Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWZvx92HXf-g4ZvHPLrajs-aWCc.cer
File: AWZvx92HXf-g4ZvHPLrajs-aWCc.cer (raw, json)
Hash identifier: NGb8fQqIPFwMYvtf944tmTlBI5gDq5IiafMRg7WILag=
Subject key identifier: 01:66:6F:C7:DD:87:5D:FF:A0:E1:9B:C7:3C:BA:DA:8E:CF:9A:58:27
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022FBD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 07 Feb 2025 02:55:58 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 23854
AS: 38831 -- 38832
AS: 134982
AS: 135292
IP: 103.212.67.0/24
IP: 119.15.64.0/24
IP: 119.15.66.0/24
IP: 119.15.68.0/22
IP: 203.3.70.0/24
IP: 203.5.59.0/24
IP: 203.8.95.0/24
IP: 203.26.51.0/24
IP: 203.26.177.0/24
IP: 203.26.213.0/24
IP: 203.27.199.0/24
IP: 203.31.75.0/24
IP: 2001:df1:5a00::/48
IP: 2401:8560::/31
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143293 (0x22fbd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 7 02:55:58 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A9129969
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f8:fc:e5:37:9d:08:11:ae:2d:8c:ac:a3:49:
83:d8:27:54:61:81:a0:a6:2c:43:bf:40:75:b2:12:
1d:27:23:d7:a1:e6:d6:90:f9:3d:70:03:ac:c0:d1:
e9:48:0c:dc:20:88:fa:a8:27:a5:30:fd:7a:18:82:
37:f3:62:ad:86:e1:2d:f3:26:8c:49:ff:cc:ac:52:
c2:1a:07:6f:ac:d6:16:00:09:d2:53:6a:0a:94:9d:
d3:2e:7f:51:fa:d0:28:2a:2f:b2:a8:b9:b4:1f:13:
95:fd:65:b4:d0:fa:e6:44:67:81:86:60:0c:6d:f4:
b6:6d:1f:a8:20:b4:bd:27:bb:9e:38:4c:f7:3d:7b:
41:9f:10:af:92:20:e0:ac:45:e8:a4:ee:25:68:3a:
7d:78:7e:2b:8d:78:d1:c1:62:5f:92:37:8e:80:79:
cf:88:db:ad:9a:5c:f0:00:56:06:91:4d:a8:ff:20:
6c:d4:c2:29:60:c9:4f:d4:84:17:cc:43:61:1f:18:
39:58:94:58:c9:71:a6:85:9a:be:e4:fc:69:74:d0:
0e:3d:c6:ac:a8:3a:2a:3d:b8:89:22:f0:46:f8:fd:
f6:9c:30:e8:86:bf:3c:29:65:82:7e:3f:a9:66:8c:
47:f0:2e:05:d8:d9:6d:ad:72:86:2f:da:31:d1:f1:
aa:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:66:6F:C7:DD:87:5D:FF:A0:E1:9B:C7:3C:BA:DA:8E:CF:9A:58:27
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
23854
38831-38832
134982
135292
sbgp-ipAddrBlock: critical
IPv4:
103.212.67.0/24
119.15.64.0/24
119.15.66.0/24
119.15.68.0/22
203.3.70.0/24
203.5.59.0/24
203.8.95.0/24
203.26.51.0/24
203.26.177.0/24
203.26.213.0/24
203.27.199.0/24
203.31.75.0/24
IPv6:
2001:df1:5a00::/48
2401:8560::/31
Signature Algorithm: sha256WithRSAEncryption
87:2d:fb:cc:36:7c:c5:ae:ee:34:eb:6f:59:37:88:e2:62:1f:
