Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gv1CZeY9DL91I27ZaGrk8AFV_34.cer
File: Gv1CZeY9DL91I27ZaGrk8AFV_34.cer (raw, json)
Hash identifier: v3JftDUjnE3D//vWWPy7X+X4WBZokaBbn9pzPFTiT7I=
Subject key identifier: 1A:FD:42:65:E6:3D:0C:BF:75:23:6E:D9:68:6A:E4:F0:01:55:FF:7E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E042
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CBA26/CA64CBFA825D11E79132091DC4F9AE02/Gv1CZeY9DL91I27ZaGrk8AFV_34.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CBA26/CA64CBFA825D11E79132091DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 22 Feb 2024 16:54:41 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 136230
AS: 149781
AS: 150151
AS: 150794
IP: 103.84.96.0/24
IP: 103.101.172.0/24
IP: 103.101.174.0/23
IP: 2001:df0:d00::/47
IP: 2400:e720::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122946 (0x1e042)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 22 16:54:41 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91CBA26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:40:de:74:a9:27:c4:34:7b:41:0f:c4:f5:7e:
2d:50:95:60:a1:a1:b0:cf:cf:61:3b:c0:7b:87:a3:
3d:ed:8d:7d:46:26:0a:a5:41:5e:2c:e7:1c:99:58:
61:8b:df:54:cb:e0:39:b4:71:e6:d1:80:f4:69:dc:
eb:4f:12:c7:b4:7e:c1:bc:54:4c:16:3a:95:11:24:
46:54:5d:64:c7:a4:02:3b:97:0e:4f:a5:71:be:7f:
52:8d:33:7e:49:8c:e3:c3:2c:2e:ab:44:a3:1e:e0:
18:ca:b8:0c:df:10:c4:5a:01:11:e7:24:e1:bc:96:
7c:d9:01:a4:4c:3b:5b:fc:45:a0:0e:4f:83:c6:ee:
70:7d:5c:2f:9a:81:be:07:dc:f6:8b:5f:2e:83:4b:
ea:02:6d:ae:80:55:b7:e3:2a:e7:52:e2:1c:77:76:
95:2b:97:38:95:7c:77:24:9f:93:25:47:9c:4b:90:
a0:fd:47:59:2a:6c:3c:7d:9c:d1:bb:31:f0:0e:3e:
66:8e:ba:74:81:a5:d3:1c:8f:7f:60:32:7c:32:3f:
5f:c1:f8:41:a5:c1:7d:11:56:e6:c1:d1:e5:66:ab:
60:b1:bc:0c:d2:9f:42:0e:cd:a8:3f:a7:a3:bc:a7:
50:fc:e9:d3:a9:d1:6d:b5:ca:0a:0e:1e:6a:f3:37:
04:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:FD:42:65:E6:3D:0C:BF:75:23:6E:D9:68:6A:E4:F0:01:55:FF:7E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CBA26/CA64CBFA825D11E79132091DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CBA26/CA64CBFA825D11E79132091DC4F9AE02/Gv1CZeY9DL91I27ZaGrk8AFV_34.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136230
149781
150151
150794
sbgp-ipAddrBlock: critical
IPv4:
103.84.96.0/24
103.101.172.0/24
103.101.174.0/23
IPv6:
2001:df0:d00::/47
2400:e720::/32
Signature Algorithm: sha256WithRSAEncryption
