Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer
File: JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer (raw, json)
Hash identifier: O4mNd4fbQg8yxEBYEm9EDGDrr8QR4ioUOOQXw64LeVo=
Subject key identifier: 24:8F:55:88:EA:8F:C7:DD:0A:3B:4D:A1:E1:55:80:31:C0:D9:27:E4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 024544
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 09 May 2025 13:04:27 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 23749
IP: 112.213.64.0/20
IP: 202.122.96.0/20
IP: 2401:3c60::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 03 Jun 2025 07:19:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148804 (0x24544)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 9 13:04:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A911E008, serialNumber=248F5588EA8FC7DD0A3B4DA1E1558031C0D927E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:35:c9:89:9a:cf:bd:2c:d6:f7:b3:22:49:42:
0a:da:07:b0:63:ac:2e:8a:83:c3:a4:cb:be:33:2c:
12:97:d8:77:3b:c8:76:43:62:80:94:bd:32:3a:51:
19:5b:a7:6c:31:a2:b6:5b:19:61:39:c1:3b:78:f6:
17:1d:4c:1c:48:20:e7:f4:08:ee:50:46:e6:3d:f9:
4f:ae:34:e7:62:c4:71:bc:ee:df:03:8e:eb:2f:43:
4f:96:86:67:42:c1:c4:d3:a5:d5:dd:40:fa:ba:a0:
b8:69:f0:9c:4e:55:76:75:7b:38:74:9d:68:19:01:
6c:9e:ed:ec:2a:2b:24:6f:33:8a:81:6a:53:38:69:
4e:6c:b4:f5:5f:10:76:a9:05:2a:01:72:16:78:c4:
74:49:26:c6:3b:48:70:4a:38:90:a2:39:36:c4:4f:
9f:5d:c0:dc:63:2e:bc:f0:02:91:e7:ca:b2:cc:4b:
01:a4:16:43:29:8e:8b:df:3a:78:c3:70:ed:36:6e:
e1:b6:93:1a:f5:3d:88:6b:42:06:92:22:7e:b7:f4:
66:6e:b1:e1:29:71:a0:42:34:67:ce:23:c9:fa:b7:
fb:17:4f:d1:ee:d0:38:2c:e1:ca:06:12:77:58:f2:
33:3b:44:f0:24:3b:57:9a:18:48:06:3c:12:95:c9:
92:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:8F:55:88:EA:8F:C7:DD:0A:3B:4D:A1:E1:55:80:31:C0:D9:27:E4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
23749
sbgp-ipAddrBlock: critical
IPv4:
112.213.64.0/20
202.122.96.0/20
IPv6:
2401:3c60::/32
Signature Algorithm: sha256WithRSAEncryption
b0:ee:af:f8:f2:2c:55:ac:54:07:28:ff:25:1d:13:fd:65:14:
99:b2:5e:67:e6:d0:f4:fc:b6:0c:2c:c1:fe:01:c0:1c:3f:0d:
3f:12:8d:f1:5a:fe:a0:bc:3b:07:24:7c:fd:b9:bc:bc:c9:3a:
2b:87:4b:cc:82:8f:ad:88:c9:35:13:f1:df:5f:79:3a:27:bb:
da:3d:9a:73:75:3a:8f:a1:59:9d:8b:45:73:31:be:33:0a:a2:
2f:ff:b5:91:a3:9d:8f:6d:6f:57:7d:7a:46:96:45:f7:33:3e:
2e:29:dc:b0:94:1f:73:3b:18:59:82:69:0c:9d:f0:51:85:8b:
da:25:08:5a:25:40:75:d0:67:14:c8:36:2e:8b:52:6d:f7:e9:
ab:af:62:01:6e:87:8e:23:a0:ea:a1:89:c7:d3:ce:ff:23:62:
5e:39:47:4c:f7:b2:6e:26:40:1f:dd:4f:bb:94:64:b8:0b:ff:
49:5e:06:88:5f:f6:74:39:b4:4e:3c:a0:c3:c1:5f:fd:19:de:
21:47:c7:9c:07:4a:2b:5c:7e:1d:3d:f3:ae:32:79:43:1e:d4:
f8:83:78:21:61:e1:30:77:6f:0e:a7:46:e9:9d:68:5a:a2:4b:
b6:5b:d4:83:dd:1e:1c:e0:03:d8:74:7f:fb:82:b1:b2:53:18:
3d:04:f2:3f
-----BEGIN CERTIFICATE-----
MIIGLjCCBRagAwIBAgIDAkVEMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDUwOTEzMDQyN1oXDTI2MDcwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMUUwMDgxMTAvBgNVBAUTKDI0OEY1NTg4RUE4RkM3REQwQTNCNERB
MUUxNTU4MDMxQzBEOTI3RTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDRNcmJms+9LNb3syJJQgraB7BjrC6Kg8Oky74zLBKX2Hc7yHZDYoCUvTI6URlb
p2wxorZbGWE5wTt49hcdTBxIIOf0CO5QRuY9+U+uNOdixHG87t8DjusvQ0+WhmdC
wcTTpdXdQPq6oLhp8JxOVXZ1ezh0nWgZAWye7ewqKyRvM4qBalM4aU5stPVfEHap
BSoBchZ4xHRJJsY7SHBKOJCiOTbET59dwNxjLrzwApHnyrLMSwGkFkMpjovfOnjD
cO02buG2kxr1PYhrQgaSIn639GZuseEpcaBCNGfOI8n6t/sXT9Hu0Dgs4coGEndY
8jM7RPAkO1eaGEgGPBKVyZK7AgMBAAGjggMjMIIDHzAdBgNVHQ4EFgQUJI9ViOqP
x90KO02h4VWAMcDZJ+QwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTFFMDA4L0REODhDM0FFRjFEMzExRTc5N0VENDI0MEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTExRTAwOC9ERDg4QzNBRUYxRDMxMUU3OTdFRDQyNDBDNEY5QUUwMi9KSTlWaU9x
UHg5MEtPMDJoNFZXQU1jRFpKLVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGQYIKwYBBQUHAQgBAf8ECjAI
oAYwBAICXMUwNAYIKwYBBQUHAQcBAf8EJTAjMBIEAgABMAwDBARw1UADBATKemAw
DQQCAAIwBwMFACQBPGAwDQYJKoZIhvcNAQELBQADggEBALDur/jyLFWsVAco/yUd
E/1lFJmyXmfm0PT8tgwswf4BwBw/DT8SjfFa/qC8OwckfP25vLzJOiuHS8yCj62I
yTUT8d9feTonu9o9mnN1Oo+hWZ2LRXMxvjMKoi//tZGjnY9tb1d9ekaWRfczPi4p
3LCUH3M7GFmCaQyd8FGFi9olCFolQHXQZxTINi6LUm336auvYgFuh44joOqhicfT
zv8jYl45R0z3sm4mQB/dT7uUZLgL/0leBohf9nQ5tE48oMPBX/0Z3iFHx5wHSitc
fh09864yeUMe1PiDeCFh4TB3bw6nRumdaFqiS7Zb1IPdHhzgA9h0f/uCsbJTGD0E
8j8=
-----END CERTIFICATE-----
Generated at Fri May 30 08:43:16 2025 by rpki-client