Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMW9PelSuS6VkhpP1t99sHtKKSE.cer
File: QMW9PelSuS6VkhpP1t99sHtKKSE.cer (raw, json)
Hash identifier: /HUJD1uA5mhjzK84eV5gxBwfTawLp+GWJBgj7JLS8EM=
Subject key identifier: 40:C5:BD:3D:E9:52:B9:2E:95:92:1A:4F:D6:DF:7D:B0:7B:4A:29:21
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F264
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 17 May 2024 00:50:19 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 142044
IP: 103.81.55.0/24
IP: 103.165.161.0/24
IP: 2001:df6:6d80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127588 (0x1f264)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: May 17 00:50:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A915D963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:40:50:0b:43:da:4a:5d:c7:4d:c9:92:d2:86:
2f:57:70:ee:42:43:62:f0:b7:fe:84:58:83:bc:49:
97:17:54:26:8b:49:8e:14:36:14:e2:ed:cc:e5:c1:
a4:37:97:1c:c4:da:f5:3d:3d:d8:e2:5b:2f:73:4e:
67:c6:10:76:2a:16:86:5a:ae:76:84:e8:c2:13:41:
d8:07:4c:c8:99:64:b4:85:f2:c0:d8:25:6e:c6:d1:
22:78:4b:e5:31:67:a0:c3:e5:e9:87:0e:24:eb:9c:
c2:f9:8b:01:49:a7:61:ef:6c:82:09:a4:be:51:87:
70:92:9d:c9:31:17:fe:fd:0b:6c:fb:39:b7:07:91:
d8:8f:8c:32:28:61:ec:ca:37:fb:63:22:ef:09:54:
9c:21:52:ec:1d:20:5b:91:69:e4:c3:6f:06:dd:bf:
41:59:e7:11:5a:0f:8c:87:03:0e:24:ee:fc:d1:b2:
83:5e:e8:ce:0e:da:00:04:39:07:c1:7f:3a:35:d2:
d2:69:e5:3f:5e:cd:15:dd:51:c1:02:90:41:ac:b5:
4d:95:0f:6d:d1:8c:f0:5f:fe:34:36:01:ff:00:13:
e3:15:af:6b:38:9c:7d:94:4c:9c:aa:a6:52:e1:49:
56:96:82:cd:80:8e:34:77:6f:8f:d8:01:11:b8:b3:
b5:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:C5:BD:3D:E9:52:B9:2E:95:92:1A:4F:D6:DF:7D:B0:7B:4A:29:21
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142044
sbgp-ipAddrBlock: critical
IPv4:
103.81.55.0/24
103.165.161.0/24
IPv6:
2001:df6:6d80::/48
Signature Algorithm: sha256WithRSAEncryption
28:54:fc:2a:14:6f:f8:29:44:1b:10:3c:ba:46:c0:37:f3:59:
01:1b:84:af:6d:e4:9f:2b:92:b9:20:94:76:b5:90:75:05:07:
31:30:0e:33:40:10:65:c6:b3:c4:be:d9:da:89:ed:4e:51:de:
d7:7f:dd:57:2e:e5:97:f6:4e:1b:8e:75:71:94:61:31:90:df:
6b:1b:14:ca:57:4c:85:f0:17:02:e1:e1:2a:25:76:bd:b0:99:
f6:79:99:91:01:10:3f:87:27:5f:4a:9c:2a:49:19:5b:14:d4:
4d:db:02:69:65:64:19:e3:26:1a:0a:1b:d8:1f:1c:09:3f:3d:
e4:c8:0a:f9:d0:24:12:01:c5:31:34:10:00:fc:3c:1c:cc:18:
cd:3c:e8:42:40:e5:8e:7b:38:8c:f4:49:00:bc:35:f6:9c:d9:
34:83:8b:2f:7a:5b:39:78:4a:f9:49:18:81:f4:7d:a0:42:04:
53:b3:05:58:1c:c3:05:f8:a6:3c:5d:e5:73:db:27:39:de:3e:
cb:0d:77:de:10:66:2a:bd:f6:9f:18:68:1a:d5:23:e1:84:fa:
21:3c:6e:42:96:6d:93:74:85:c6:6d:37:c7:05:ae:13:0c:45:
3d:ff:1e:e5:56:b3:7b:58:92:f1:fa:97:89:0e:05:b7:c3:30:
27:f9:03:0d
-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgIDAfJkMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDUxNzAwNTAxOVoXDTI1MDcwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNUQ5NjMxMTAvBgNVBAUTKDQwQzVCRDNERTk1MkI5MkU5NTkyMUE0
RkQ2REY3REIwN0I0QTI5MjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDtQFALQ9pKXcdNyZLShi9XcO5CQ2Lwt/6EWIO8SZcXVCaLSY4UNhTi7czlwaQ3
lxzE2vU9PdjiWy9zTmfGEHYqFoZarnaE6MITQdgHTMiZZLSF8sDYJW7G0SJ4S+Ux
Z6DD5emHDiTrnML5iwFJp2HvbIIJpL5Rh3CSnckxF/79C2z7ObcHkdiPjDIoYezK
N/tjIu8JVJwhUuwdIFuRaeTDbwbdv0FZ5xFaD4yHAw4k7vzRsoNe6M4O2gAEOQfB
fzo10tJp5T9ezRXdUcECkEGstU2VD23RjPBf/jQ2Af8AE+MVr2s4nH2UTJyqplLh
SVaWgs2AjjR3b4/YARG4s7WjAgMBAAGjggMmMIIDIjAdBgNVHQ4EFgQUQMW9PelS
uS6VkhpP1t99sHtKKSEwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTVEOTYzLzkwRTgwQkM4OTdFMjExRUI5QjM5RDUzMUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1RDk2My85MEU4MEJDODk3RTIxMUVCOUIzOUQ1MzFDNEY5QUUwMi9RTVc5UGVs
U3VTNlZraHBQMXQ5OXNIdEtLU0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAircMDYGCCsGAQUFBwEHAQH/BCcwJTASBAIAATAMAwQAZ1E3AwQAZ6Wh
MA8EAgACMAkDBwAgAQ32bYAwDQYJKoZIhvcNAQELBQADggEBAChU/CoUb/gpRBsQ
PLpGwDfzWQEbhK9t5J8rkrkglHa1kHUFBzEwDjNAEGXGs8S+2dqJ7U5R3td/3Vcu
5Zf2ThuOdXGUYTGQ32sbFMpXTIXwFwLh4Soldr2wmfZ5mZEBED+HJ19KnCpJGVsU
1E3bAmllZBnjJhoKG9gfHAk/PeTICvnQJBIBxTE0EAD8PBzMGM086EJA5Y57OIz0
SQC8Nfac2TSDiy96Wzl4SvlJGIH0faBCBFOzBVgcwwX4pjxd5XPbJznePssNd94Q
Ziq99p8YaBrVI+GE+iE8bkKWbZN0hcZtN8cFrhMMRT3/HuVWs3tYkvH6l4kOBbfD
MCf5Aw0=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:20:22 2025 by rpki-client