Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJwJ6ZyoBuM1kVc1z5cqG_hkpsM.cer
File: NJwJ6ZyoBuM1kVc1z5cqG_hkpsM.cer (raw, json)
Hash identifier: i6i3KeDteGq2uZZz+/Cl1aMhCSw0A1V69hfTpgbzrQE=
Subject key identifier: 34:9C:09:E9:9C:A8:06:E3:35:91:57:35:CF:97:2A:1B:F8:64:A6:C3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F76C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912FAB9/938A70E495CD11E6BF4A8232C4F9AE02/NJwJ6ZyoBuM1kVc1z5cqG_hkpsM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912FAB9/938A70E495CD11E6BF4A8232C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 05 Jun 2024 14:16:28 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 10226
AS: 24566
IP: 43.252.244.0/22
IP: 101.78.8.0/21
IP: 103.13.88.0/22
IP: 114.129.24.0/21
IP: 202.62.96.0/20
IP: 2404:2e00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128876 (0x1f76c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jun 5 14:16:28 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A912FAB9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b4:8e:8d:b8:f5:5a:3e:d8:08:e2:d5:5d:f4:
2d:77:88:2c:4e:9a:20:24:ec:12:aa:e6:78:c7:13:
ae:16:a7:19:d8:ea:c1:c1:4e:2d:92:62:96:a9:2f:
9b:0f:a5:28:24:ab:83:86:ef:a5:72:e8:50:38:5b:
46:91:c5:4d:05:f2:2b:6e:32:c0:d2:14:29:61:aa:
64:85:1f:66:93:b8:2c:a0:d0:d6:48:e0:97:1c:0d:
03:3d:dc:22:d6:a5:8c:6e:83:4a:28:41:ea:51:14:
4d:e0:5c:7e:23:29:69:52:b8:45:e6:54:1b:9d:a4:
c0:d1:74:4d:c0:f7:c6:72:16:fe:4b:aa:c5:95:22:
8c:12:8d:a7:93:e2:65:30:58:6b:48:3f:17:8d:9f:
35:08:d7:97:22:9a:5b:99:6d:83:8d:59:e1:92:ef:
7d:c5:47:48:17:b1:bd:0d:3e:78:be:07:43:a8:f1:
a7:cc:28:27:1c:9d:b2:0f:f8:00:cd:c5:d2:cc:06:
00:3f:53:dc:fb:af:69:8f:ad:d2:74:2e:ea:f2:30:
30:e3:86:b3:af:54:23:20:56:8f:b3:62:f5:be:d6:
3f:b6:fe:86:8a:b2:af:f5:b0:6a:d6:b5:84:8c:bd:
36:07:ec:e8:98:79:16:84:62:7b:71:2c:8e:83:df:
19:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:9C:09:E9:9C:A8:06:E3:35:91:57:35:CF:97:2A:1B:F8:64:A6:C3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912FAB9/938A70E495CD11E6BF4A8232C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912FAB9/938A70E495CD11E6BF4A8232C4F9AE02/NJwJ6ZyoBuM1kVc1z5cqG_hkpsM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
10226
24566
sbgp-ipAddrBlock: critical
IPv4:
43.252.244.0/22
101.78.8.0/21
103.13.88.0/22
114.129.24.0/21
202.62.96.0/20
IPv6:
2404:2e00::/32
Signature Algorithm: sha256WithRSAEncryption
