi5mXV2K8rOSpJjg8n
4PCQsojhYjXNjs/J4DUJUFX63MeCysL0msnwsSPbmGklR+lxCAnWeL1CCbv4mSe7
nj2arQaYpgU+9pm1rb9Vw0AW+NdpgOUS5kbF5qsJqDqSGVuwewgWUmOO3AjH1zKT
pd/wImYNinXEvHga/5fgDm/JVES/yLHZ152lRE7KzIlZNRw21ST+ns7b4wtqc/AN
OyzppHvWE6c3m4RDmfnCHnVRAgMBAAGjggMsMIIDKDAdBgNVHQ4EFgQU5c6UvYXP
CPR6j97JcE8dztA4BowwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTUxN0EwLzk1NUZBNTUyOUY2OTExRUZBNEZFQUY2NUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1MTdBMC85NTVGQTU1MjlGNjkxMUVGQTRGRUFGNjVDNEY5QUUwMi81YzZVdllY
UENQUjZqOTdKY0U4ZHp0QTRCb3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAgB1MDwGCCsGAQUFBwEHAQH/BC0wKzAYBAIAATASAwQAZyaQAwQAZ1XU
AwQBZ8YSMA8EAgACMAkDBwAgAQ3xsMAwDQYJKoZIhvcNAQELBQADggEBAD2rY9nJ
O8Uhp2mV8ZqUvNbdTO3i4ObyIf1HdDLIy8vYirrbuNye4FUVY4j4uZ9jJJ7j/JlG
SH7+2g1+y8LSsASqzT1u1z7q6BTt0cXaU2frvDW4I2qhFMAHNygsa7Mj0csgCFp/
uh+U2ki+Z2tDXmlwLbnuerVBCj/tXy3SpVW0tES/aSQL/LRZ71ayTdCmrotfKY/g
53IC6pGcyJ01S7PoNgGccOOIwqZDGcnq6lasCohfPy+2JUOmiY4bX+22HcIs7RxB
2lI6blqELy15bEN5aqqf7u5Qw13H3o91JrkkX+l+jmTWAdE25QALQsfznBV+HYCr
pPGhHacy6fnHTBQ=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:15 2025 by rpki-client