Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8H-xPvkeIhGw_ryFWt2vMBsGcaQ.cer
File: 8H-xPvkeIhGw_ryFWt2vMBsGcaQ.cer (raw, json)
Hash identifier: /yqZByqk4AAlPDvbrCD+U1GDn6O0GXJD7aNtsH8IUvI=
Subject key identifier: F0:7F:B1:3E:F9:1E:22:11:B0:FE:BC:85:5A:DD:AF:30:1B:06:71:A4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EFD7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D087E/B019F1CA04FC11EA8CAED415C4F9AE02/8H-xPvkeIhGw_ryFWt2vMBsGcaQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D087E/B019F1CA04FC11EA8CAED415C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 03 May 2024 21:06:03 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 24516
IP: 43.247.124.0 -- 43.247.131.255
IP: 103.227.200.0/22
IP: 103.230.172.0/22
IP: 103.245.216.0/22
IP: 125.254.48.0/23
IP: 203.23.139.0/24
IP: 2402:fa80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126935 (0x1efd7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: May 3 21:06:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91D087E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:07:28:19:93:5d:50:f2:aa:9a:36:de:eb:15:
4c:a7:3f:cb:e1:c0:dc:5f:5c:65:06:e9:3a:10:3c:
c3:94:06:c4:db:f0:4f:07:1d:08:f4:c3:b0:30:0a:
5a:5f:28:98:97:7f:55:eb:b8:bf:79:be:77:28:6c:
51:1b:d0:94:53:55:6c:6b:92:f1:ff:b9:56:8c:23:
22:db:a9:d7:f1:b1:c1:99:d4:e6:99:13:fb:39:5b:
e3:dd:44:37:7d:8b:b1:f3:f8:da:e9:6e:5e:09:e6:
0f:fd:ce:f1:85:00:fe:23:59:b1:61:46:60:b7:97:
6d:bf:78:35:99:3e:33:63:38:e8:77:f1:93:26:bb:
18:97:da:a5:71:d2:b9:24:8a:ee:23:d7:10:89:10:
69:20:a5:d5:32:91:81:03:f9:d3:f1:69:22:69:15:
c8:d1:58:31:07:b3:06:ad:5a:c5:3c:17:d6:68:01:
2d:a7:4c:41:dd:fa:c8:6c:86:1d:62:4a:57:92:fe:
c6:aa:4c:7f:50:fd:3b:fc:e8:a9:a1:cb:aa:c2:24:
a0:05:a0:92:aa:df:12:8f:19:7b:84:39:fe:fa:c2:
18:4f:da:bd:c1:9d:af:9a:15:f1:03:bf:47:72:61:
74:c2:f4:79:59:42:aa:ce:1e:ab:49:58:f0:87:ff:
6c:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:7F:B1:3E:F9:1E:22:11:B0:FE:BC:85:5A:DD:AF:30:1B:06:71:A4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D087E/B019F1CA04FC11EA8CAED415C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D087E/B019F1CA04FC11EA8CAED415C4F9AE02/8H-xPvkeIhGw_ryFWt2vMBsGcaQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24516
sbgp-ipAddrBlock: critical
IPv4:
43.247.124.0-43.247.131.255
103.227.200.0/22
103.230.172.0/22
103.245.216.0/22
125.254.48.0/23
203.23.139.0/24
IPv6:
2402:fa80::/32
Signature Algorithm: sha256WithRSAEncryption