a8:50:8a:53:26:fd:c0:7c:3d:03:c5:e3:32:49:d1:c7:1c:df:
92:10:c6:41:5b:4d:18:a7:be:93:81:53:30:45:cc:49:a3:91:
04:82:53:f4:73:b3:1c:3e:42:f3:a6:ff:3f:db:a6:63:65:01:
18:39:16:c0:c4:59:a5:de:6c:9b:5a:12:74:9b:d5:73:2d:34:
01:85:6c:5a:bf:32:f3:4c:b2:95:f9:c4:d7:7d:82:7a:91:27:
79:c4:37:21:04:88:e8:35:6d:af:35:26:df:99:eb:d7:4a:cd:
0c:72:23:53:ac:44:1b:5e:d5:df:f6:ff:72:02:7f:07:a1:e7:
4c:7f:d3:d0:4e:fe:ab:dd:fc:39:76:13:34:cb:c8:6e:aa:20:
18:2d:3d:2b:60:9c:be:21:b3:b2:53:bc:1a:58:6f:f6:c5:7a:
8a:1a:de:08:f6:db:d1:e6:82:29:28:1a:2b:0a:55:82:c7:5b:
f5:2f:b3:db:53:a1:67:fe:aa:a8:b5:5e:e2:4f:67:7a:29:17:
9d:f7:69:e8:20:0f:0b:a3:fe:40:61:40:d5:3b:fc:f4:06:ad:
67:4e:d3:8c:44:a4:ad:76:6f:74:d4:5b:00:e8:46:5d:05:5f:
e0:52:62:4f:56:8d:64:48:56:7f:a3:3c:7e:76:57:77:bd:5c:
50:92:e0:70
-----BEGIN CERTIFICATE-----
MIIGTTCCBTWgAwIBAgIDAeBCMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDIyMjE2NTQ0MVoXDTI1MDMzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQ0JBMjYxMTAvBgNVBAUTKDFBRkQ0MjY1RTYzRDBDQkY3NTIzNkVE
OTY4NkFFNEYwMDE1NUZGN0UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDJQN50qSfENHtBD8T1fi1QlWChobDPz2E7wHuHoz3tjX1GJgqlQV4s5xyZWGGL
31TL4Dm0cebRgPRp3OtPEse0fsG8VEwWOpURJEZUXWTHpAI7lw5PpXG+f1KNM35J
jOPDLC6rRKMe4BjKuAzfEMRaARHnJOG8lnzZAaRMO1v8RaAOT4PG7nB9XC+agb4H
3PaLXy6DS+oCba6AVbfjKudS4hx3dpUrlziVfHckn5MlR5xLkKD9R1kqbDx9nNG7
MfAOPmaOunSBpdMcj39gMnwyP1/B+EGlwX0RVubB0eVmq2CxvAzSn0IOzag/p6O8
p1D86dOp0W21ygoOHmrzNwSjAgMBAAGjggNCMIIDPjAdBgNVHQ4EFgQUGv1CZeY9
DL91I27ZaGrk8AFV/34wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUNCQTI2L0NBNjRDQkZBODI1RDExRTc5MTMyMDkxREM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFDQkEyNi9DQTY0Q0JGQTgyNUQxMUU3OTEzMjA5MURDNEY5QUUwMi9HdjFDWmVZ
OURMOTFJMjdaYUdyazhBRlZfMzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKQYIKwYBBQUHAQgBAf8EGjAY
oBYwFAIDAhQmAgMCSRUCAwJKhwIDAk0KMEMGCCsGAQUFBwEHAQH/BDQwMjAYBAIA
ATASAwQAZ1RgAwQAZ2WsAwQBZ2WuMBYEAgACMBADBwEgAQ3wDQADBQAkAOcgMA0G
CSqGSIb3DQEBCwUAA4IBAQCoUIpTJv3AfD0DxeMySdHHHN+SEMZBW00Yp76TgVMw
RcxJo5EEglP0c7McPkLzpv8/26ZjZQEYORbAxFml3mybWhJ0m9VzLTQBhWxavzLz
TLKV+cTXfYJ6kSd5xDchBIjoNW2vNSbfmevXSs0MciNTrEQbXtXf9v9yAn8HoedM
f9PQTv6r3fw5dhM0y8huqiAYLT0rYJy+IbOyU7waWG/2xXqKGt4I9tvR5oIpKBor
ClWCx1v1L7PbU6Fn/qqotV7iT2d6KRed92noIA8Lo/5AYUDVO/z0Bq1nTtOMRKSt
dm901FsA6EZdBV/gUmJPVo1kSFZ/ozx+dld3vVxQkuBw
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:20:23 2025 by rpki-client