Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6bez7TFz3kD-TB_m2P5CucvpyDM.cer
File: 6bez7TFz3kD-TB_m2P5CucvpyDM.cer (raw, json)
Hash identifier: 5toWQls4oL+6vrNsTuv5o3/4FiSSgeKL9MC9KjTharo=
Subject key identifier: E9:B7:B3:ED:31:73:DE:40:FE:4C:1F:E6:D8:FE:42:B9:CB:E9:C8:33
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020829
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9137E12/C7280F345F9A11EFB442BF73C4F9AE02/6bez7TFz3kD-TB_m2P5CucvpyDM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9137E12/C7280F345F9A11EFB442BF73C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 21 Aug 2024 08:53:11 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 138661
IP: 103.135.188.0/24
IP: 2001:df7:ef00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133161 (0x20829)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Aug 21 08:53:11 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A9137E12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7f:aa:16:a9:e7:c1:ab:5a:3f:99:9a:0a:84:
a6:56:35:a8:36:18:6e:f9:bf:e4:59:21:5a:02:9d:
32:ed:46:8c:83:00:19:f2:15:16:f3:fe:c2:ba:eb:
7d:78:89:78:a4:07:b8:ab:b0:1c:23:21:e1:14:bd:
8e:e7:74:88:a0:77:b2:6c:12:81:e3:69:a1:8b:82:
c3:c0:d3:f0:4f:84:16:45:fb:44:96:0a:6d:6a:75:
73:e9:93:40:ef:08:92:38:4f:f4:2c:e4:00:51:fe:
14:cd:e6:5c:51:fa:06:c7:81:11:69:ea:03:28:66:
22:58:04:02:18:f1:93:42:bc:02:41:54:63:ac:df:
ec:04:3e:f8:4b:0a:be:77:9a:e2:a4:5d:ad:71:39:
c3:7c:83:9e:68:b3:b8:88:cf:a1:45:03:05:e8:80:
30:81:11:08:0e:41:18:18:aa:49:2d:47:7d:bc:c4:
f2:d4:ec:44:17:c6:7a:b2:3f:8c:d6:80:66:fd:95:
bf:15:a8:f9:6b:1a:58:5b:03:02:e2:59:e0:01:25:
66:d9:82:44:b8:33:f2:5e:1e:10:fd:41:a3:72:9a:
04:0e:a9:dd:e4:08:c2:85:b6:0b:71:8a:6e:39:f5:
64:f8:2c:a5:61:10:67:4e:68:ea:35:89:a5:6b:be:
f2:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:B7:B3:ED:31:73:DE:40:FE:4C:1F:E6:D8:FE:42:B9:CB:E9:C8:33
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9137E12/C7280F345F9A11EFB442BF73C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9137E12/C7280F345F9A11EFB442BF73C4F9AE02/6bez7TFz3kD-TB_m2P5CucvpyDM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138661
sbgp-ipAddrBlock: critical
IPv4:
103.135.188.0/24
IPv6:
2001:df7:ef00::/48
Signature Algorithm: sha256WithRSAEncryption
79:de:8b:2b:04:59:ac:64:5c:6a:1e:e8:8b:35:6c:9c:16:cb:
ca:b0:94:61:b1:38:b8:5f:b6:bb:de:06:f4:5c:53:d6:ee:2b:
4e:7d:0f:a4:59:4c:cc:cc:59:e8:97:35:31:c6:4a:4c:87:95:
3c:01:f8:0f:d7:29:6b:3d:d7:73:c4:41:75:c6:33:2f:2d:62:
d5:d4:ae:d0:93:12:50:a9:ac:4a:34:7e:1d:47:11:3f:1b:ab:
da:ab:8a:04:50:e8:9a:1a:e2:1d:d4:dd:b2:bb:24:fe:e7:e0:
c3:71:a6:f8:20:93:75:3f:97:04:6b:7a:49:ac:8b:64:ad:91:
89:03:59:83:9b:18:d4:53:1b:00:1f:de:f6:6f:c8:c0:f9:0e:
60:dd:7d:24:b6:60:a4:64:3f:00:5c:b7:ed:18:e5:59:42:8e:
8a:76:36:58:df:5a:47:2f:16:02:cd:fd:1a:62:56:7c:48:d5:
00:c6:42:53:7a:7a:d7:19:36:6f:51:04:46:9e:ee:61:66:c5:
c4:38:49:5d:a8:ad:28:a7:a4:b1:33:34:9b:b7:bf:90:cd:1c:
a0:83:55:24:e7:a0:5d:a2:f0:02:51:0f:67:1c:f8:dc:d2:18:
c3:87:ee:fe:90:64:8c:ad:3e:35:62:aa:9e:71:97:42:88:08:
9d:3b:76:89
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAggpMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDgyMTA4NTMxMVoXDTI1MDUyODAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMzdFMTIxMTAvBgNVBAUTKEU5QjdCM0VEMzE3M0RFNDBGRTRDMUZF
NkQ4RkU0MkI5Q0JFOUM4MzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC1f6oWqefBq1o/mZoKhKZWNag2GG75v+RZIVoCnTLtRoyDABnyFRbz/sK66314
iXikB7irsBwjIeEUvY7ndIigd7JsEoHjaaGLgsPA0/BPhBZF+0SWCm1qdXPpk0Dv
CJI4T/Qs5ABR/hTN5lxR+gbHgRFp6gMoZiJYBAIY8ZNCvAJBVGOs3+wEPvhLCr53
muKkXa1xOcN8g55os7iIz6FFAwXogDCBEQgOQRgYqkktR328xPLU7EQXxnqyP4zW
gGb9lb8VqPlrGlhbAwLiWeABJWbZgkS4M/JeHhD9QaNymgQOqd3kCMKFtgtxim45
9WT4LKVhEGdOaOo1iaVrvvIFAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQU6bez7TFz
3kD+TB/m2P5CucvpyDMwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTM3RTEyL0M3MjgwRjM0NUY5QTExRUZCNDQyQkY3M0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEzN0UxMi9DNzI4MEYzNDVGOUExMUVGQjQ0MkJGNzNDNEY5QUUwMi82YmV6N1RG
ejNrRC1UQl9tMlA1Q3VjdnB5RE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAh2lMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAZ4e8MA8EAgAC
MAkDBwAgAQ337wAwDQYJKoZIhvcNAQELBQADggEBAHneiysEWaxkXGoe6Is1bJwW
y8qwlGGxOLhftrveBvRcU9buK059D6RZTMzMWeiXNTHGSkyHlTwB+A/XKWs913PE
QXXGMy8tYtXUrtCTElCprEo0fh1HET8bq9qrigRQ6Joa4h3U3bK7JP7n4MNxpvgg
k3U/lwRrekmsi2StkYkDWYObGNRTGwAf3vZvyMD5DmDdfSS2YKRkPwBct+0Y5VlC
jop2NljfWkcvFgLN/RpiVnxI1QDGQlN6etcZNm9RBEae7mFmxcQ4SV2orSinpLEz
NJu3v5DNHKCDVSTnoF2i8AJRD2cc+NzSGMOH7v6QZIytPjViqp5xl0KICJ07dok=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:08:58 2025 by rpki-client