Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer
File: OTVm9EF4bZWNinkRjo71b8hy5cU.cer (raw, json)
Hash identifier: kFV5M0ocBbR4F3cNOaZNCuXzd7M8fLRiNlSusNT2Yz4=
Subject key identifier: 39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F30D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 21 May 2024 16:47:29 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 56186
IP: 43.245.240.0/22
IP: 103.13.8.0/22
IP: 202.3.80.0/20
IP: 202.92.216.0/21
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127757 (0x1f30d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: May 21 16:47:29 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91673ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:85:f6:8f:1c:cd:19:eb:58:33:7f:3e:5e:57:
bc:5b:60:51:12:31:6f:47:e7:93:ca:74:ca:95:3d:
44:8b:4f:4a:c6:9a:2f:a5:d7:e3:70:fc:77:51:1f:
61:0a:a2:71:e2:ad:87:58:40:e4:f3:db:62:58:70:
8a:be:37:71:a3:13:3a:c8:b4:c0:1a:ec:75:a4:04:
91:16:a8:03:29:9e:68:11:08:b9:98:3a:89:0e:87:
de:90:ca:ce:70:f1:b2:0f:b0:dc:f4:28:48:10:73:
d5:1d:a5:7b:2b:a4:ce:c1:44:d0:d1:28:e6:9f:54:
f4:c2:ff:0e:ae:94:27:8d:ee:4b:39:9e:8b:cc:da:
62:f8:5a:44:a3:18:6f:3f:3c:07:f6:42:c7:2c:70:
35:4b:30:43:ee:09:ff:23:79:90:b3:ef:29:fd:8f:
57:29:0f:f2:ac:19:04:ca:7b:17:9e:36:08:41:b8:
47:1b:eb:16:48:c4:7e:bc:b4:25:57:0b:29:2c:ce:
0a:5d:f0:55:c1:a1:b7:6c:70:f9:7c:23:78:c4:b1:
f3:1e:73:18:31:5e:eb:09:97:69:13:84:5a:d8:e5:
1b:6c:e5:5b:02:fe:76:ab:87:1a:a3:7a:69:65:ac:
c9:45:60:99:e4:6d:d5:29:a2:a8:78:8c:67:bf:c9:
b9:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56186
sbgp-ipAddrBlock: critical
IPv4:
43.245.240.0/22
103.13.8.0/22
202.3.80.0/20
202.92.216.0/21
Signature Algorithm: sha256WithRSAEncryption
31:10:3d:94:f5:09:e8:6e:8d:7c:8e:b7:12:27:d8:74:76:8b:
56:1c:c9:54:17:cd:d0:9d:dd:13:51:c3:be:77:d8:b9:b0:94:
6d:cf:c8:bd:2d:81:04:d9:34:9b:e9:0d:8b:9c:14:24:65:5d:
99:22:f2:5b:68:b2:21:d3:3c:77:4c:e0:7d:5c:e2:ed:71:cb:
16:02:5f:86:15:03:da:34:1e:00:c1:7d:92:13:18:11:97:ac:
0b:b9:6f:21:b4:ba:81:bb:25:ff:9b:da:56:ed:8e:45:1f:69:
9f:89:ae:82:43:fe:8e:4d:68:6e:b4:7b:8a:72:f6:5d:41:f3:
28:5b:65:18:4a:f7:a2:e5:0b:5d:1f:05:db:14:f7:f9:e0:35:
c0:ec:c3:8f:7a:14:ee:b6:91:08:e2:28:3d:41:e7:01:a9:9d:
a4:22:b1:c5:92:17:dc:03:e9:0f:45:4f:88:c4:06:d9:48:90:
29:02:d1:12:d2:cf:45:f6:4f:a4:58:43:c1:1c:5a:b9:19:74:
b0:93:0d:0e:8d:6c:4a:f3:a6:33:81:1c:0a:0f:de:f1:b8:94:
20:15:80:3f:e8:23:c1:25:b3:fe:73:ed:ae:40:07:ae:db:a0:
5c:cc:ba:f1:fa:c6:74:aa:9c:b7:5d:3e:12:5a:0f:15:94:d5:
e1:3c:45:f4
-----BEGIN CERTIFICATE-----
MIIGLDCCBRSgAwIBAgIDAfMNMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDUyMTE2NDcyOVoXDTI1MDczMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNjczRUQxMTAvBgNVBAUTKDM5MzU2NkY0NDE3ODZEOTU4RDhBNzkx
MThFOEVGNTZGQzg3MkU1QzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDkhfaPHM0Z61gzfz5eV7xbYFESMW9H55PKdMqVPUSLT0rGmi+l1+Nw/HdRH2EK
onHirYdYQOTz22JYcIq+N3GjEzrItMAa7HWkBJEWqAMpnmgRCLmYOokOh96Qys5w
8bIPsNz0KEgQc9UdpXsrpM7BRNDRKOafVPTC/w6ulCeN7ks5novM2mL4WkSjGG8/
PAf2QscscDVLMEPuCf8jeZCz7yn9j1cpD/KsGQTKexeeNghBuEcb6xZIxH68tCVX
Cykszgpd8FXBobdscPl8I3jEsfMecxgxXusJl2kThFrY5Rts5VsC/narhxqjemll
rMlFYJnkbdUpoqh4jGe/ybmhAgMBAAGjggMhMIIDHTAdBgNVHQ4EFgQUOTVm9EF4
bZWNinkRjo71b8hy5cUwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTY3M0VELzREOEZBMjBFN0Q0OTExRUJBMTY1NzM3QkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE2NzNFRC80RDhGQTIwRTdENDkxMUVCQTE2NTczN0JDNEY5QUUwMi9PVFZtOUVG
NGJaV05pbmtSam83MWI4aHk1Y1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDANt6MDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQCK/XwAwQCZw0I
AwQEygNQAwQDylzYMA0GCSqGSIb3DQEBCwUAA4IBAQAxED2U9Qnobo18jrcSJ9h0
dotWHMlUF83Qnd0TUcO+d9i5sJRtz8i9LYEE2TSb6Q2LnBQkZV2ZIvJbaLIh0zx3
TOB9XOLtccsWAl+GFQPaNB4AwX2SExgRl6wLuW8htLqBuyX/m9pW7Y5FH2mfia6C
Q/6OTWhutHuKcvZdQfMoW2UYSvei5QtdHwXbFPf54DXA7MOPehTutpEI4ig9QecB
qZ2kIrHFkhfcA+kPRU+IxAbZSJApAtES0s9F9k+kWEPBHFq5GXSwkw0OjWxK86Yz
gRwKD97xuJQgFYA/6CPBJbP+c+2uQAeu26BczLrx+sZ0qpy3XT4SWg8VlNXhPEX0
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:03:00 2025 by rpki-client