Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer
File: R2lFsh8liffnEnUf50f6IUOlI1s.cer (raw, json)
Hash identifier: XNgXooHhVGkENvDR7A2ZD4bEKZLpnfj9fmWo08t1I94=
Subject key identifier: 47:69:45:B2:1F:25:89:F7:E7:12:75:1F:E7:47:FA:21:43:A5:23:5B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FF5F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 11 Jul 2024 03:31:44 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 150002
IP: 103.190.130.0/23
IP: 2001:df0:ecc0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130911 (0x1ff5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jul 11 03:31:44 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A9132B1D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:8e:3e:34:be:69:b2:45:58:00:69:26:c6:bf:
c9:4f:2c:be:6a:63:ba:81:bb:a4:0a:e8:ee:f6:e9:
be:a6:d5:8a:4a:77:7f:4d:51:92:e3:fe:b2:1c:00:
5b:c7:40:3c:c7:86:58:98:05:ad:60:6f:b7:08:ae:
59:a4:d2:fc:61:27:9e:01:3b:9b:1b:62:3f:aa:1b:
94:b7:d6:55:5a:c5:58:72:de:27:bc:e7:26:c1:6c:
bc:16:1b:18:31:81:f8:d9:d0:ac:9d:1b:01:b6:1f:
4c:3e:cf:c7:18:21:f4:44:b0:f8:15:80:cc:12:7b:
48:e1:25:f2:4c:d4:52:bc:f0:74:54:76:0a:fb:7b:
6d:71:5d:e6:24:a2:70:74:30:ec:89:04:8d:0b:0b:
be:68:1d:e3:08:d6:46:70:eb:ec:94:1c:fd:46:2e:
9f:d4:23:ce:ea:3e:92:07:25:7c:a5:c6:14:da:3b:
3a:3e:e5:9f:37:72:98:3c:32:ea:95:59:0e:39:60:
41:00:36:24:ae:55:90:bd:cd:e5:40:05:45:01:24:
ba:8f:32:26:8a:dc:64:d6:c6:bf:9f:bf:70:d0:03:
d0:0c:b5:7a:76:26:48:66:cc:4a:a5:71:2f:65:0c:
f4:70:15:85:0a:58:63:4d:09:54:0e:18:cb:dc:f2:
13:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:69:45:B2:1F:25:89:F7:E7:12:75:1F:E7:47:FA:21:43:A5:23:5B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150002
sbgp-ipAddrBlock: critical
IPv4:
103.190.130.0/23
IPv6:
2001:df0:ecc0::/48
Signature Algorithm: sha256WithRSAEncryption
d9:b1:62:cb:20:6a:52:9f:78:7b:3f:e9:e8:c6:31:50:64:eb:
57:69:4e:39:13:57:3d:a6:7b:2d:17:92:fe:e6:9a:fe:52:4e:
67:f5:fe:94:e1:00:86:77:25:23:34:d6:4f:e7:90:9c:c0:68:
f2:e8:5a:28:42:1f:1b:af:8f:aa:cb:44:c2:d5:e0:2f:04:bd:
16:79:94:ea:87:8e:68:4e:5e:b7:af:c2:4b:41:fa:49:e9:16:
0e:a8:ec:c6:05:fd:d2:ac:f5:8e:75:df:da:eb:03:b1:bd:ab:
7b:97:50:7d:62:6d:ae:4d:34:c5:00:23:62:ae:18:f8:d2:6c:
02:05:a1:2d:97:36:9b:2d:bd:25:8c:4b:f0:82:4f:e6:ca:0e:
8a:96:b7:81:ae:a9:40:92:0b:99:6f:27:58:c2:a7:e3:a8:db:
db:e7:4e:6a:90:0e:8d:39:0d:85:00:6a:0d:e0:fd:7b:c3:25:
e6:63:c3:b8:b0:ff:4a:ef:d5:7a:cb:6a:35:5c:81:d4:28:6e:
e7:5f:18:bf:80:c9:08:18:09:95:81:43:f8:7d:2a:ce:ca:51:
48:af:12:4c:18:c8:d4:0c:65:3f:4d:32:ad:64:32:2f:17:c6:
e9:43:21:11:22:61:b3:f2:82:0a:73:5e:1a:49:ef:7d:6d:4f:
23:7f:10:20
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAf9fMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDcxMTAzMzE0NFoXDTI1MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMzJCMUQxMTAvBgNVBAUTKDQ3Njk0NUIyMUYyNTg5RjdFNzEyNzUx
RkU3NDdGQTIxNDNBNTIzNUIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDQjj40vmmyRVgAaSbGv8lPLL5qY7qBu6QK6O726b6m1YpKd39NUZLj/rIcAFvH
QDzHhliYBa1gb7cIrlmk0vxhJ54BO5sbYj+qG5S31lVaxVhy3ie85ybBbLwWGxgx
gfjZ0KydGwG2H0w+z8cYIfREsPgVgMwSe0jhJfJM1FK88HRUdgr7e21xXeYkonB0
MOyJBI0LC75oHeMI1kZw6+yUHP1GLp/UI87qPpIHJXylxhTaOzo+5Z83cpg8MuqV
WQ45YEEANiSuVZC9zeVABUUBJLqPMiaK3GTWxr+fv3DQA9AMtXp2JkhmzEqlcS9l
DPRwFYUKWGNNCVQOGMvc8hPRAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUR2lFsh8l
iffnEnUf50f6IUOlI1swHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTMyQjFELzMwMjAzRUQwMTdBNDExRURCMzYwMTU2NEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEzMkIxRC8zMDIwM0VEMDE3QTQxMUVEQjM2MDE1NjRDNEY5QUUwMi9SMmxGc2g4
bGlmZm5FblVmNTBmNklVT2xJMXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAknyMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ76CMA8EAgAC
MAkDBwAgAQ3w7MAwDQYJKoZIhvcNAQELBQADggEBANmxYssgalKfeHs/6ejGMVBk
61dpTjkTVz2mey0Xkv7mmv5STmf1/pThAIZ3JSM01k/nkJzAaPLoWihCHxuvj6rL
RMLV4C8EvRZ5lOqHjmhOXrevwktB+knpFg6o7MYF/dKs9Y5139rrA7G9q3uXUH1i
ba5NNMUAI2KuGPjSbAIFoS2XNpstvSWMS/CCT+bKDoqWt4GuqUCSC5lvJ1jCp+Oo
29vnTmqQDo05DYUAag3g/XvDJeZjw7iw/0rv1XrLajVcgdQobudfGL+AyQgYCZWB
Q/h9Ks7KUUivEkwYyNQMZT9NMq1kMi8XxulDIREiYbPyggpzXhpJ731tTyN/ECA=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:59:30 2025 by rpki-client