Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EY-SmFkMeYeaodj8bRf2ZUVLy7k.cer
File: EY-SmFkMeYeaodj8bRf2ZUVLy7k.cer (raw, json)
Hash identifier: WJJHj7uc4RJIFNydshukrr8JkPnP8+/L7UOLZkEjWDA=
Subject key identifier: 11:8F:92:98:59:0C:79:87:9A:A1:D8:FC:6D:17:F6:65:45:4B:CB:B9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021DD7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911A1FC/8191FB6C887A11EE9DB45B14C4F9AE02/EY-SmFkMeYeaodj8bRf2ZUVLy7k.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911A1FC/8191FB6C887A11EE9DB45B14C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 27 Nov 2024 04:05:50 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 132408
IP: 180.94.2.0/23
IP: 2001:df3:2bc0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138711 (0x21dd7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 27 04:05:50 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A911A1FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b7:8b:a3:09:e3:2f:61:2d:10:ae:8f:cf:8c:
9a:0a:aa:a4:67:c2:a6:cc:c3:da:07:56:3e:1c:de:
44:c1:dc:c5:15:e2:2b:fe:67:99:84:a1:98:8b:9c:
ad:73:90:ab:91:e5:c2:56:8e:0a:c6:18:05:c2:3c:
ba:32:52:1f:fc:a2:4c:f1:12:9d:53:83:16:02:d8:
8b:fb:84:5d:ea:f0:38:15:20:24:2e:82:b7:28:3c:
65:72:c2:70:fb:43:3e:7a:04:05:94:cf:e8:10:3e:
2b:f7:34:05:71:fe:40:bd:05:61:08:98:57:2e:3c:
1b:36:9b:6b:f1:80:e4:73:10:d5:c9:bf:26:c4:82:
9d:fb:36:a2:9d:e3:b4:72:5a:ce:af:1a:47:ff:46:
4f:59:ac:70:a1:60:b0:15:b3:47:88:89:30:fb:09:
5d:16:25:e0:9d:cb:77:ac:e7:bf:e9:2b:40:11:6c:
44:29:36:31:9a:f7:37:4e:ee:ce:31:42:4c:59:fa:
53:b7:0f:9b:28:5b:eb:d8:3c:2c:3e:3f:50:c2:34:
37:ad:a6:b4:6c:e7:e3:a3:59:6d:2e:4c:70:69:28:
bf:bb:14:95:3d:10:f9:56:56:b7:c6:3f:47:75:09:
fe:d9:d1:92:b3:b8:ba:01:66:4a:d0:00:ab:c2:7f:
db:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:8F:92:98:59:0C:79:87:9A:A1:D8:FC:6D:17:F6:65:45:4B:CB:B9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911A1FC/8191FB6C887A11EE9DB45B14C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911A1FC/8191FB6C887A11EE9DB45B14C4F9AE02/EY-SmFkMeYeaodj8bRf2ZUVLy7k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132408
sbgp-ipAddrBlock: critical
IPv4:
180.94.2.0/23
IPv6:
2001:df3:2bc0::/48
Signature Algorithm: sha256WithRSAEncryption
d3:c7:12:05:70:4f:9c:0e:aa:7b:75:66:d2:d9:78:3b:35:45:
48:04:c4:b7:c2:93:14:7d:bb:0b:86:64:90:fa:a4:bd:db:d7:
90:f2:98:76:5d:85:b6:9d:03:39:eb:9d:77:4b:13:80:c5:12:
31:92:11:28:d6:5f:cf:65:5f:79:c4:ed:05:a9:d2:e1:b3:4e:
46:10:d8:84:4b:47:1e:82:15:a8:79:70:f6:a3:ce:97:6b:96:
40:8b:2a:2e:41:dc:4f:42:2b:dd:a4:93:1b:8a:46:7c:ac:7d:
09:53:77:a9:80:1b:4f:ba:bb:69:ca:5a:8b:b6:70:aa:80:27:
b4:28:8a:00:1d:b5:1a:41:8c:6a:de:01:6c:77:82:6f:4f:c8:
fe:b2:a5:2a:29:8d:44:d5:dd:d9:cc:b8:e7:1f:7f:8e:4c:25:
89:b8:fb:f9:94:f9:6a:91:45:cc:ce:a0:07:3a:74:ea:4e:e0:
aa:c9:cd:fe:3b:49:53:f2:12:dc:f1:d4:e4:8b:eb:2c:85:3f:
a3:ea:38:f6:52:00:27:47:2a:37:5a:1c:32:8e:08:ce:a8:43:
dd:62:7c:0f:73:df:6d:ee:82:ac:69:80:2b:39:f8:43:07:a1:
ce:76:d4:95:9c:ef:9a:6a:22:bd:8f:5b:7e:a4:2e:67:dc:c9:
90:80:10:19
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAh3XMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTEyNzA0MDU1MFoXDTI2MDEzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMUExRkMxMTAvBgNVBAUTKDExOEY5Mjk4NTkwQzc5ODc5QUExRDhG
QzZEMTdGNjY1NDU0QkNCQjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDIt4ujCeMvYS0Qro/PjJoKqqRnwqbMw9oHVj4c3kTB3MUV4iv+Z5mEoZiLnK1z
kKuR5cJWjgrGGAXCPLoyUh/8okzxEp1TgxYC2Iv7hF3q8DgVICQugrcoPGVywnD7
Qz56BAWUz+gQPiv3NAVx/kC9BWEImFcuPBs2m2vxgORzENXJvybEgp37NqKd47Ry
Ws6vGkf/Rk9ZrHChYLAVs0eIiTD7CV0WJeCdy3es57/pK0ARbEQpNjGa9zdO7s4x
QkxZ+lO3D5soW+vYPCw+P1DCNDetprRs5+OjWW0uTHBpKL+7FJU9EPlWVrfGP0d1
Cf7Z0ZKzuLoBZkrQAKvCf9vVAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUEY+SmFkM
eYeaodj8bRf2ZUVLy7kwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTFBMUZDLzgxOTFGQjZDODg3QTExRUU5REI0NUIxNEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTExQTFGQy84MTkxRkI2Qzg4N0ExMUVFOURCNDVCMTRDNEY5QUUwMi9FWS1TbUZr
TWVZZWFvZGo4YlJmMlpVVkx5N2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAgU4MDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBtF4CMA8EAgAC
MAkDBwAgAQ3zK8AwDQYJKoZIhvcNAQELBQADggEBANPHEgVwT5wOqnt1ZtLZeDs1
RUgExLfCkxR9uwuGZJD6pL3b15DymHZdhbadAznrnXdLE4DFEjGSESjWX89lX3nE
7QWp0uGzTkYQ2IRLRx6CFah5cPajzpdrlkCLKi5B3E9CK92kkxuKRnysfQlTd6mA
G0+6u2nKWou2cKqAJ7QoigAdtRpBjGreAWx3gm9PyP6ypSopjUTV3dnMuOcff45M
JYm4+/mU+WqRRczOoAc6dOpO4KrJzf47SVPyEtzx1OSL6yyFP6PqOPZSACdHKjda
HDKOCM6oQ91ifA9z323ugqxpgCs5+EMHoc521JWc75pqIr2PW36kLmfcyZCAEBk=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:12:00 2025 by rpki-client