73:78:36:11:0b:f3:f9:29:55:1c:8f:28:83:58:9c:f5:03:1d:
ba:9c:91:10:d9:ca:59:67:74:cb:98:2d:9b:b6:25:89:dd:bb:
1b:45:de:19:48:92:76:d8:7d:51:d3:e4:29:fc:ed:14:80:66:
11:f2:a2:e9:99:36:66:04:21:00:c4:3b:3b:1f:57:b1:38:cf:
94:21:e6:01:19:09:f7:0b:dd:51:df:14:26:ac:37:d1:f0:cc:
93:48:e1:00:bd:70:8f:f6:ff:d8:24:c4:3d:23:9d:3c:64:62:
64:8b:2b:8f:66:a8:cb:02:8a:fb:3c:f2:4e:56:35:f2:68:90:
6c:8f:db:39:24:1e:4d:37:7c:8e:43:17:b7:c4:01:2a:de:38:
d7:be:aa:f7:69:ec:f5:a5:26:d1:21:bd:32:ec:dc:1f:5a:91:
a0:9d:84:45:32:40:fc:86:3e:ea:da:cb:d3:c1:4a:b3:43:3a:
7b:f1:8f:66:3e:94:41:8e:4d:e7:c9:57:dc:21:6d:8d:5b:88:
88:12:9a:7c:d3:7f:5a:e3:9b:60:5e:f2:95:e4:6f:d2:45:34:
ad:6a:16:c3:9a:ad:2c:88:ab:ba:57:78:ba:bd:f5:82:05:66:
31:23:11:2e:c1:7e:3c:f7:1b:d9:7d:57:e5:62:10:54:d0:25:
a6:df:8c:61
-----BEGIN CERTIFICATE-----
MIIGTjCCBTagAwIBAgIDAe/XMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDUwMzIxMDYwM1oXDTI1MDcwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRDA4N0UxMTAvBgNVBAUTKEYwN0ZCMTNFRjkxRTIyMTFCMEZFQkM4
NTVBRERBRjMwMUIwNjcxQTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCzBygZk11Q8qqaNt7rFUynP8vhwNxfXGUG6ToQPMOUBsTb8E8HHQj0w7AwClpf
KJiXf1XruL95vncobFEb0JRTVWxrkvH/uVaMIyLbqdfxscGZ1OaZE/s5W+PdRDd9
i7Hz+Nrpbl4J5g/9zvGFAP4jWbFhRmC3l22/eDWZPjNjOOh38ZMmuxiX2qVx0rkk
iu4j1xCJEGkgpdUykYED+dPxaSJpFcjRWDEHswatWsU8F9ZoAS2nTEHd+shshh1i
SleS/saqTH9Q/Tv86Kmhy6rCJKAFoJKq3xKPGXuEOf76whhP2r3Bna+aFfEDv0dy
YXTC9HlZQqrOHqtJWPCH/2wXAgMBAAGjggNDMIIDPzAdBgNVHQ4EFgQU8H+xPvke
IhGw/ryFWt2vMBsGcaQwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUQwODdFL0IwMTlGMUNBMDRGQzExRUE4Q0FFRDQxNUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFEMDg3RS9CMDE5RjFDQTA0RkMxMUVBOENBRUQ0MTVDNEY5QUUwMi84SC14UHZr
ZUloR3dfcnlGV3Qydk1Cc0djYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGQYIKwYBBQUHAQgBAf8ECjAI
oAYwBAICX8QwVAYIKwYBBQUHAQcBAf8ERTBDMDIEAgABMCwwDAMEAiv3fAMEAiv3
gAMEAmfjyAMEAmfmrAMEAmf12AMEAX3+MAMEAMsXizANBAIAAjAHAwUAJAL6gDAN
BgkqhkiG9w0BAQsFAAOCAQEAc3g2EQvz+SlVHI8og1ic9QMdupyRENnKWWd0y5gt
m7Ylid27G0XeGUiSdth9UdPkKfztFIBmEfKi6Zk2ZgQhAMQ7Ox9XsTjPlCHmARkJ
9wvdUd8UJqw30fDMk0jhAL1wj/b/2CTEPSOdPGRiZIsrj2aoywKK+zzyTlY18miQ
bI/bOSQeTTd8jkMXt8QBKt44176q92ns9aUm0SG9MuzcH1qRoJ2ERTJA/IY+6trL
08FKs0M6e/GPZj6UQY5N58lX3CFtjVuIiBKafNN/WuObYF7yleRv0kU0rWoWw5qt
LIiruld4ur31ggVmMSMRLsF+PPcb2X1X5WIQVNAlpt+MYQ==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:29:28 2025 by rpki-client