af:97:0a:2a:12:5e:fc:0a:33:d0:af:7e:4a:b4:13:f1:d6:99:
1d:81:8e:87:fa:af:06:05:c5:d4:2c:09:99:17:56:bb:03:62:
5e:59:aa:80:56:05:43:1a:38:0f:ee:45:6c:ae:cc:b8:7e:64:
04:bc:ee:2d:cd:54:02:f9:3d:81:f1:16:79:c7:1d:43:3d:8b:
8e:f7:15:40:74:87:6d:8b:af:54:dd:83:d6:51:b9:ae:d8:b3:
59:ef:94:c8:a6:56:59:c0:52:a4:71:13:bd:f4:fd:2c:37:f4:
d7:f1:ee:1c:99:48:99:28:69:b8:41:3e:64:ae:f5:27:b9:ad:
8a:62:68:ae:7d:2b:f7:92:c8:c5:ab:2a:3c:49:0d:ef:dc:81:
77:35:53:b3:2b:34:21:23:3c:38:54:9c:00:ce:b1:91:f6:5e:
01:13:6e:16:01:b1:61:5f:60:db:5d:48:75:c1:c0:d7:b3:3b:
7b:25:dd:75:43:76:50:2a:16:56:2c:f9:3b:ef:97:30:25:2a:
9b:d0:9a:3c:9f:67:b5:99:ef:1a:56:75:df:43:09:95:85:f8:
bd:fa:f4:f9:a2:0d:d0:cf:a5:96:c0:80:db:dc:07:a9:97:13:
69:56:0b:db
-----BEGIN CERTIFICATE-----
MIIGiTCCBXGgAwIBAgIDAi+9MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDIwNzAyNTU1OFoXDTI2MDUwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMjk5NjkxMTAvBgNVBAUTKDAxNjY2RkM3REQ4NzVERkZBMEUxOUJD
NzNDQkFEQThFQ0Y5QTU4MjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCl+PzlN50IEa4tjKyjSYPYJ1RhgaCmLEO/QHWyEh0nI9eh5taQ+T1wA6zA0elI
DNwgiPqoJ6Uw/XoYgjfzYq2G4S3zJoxJ/8ysUsIaB2+s1hYACdJTagqUndMuf1H6
0CgqL7KoubQfE5X9ZbTQ+uZEZ4GGYAxt9LZtH6ggtL0nu544TPc9e0GfEK+SIOCs
Reik7iVoOn14fiuNeNHBYl+SN46Aec+I262aXPAAVgaRTaj/IGzUwilgyU/UhBfM
Q2EfGDlYlFjJcaaFmr7k/Gl00A49xqyoOio9uIki8Eb4/facMOiGvzwpZYJ+P6lm
jEfwLgXY2W2tcoYv2jHR8appAgMBAAGjggN+MIIDejAdBgNVHQ4EFgQUAWZvx92H
Xf+g4ZvHPLrajs+aWCcwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTI5OTY5L0NGMzk1QzM4MUM2QTExRUVCRjYyQUMwREM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEyOTk2OS9DRjM5NUMzODFDNkExMUVFQkY2MkFDMERDNEY5QUUwMi9BV1p2eDky
SFhmLWc0WnZIUExyYWpzLWFXQ2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQgBAf8EIDAe
oBwwGgICXS4wCgIDAJevAgMAl7ACAwIPRgIDAhB8MHkGCCsGAQUFBwEHAQH/BGow
aDBOBAIAATBIAwQAZ9RDAwQAdw9AAwQAdw9CAwQCdw9EAwQAywNGAwQAywU7AwQA
ywhfAwQAyxozAwQAyxqxAwQAyxrVAwQAyxvHAwQAyx9LMBYEAgACMBADBwAgAQ3x
WgADBQEkAYVgMA0GCSqGSIb3DQEBCwUAA4IBAQCHLfvMNnzFru40629ZN4jiYh+v
lwoqEl78CjPQr35KtBPx1pkdgY6H+q8GBcXULAmZF1a7A2JeWaqAVgVDGjgP7kVs
rsy4fmQEvO4tzVQC+T2B8RZ5xx1DPYuO9xVAdIdti69U3YPWUbmu2LNZ75TIplZZ
wFKkcRO99P0sN/TX8e4cmUiZKGm4QT5krvUnua2KYmiufSv3ksjFqyo8SQ3v3IF3
NVOzKzQhIzw4VJwAzrGR9l4BE24WAbFhX2DbXUh1wcDXszt7Jd11Q3ZQKhZWLPk7
75cwJSqb0Jo8n2e1me8aVnXfQwmVhfi9+vT5og3Qz6WWwIDb3AeplxNpVgvb
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:58:15 2025 by rpki-client