a0:9a:d7:19:bb:2e:24:7b:9d:4a:91:8a:cb:b9:57:86:dd:87:
69:96:9a:af:58:9b:2c:2e:ae:8c:38:1b:3b:92:7c:a4:79:21:
16:17:fc:33:59:78:e8:b6:e4:05:3e:6d:bd:e1:1f:12:c7:13:
a8:d8:05:12:1c:bf:3c:ee:21:f7:8d:cf:4f:bc:ae:8f:ba:36:
81:a8:b5:3b:3b:d1:fd:98:1c:8b:fe:53:4a:9f:80:16:e0:7d:
30:9b:56:c4:08:80:a8:b5:36:85:9b:31:9e:41:31:89:49:ca:
d1:ae:87:d3:9e:65:80:52:ec:80:ef:93:ec:5b:ac:e8:89:22:
a8:80:53:90:e7:a9:f9:9e:73:74:3c:ec:bc:21:f6:56:d5:9a:
77:78:84:3d:9a:35:84:87:98:2e:ba:8d:62:d4:74:db:09:6e:
b5:0e:2d:a1:48:8f:eb:e1:d0:36:97:2d:9c:2c:4a:97:65:9f:
08:79:ac:18:40:b8:ad:08:8a:b7:a2:85:5f:c5:5e:27:77:9b:
c1:8c:20:16:b6:e1:76:89:5a:ad:a8:38:be:4b:24:0c:5a:a2:
6c:66:53:b4:48:ef:ea:b4:1e:53:cf:3f:bb:30:42:c7:6f:72:
91:5c:5f:60:47:26:fc:19:7f:21:da:45:b1:dc:1b:6c:58:5c:
da:4b:d0:94
-----BEGIN CERTIFICATE-----
MIIGRDCCBSygAwIBAgIDAfdsMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDYwNTE0MTYyOFoXDTI1MDczMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMkZBQjkxMTAvBgNVBAUTKDM0OUMwOUU5OUNBODA2RTMzNTkxNTcz
NUNGOTcyQTFCRjg2NEE2QzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDLtI6NuPVaPtgI4tVd9C13iCxOmiAk7BKq5njHE64WpxnY6sHBTi2SYpapL5sP
pSgkq4OG76Vy6FA4W0aRxU0F8ituMsDSFClhqmSFH2aTuCyg0NZI4JccDQM93CLW
pYxug0ooQepRFE3gXH4jKWlSuEXmVBudpMDRdE3A98ZyFv5LqsWVIowSjaeT4mUw
WGtIPxeNnzUI15cimluZbYONWeGS733FR0gXsb0NPni+B0Oo8afMKCccnbIP+ADN
xdLMBgA/U9z7r2mPrdJ0LuryMDDjhrOvVCMgVo+zYvW+1j+2/oaKsq/1sGrWtYSM
vTYH7OiYeRaEYntxLI6D3xldAgMBAAGjggM5MIIDNTAdBgNVHQ4EFgQUNJwJ6Zyo
BuM1kVc1z5cqG/hkpsMwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTJGQUI5LzkzOEE3MEU0OTVDRDExRTZCRjRBODIzMkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEyRkFCOS85MzhBNzBFNDk1Q0QxMUU2QkY0QTgyMzJDNEY5QUUwMi9OSndKNlp5
b0J1TTFrVmMxejVjcUdfaGtwc00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHQYIKwYBBQUHAQgBAf8EDjAM
oAowCAICJ/ICAl/2MEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQCK/z0AwQD
ZU4IAwQCZw1YAwQDcoEYAwQEyj5gMA0EAgACMAcDBQAkBC4AMA0GCSqGSIb3DQEB
CwUAA4IBAQCgmtcZuy4ke51KkYrLuVeG3YdplpqvWJssLq6MOBs7knykeSEWF/wz
WXjotuQFPm294R8SxxOo2AUSHL887iH3jc9PvK6PujaBqLU7O9H9mByL/lNKn4AW
4H0wm1bECICotTaFmzGeQTGJScrRrofTnmWAUuyA75PsW6zoiSKogFOQ56n5nnN0
POy8IfZW1Zp3eIQ9mjWEh5guuo1i1HTbCW61Di2hSI/r4dA2ly2cLEqXZZ8IeawY
QLitCIq3ooVfxV4nd5vBjCAWtuF2iVqtqDi+SyQMWqJsZlO0SO/qtB5Tzz+7MELH
b3KRXF9gRyb8GX8h2kWx3BtsWFzaS9CU
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:19:13 2025 by rpki-client