Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8iorLUs8M9_MTaUMA9ThmhiN60.cer
File: K8iorLUs8M9_MTaUMA9ThmhiN60.cer (raw, json)
Hash identifier: sAF3TAiT1YDsTkvzhc7TYhS3z2kmZGHu8+BmsRDVR4s=
Subject key identifier: 2B:C8:A8:AC:B5:2C:F0:CF:7F:31:36:94:30:0F:53:86:68:62:37:AD
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02198A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B0549/1C6F4ADC303111EA886D517CC4F9AE02/K8iorLUs8M9_MTaUMA9ThmhiN60.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B0549/1C6F4ADC303111EA886D517CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 06 Nov 2024 02:39:24 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 139804
IP: 103.145.120.0/23
IP: 2001:df2:b80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137610 (0x2198a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 6 02:39:24 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91B0549
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b6:e0:7c:c7:fa:3e:5a:d3:56:39:48:73:ef:
a1:42:be:84:20:22:b2:11:28:54:64:7c:bd:b5:12:
0c:29:3b:a8:7d:d8:09:8e:fe:c0:c1:40:98:8b:f6:
dd:6d:1b:40:b2:82:0b:51:ad:2d:00:38:2b:9c:97:
64:4b:07:3c:70:8e:c8:46:04:24:90:20:8b:a0:fd:
f8:13:74:2f:6e:25:02:3f:4e:ed:74:91:45:22:19:
b0:25:f4:a4:c6:7a:8b:a3:36:70:b3:1e:6a:c1:82:
9e:93:02:a6:e2:3e:23:93:ad:c7:98:a4:70:5c:69:
18:7d:e5:5d:4c:af:a5:c8:75:24:8e:a7:40:7b:4c:
42:82:d7:65:c8:19:87:07:f5:2f:b5:28:97:bb:46:
bc:38:48:35:7e:e2:99:7d:bb:0f:f4:11:6c:24:3b:
ec:ff:5f:b9:91:d9:6f:b8:f4:63:c8:d1:3f:63:d4:
3a:a4:af:38:40:4e:fb:70:ee:d7:35:c7:3f:39:0d:
6a:cc:20:f0:7c:d8:73:84:7b:5c:ed:6f:5f:81:16:
93:58:1a:a8:bf:cb:64:c7:2b:5c:27:16:33:fd:3a:
8f:86:e4:06:f4:89:3d:2d:9d:91:37:b5:8f:98:f5:
0d:4c:5e:b8:15:7e:4f:06:b2:9c:8e:8a:75:ac:7e:
26:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:C8:A8:AC:B5:2C:F0:CF:7F:31:36:94:30:0F:53:86:68:62:37:AD
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B0549/1C6F4ADC303111EA886D517CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B0549/1C6F4ADC303111EA886D517CC4F9AE02/K8iorLUs8M9_MTaUMA9ThmhiN60.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139804
sbgp-ipAddrBlock: critical
IPv4:
103.145.120.0/23
IPv6:
2001:df2:b80::/48
Signature Algorithm: sha256WithRSAEncryption
26:f4:85:aa:eb:67:4c:4c:6e:1e:8e:00:bb:0c:58:51:25:33:
8e:f0:85:ed:9e:79:c2:ef:a7:ff:14:11:03:94:30:7b:7c:d9:
92:e6:41:a6:b9:8e:e8:97:97:47:6f:5d:d0:f1:b5:2c:9e:d9:
33:ed:b5:46:ac:16:f1:75:4d:0c:dd:4c:36:25:90:a6:b2:4b:
5b:bb:a2:38:12:91:20:93:35:96:da:9e:11:3b:b6:58:cf:55:
2a:12:8d:4c:79:7b:64:91:74:a7:f4:ea:ca:53:7f:90:f3:bd:
f7:4b:c4:69:af:5b:cf:07:b1:b4:32:c7:82:68:7a:41:9f:cc:
00:e9:7b:99:eb:83:09:ba:99:22:99:d9:3f:f2:20:5a:70:3a:
1a:76:fb:bc:7a:69:45:ba:7e:8a:04:d7:73:bc:11:7c:fa:ee:
8e:b0:6b:06:52:92:9e:58:7a:c7:cd:dd:c0:16:60:b1:c7:5f:
42:e0:94:14:52:79:84:80:ef:2a:da:b0:d5:f4:bc:15:9e:98:
68:5c:ed:75:47:d2:21:c7:05:40:87:a2:c3:dd:fc:ea:4b:e0:
2c:1a:42:ee:67:f7:4a:e2:65:b1:de:b2:f5:d5:d3:64:a6:c2:
a3:f9:cd:67:9b:16:d2:b2:49:95:2d:82:9d:6a:b4:95:67:00:
6b:f0:5a:36
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAhmKMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTEwNjAyMzkyNFoXDTI2MDMwMjAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQjA1NDkxMTAvBgNVBAUTKDJCQzhBOEFDQjUyQ0YwQ0Y3RjMxMzY5
NDMwMEY1Mzg2Njg2MjM3QUQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCqtuB8x/o+WtNWOUhz76FCvoQgIrIRKFRkfL21EgwpO6h92AmO/sDBQJiL9t1t
G0CyggtRrS0AOCucl2RLBzxwjshGBCSQIIug/fgTdC9uJQI/Tu10kUUiGbAl9KTG
eoujNnCzHmrBgp6TAqbiPiOTrceYpHBcaRh95V1Mr6XIdSSOp0B7TEKC12XIGYcH
9S+1KJe7Rrw4SDV+4pl9uw/0EWwkO+z/X7mR2W+49GPI0T9j1DqkrzhATvtw7tc1
xz85DWrMIPB82HOEe1ztb1+BFpNYGqi/y2THK1wnFjP9Oo+G5Ab0iT0tnZE3tY+Y
9Q1MXrgVfk8GspyOinWsfibNAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUK8iorLUs
8M9/MTaUMA9ThmhiN60wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUIwNTQ5LzFDNkY0QURDMzAzMTExRUE4ODZENTE3Q0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFCMDU0OS8xQzZGNEFEQzMwMzExMUVBODg2RDUxN0NDNEY5QUUwMi9LOGlvckxV
czhNOV9NVGFVTUE5VGhtaGlONjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAiIcMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ5F4MA8EAgAC
MAkDBwAgAQ3yC4AwDQYJKoZIhvcNAQELBQADggEBACb0harrZ0xMbh6OALsMWFEl
M47whe2eecLvp/8UEQOUMHt82ZLmQaa5juiXl0dvXdDxtSye2TPttUasFvF1TQzd
TDYlkKayS1u7ojgSkSCTNZbanhE7tljPVSoSjUx5e2SRdKf06spTf5DzvfdLxGmv
W88HsbQyx4JoekGfzADpe5nrgwm6mSKZ2T/yIFpwOhp2+7x6aUW6fooE13O8EXz6
7o6wawZSkp5YesfN3cAWYLHHX0LglBRSeYSA7yrasNX0vBWemGhc7XVH0iHHBUCH
osPd/OpL4CwaQu5n90riZbHesvXV02SmwqP5zWebFtKySZUtgp1qtJVnAGvwWjY=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:37 2025 by rpki-client