Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAiQ-iAnxUadoMX9g3SPZqiJLrc.cer
File: NAiQ-iAnxUadoMX9g3SPZqiJLrc.cer (raw, json)
Hash identifier: 1xVbI2ANGnHKDef0NnHqTa8a3sonzyZTvn4Lluwl3hk=
Subject key identifier: 34:08:90:FA:20:27:C5:46:9D:A0:C5:FD:83:74:8F:66:A8:89:2E:B7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0223BD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911408F/AA604D4A08A011EA9C4AED5DC4F9AE02/NAiQ-iAnxUadoMX9g3SPZqiJLrc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911408F/AA604D4A08A011EA9C4AED5DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 20 Dec 2024 12:24:52 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 137385
IP: 103.106.240.0/22
IP: 2402:49c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140221 (0x223bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 20 12:24:52 2024 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A911408F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ef:69:5f:d0:2a:14:da:d7:8d:c4:aa:53:62:
57:15:c5:67:86:b2:35:66:56:d7:02:77:6e:06:ea:
21:37:1d:8b:83:73:7f:0b:81:30:44:5f:e2:cc:49:
f1:c2:31:23:da:16:9d:b2:1b:1b:55:f2:59:ca:56:
e1:f8:51:ea:bb:19:98:6d:c8:f3:cf:94:f3:51:b1:
30:62:6c:7e:8e:de:7f:b0:10:2b:03:bf:f4:8e:47:
50:02:bd:10:64:0e:a5:f6:41:9a:1b:44:5a:16:fc:
ba:21:af:e5:c3:8d:ca:cf:f4:bc:1e:d7:5a:7f:2c:
60:1b:c8:18:5f:e0:b3:11:f2:ab:43:ea:a9:83:d4:
6c:6d:ec:39:f4:6c:6c:97:90:d4:29:87:ea:da:9b:
cc:2b:47:9b:c6:67:38:3d:ab:e2:93:31:5b:43:8b:
ad:77:85:7f:86:0c:ed:13:02:64:29:0c:ac:f4:5f:
f4:ba:80:c5:9a:b2:84:d8:05:fc:8b:32:88:ad:45:
ba:9b:98:86:7b:2b:9f:cf:e3:ab:6d:9e:54:22:a9:
6f:5f:1b:1e:f1:34:a6:92:fa:5a:67:f9:ad:6a:98:
43:cc:9c:29:63:72:b1:31:42:be:b4:fc:d9:c2:a9:
2b:0c:6c:33:83:21:6b:71:18:d6:ef:83:8e:b7:18:
8e:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:08:90:FA:20:27:C5:46:9D:A0:C5:FD:83:74:8F:66:A8:89:2E:B7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911408F/AA604D4A08A011EA9C4AED5DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911408F/AA604D4A08A011EA9C4AED5DC4F9AE02/NAiQ-iAnxUadoMX9g3SPZqiJLrc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137385
sbgp-ipAddrBlock: critical
IPv4:
103.106.240.0/22
IPv6:
2402:49c0::/32
Signature Algorithm: sha256WithRSAEncryption
b1:1f:f4:cd:fc:ca:27:44:bc:75:58:86:f4:ec:65:7a:96:97:
d3:d3:10:4d:47:2e:f7:15:a3:33:91:97:5b:39:df:b8:dd:9a:
6f:69:89:95:d2:6c:8d:19:ab:f2:9f:00:00:66:22:40:51:1f:
13:30:9f:94:9a:8b:d1:75:7b:b9:50:24:a3:b2:d8:0c:3a:75:
3d:e3:a7:d4:09:af:eb:fb:e3:02:c7:72:69:17:a4:04:9c:92:
40:1e:70:d4:84:24:bc:1d:89:68:d0:17:b6:f0:f7:1b:45:a0:
77:01:95:07:bf:49:c8:1f:e7:3c:d1:30:cc:8d:7f:77:13:b3:
f6:05:aa:da:ea:02:b1:09:be:5e:45:d3:0b:79:a0:a8:4f:aa:
14:0d:bd:57:11:5f:44:13:20:b0:c7:b2:bc:aa:c7:e7:89:36:
de:5b:a2:6a:3c:4a:f9:05:2d:47:54:76:1c:4e:fe:d8:b7:3f:
14:7c:a8:a9:a0:3d:a4:b4:54:84:dd:c3:cf:84:be:73:b6:f4:
c6:a0:38:da:ff:3f:f3:f1:48:f3:a4:5b:bf:47:eb:e4:8b:cf:
33:0b:ff:54:3f:99:a0:6d:62:67:7b:ef:d7:43:2e:8c:84:0a:
0f:de:1a:9e:0e:86:cc:63:ec:d5:03:f1:c6:fd:65:2b:0e:5d:
4d:89:b1:0d
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAiO9MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTIyMDEyMjQ1MloXDTI2MDMzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMTQwOEYxMTAvBgNVBAUTKDM0MDg5MEZBMjAyN0M1NDY5REEwQzVG
RDgzNzQ4RjY2QTg4OTJFQjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDA72lf0CoU2teNxKpTYlcVxWeGsjVmVtcCd24G6iE3HYuDc38LgTBEX+LMSfHC
MSPaFp2yGxtV8lnKVuH4Ueq7GZhtyPPPlPNRsTBibH6O3n+wECsDv/SOR1ACvRBk
DqX2QZobRFoW/Lohr+XDjcrP9Lwe11p/LGAbyBhf4LMR8qtD6qmD1Gxt7Dn0bGyX
kNQph+ram8wrR5vGZzg9q+KTMVtDi613hX+GDO0TAmQpDKz0X/S6gMWasoTYBfyL
MoitRbqbmIZ7K5/P46ttnlQiqW9fGx7xNKaS+lpn+a1qmEPMnCljcrExQr60/NnC
qSsMbDODIWtxGNbvg463GI6dAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUNAiQ+iAn
xUadoMX9g3SPZqiJLrcwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTE0MDhGL0FBNjA0RDRBMDhBMDExRUE5QzRBRUQ1REM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTExNDA4Ri9BQTYwNEQ0QTA4QTAxMUVBOUM0QUVENURDNEY5QUUwMi9OQWlRLWlB
bnhVYWRvTVg5ZzNTUFpxaUpMcmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhipMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZ2rwMA0EAgAC
MAcDBQAkAknAMA0GCSqGSIb3DQEBCwUAA4IBAQCxH/TN/MonRLx1WIb07GV6lpfT
0xBNRy73FaMzkZdbOd+43ZpvaYmV0myNGavynwAAZiJAUR8TMJ+UmovRdXu5UCSj
stgMOnU946fUCa/r++MCx3JpF6QEnJJAHnDUhCS8HYlo0Be28PcbRaB3AZUHv0nI
H+c80TDMjX93E7P2Bara6gKxCb5eRdMLeaCoT6oUDb1XEV9EEyCwx7K8qsfniTbe
W6JqPEr5BS1HVHYcTv7Ytz8UfKipoD2ktFSE3cPPhL5ztvTGoDja/z/z8UjzpFu/
R+vki88zC/9UP5mgbWJne+/XQy6MhAoP3hqeDobMY+zVA/HG/WUrDl1NibEN
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:58:27 2025 by rpki-client