Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VWyosJdH0HtvaiekBVKNOfpbgkw.cer
File: VWyosJdH0HtvaiekBVKNOfpbgkw.cer (raw, json)
Hash identifier: W4d6yUZPESBUw36Zxl5fCN06l4Yt8SD8PRXuLjJLp5k=
Subject key identifier: 55:6C:A8:B0:97:47:D0:7B:6F:6A:27:A4:05:52:8D:39:FA:5B:82:4C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FCCC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912A4D7/BD0C03F2BF6711EAB3BB1815C4F9AE02/VWyosJdH0HtvaiekBVKNOfpbgkw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912A4D7/BD0C03F2BF6711EAB3BB1815C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 01 Jul 2024 14:22:38 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 140878
IP: 103.152.214.0/23
IP: 2001:df4:1d80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130252 (0x1fccc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jul 1 14:22:38 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A912A4D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3a:1a:08:71:81:aa:61:2c:45:12:f1:fb:cb:
9b:37:46:0c:92:50:ab:2a:9f:7a:51:b5:b0:78:b9:
d5:94:e1:ef:22:56:3c:aa:44:68:3f:3f:b0:ff:89:
dd:ba:4e:32:bb:ce:57:2c:01:93:d2:18:ba:2a:37:
21:a6:6d:81:8b:b9:26:a6:7c:ab:e2:7b:95:90:09:
d8:8b:bd:2a:29:d7:cf:00:aa:d5:4d:0d:bc:45:1a:
fe:68:56:de:18:bf:fc:c9:7d:09:b3:8c:e8:96:76:
bc:54:bf:97:0d:c3:73:38:7a:91:c9:1c:06:19:ca:
68:53:7a:10:1c:da:0b:59:6f:cb:3a:4b:e7:c3:0b:
03:c5:4b:b3:a5:95:42:cd:4a:31:8c:19:91:b9:34:
c3:a4:ee:30:fe:3a:51:74:61:6b:58:5c:c6:3a:0b:
17:ed:ac:04:b1:c7:21:c5:e7:99:89:7e:30:e8:34:
b3:1d:b5:c6:76:ae:c5:82:d0:df:0c:65:2e:cb:80:
9e:df:eb:61:13:b5:c1:f7:09:c9:d5:ef:8b:88:37:
b2:04:59:52:b9:52:9c:d6:54:db:9a:66:76:9b:7b:
95:17:a6:e1:fd:a4:e2:ec:79:56:65:42:f9:fe:3b:
52:56:76:24:1a:6b:75:99:5f:44:40:ea:fc:c6:58:
7a:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:6C:A8:B0:97:47:D0:7B:6F:6A:27:A4:05:52:8D:39:FA:5B:82:4C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912A4D7/BD0C03F2BF6711EAB3BB1815C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912A4D7/BD0C03F2BF6711EAB3BB1815C4F9AE02/VWyosJdH0HtvaiekBVKNOfpbgkw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140878
sbgp-ipAddrBlock: critical
IPv4:
103.152.214.0/23
IPv6:
2001:df4:1d80::/48
Signature Algorithm: sha256WithRSAEncryption
9b:7d:f5:ce:99:7f:c7:ba:b5:73:3b:ae:23:f1:e2:83:a7:cf:
fa:46:d2:0e:07:72:06:f3:72:28:4a:dd:18:f9:c6:d3:bf:be:
c0:0c:6d:fe:7a:c6:d4:c2:ad:95:06:e5:d8:e4:2a:0f:47:d6:
ed:02:bf:4a:0f:44:9a:a8:e0:2d:d2:4c:fd:f3:f4:d6:d9:a5:
76:ac:cd:19:f4:2b:27:ca:f1:79:e7:56:ba:c2:59:ff:78:eb:
b9:d6:38:a4:32:cd:33:84:9b:8b:ba:e6:83:97:36:0a:5d:db:
74:f2:70:fc:bf:8e:4b:24:1e:e6:95:61:7f:a0:50:d0:36:27:
ec:1c:94:75:64:84:ce:84:5e:81:8b:f1:a9:1d:b0:ab:49:f2:
8e:9f:73:8f:82:6a:33:6e:ea:f2:4a:27:27:1d:34:a4:32:84:
79:90:27:3b:83:aa:2f:a3:d0:38:84:3f:b3:6c:b5:11:e9:a8:
06:a0:92:dd:12:e1:28:7d:28:f9:ab:be:ed:ef:fa:13:5a:b6:
b0:d3:60:74:cb:e6:0f:59:43:47:08:0a:e6:d7:d7:98:e2:5a:
83:8f:ad:4e:a9:8a:ca:b7:3d:89:fe:0a:66:36:d3:09:fa:a5:
8d:d2:4f:97:ff:f3:63:25:8e:89:6d:78:ac:34:3b:03:ee:7c:
69:65:0b:e6
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAfzMMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDcwMTE0MjIzOFoXDTI1MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMkE0RDcxMTAvBgNVBAUTKDU1NkNBOEIwOTc0N0QwN0I2RjZBMjdB
NDA1NTI4RDM5RkE1QjgyNEMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCuOhoIcYGqYSxFEvH7y5s3RgySUKsqn3pRtbB4udWU4e8iVjyqRGg/P7D/id26
TjK7zlcsAZPSGLoqNyGmbYGLuSamfKvie5WQCdiLvSop188AqtVNDbxFGv5oVt4Y
v/zJfQmzjOiWdrxUv5cNw3M4epHJHAYZymhTehAc2gtZb8s6S+fDCwPFS7OllULN
SjGMGZG5NMOk7jD+OlF0YWtYXMY6CxftrASxxyHF55mJfjDoNLMdtcZ2rsWC0N8M
ZS7LgJ7f62ETtcH3CcnV74uIN7IEWVK5UpzWVNuaZnabe5UXpuH9pOLseVZlQvn+
O1JWdiQaa3WZX0RA6vzGWHptAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUVWyosJdH
0HtvaiekBVKNOfpbgkwwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTJBNEQ3L0JEMEMwM0YyQkY2NzExRUFCM0JCMTgxNUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEyQTRENy9CRDBDMDNGMkJGNjcxMUVBQjNCQjE4MTVDNEY5QUUwMi9WV3lvc0pk
SDBIdHZhaWVrQlZLTk9mcGJna3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAiZOMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ5jWMA8EAgAC
MAkDBwAgAQ30HYAwDQYJKoZIhvcNAQELBQADggEBAJt99c6Zf8e6tXM7riPx4oOn
z/pG0g4HcgbzcihK3Rj5xtO/vsAMbf56xtTCrZUG5djkKg9H1u0Cv0oPRJqo4C3S
TP3z9NbZpXaszRn0KyfK8XnnVrrCWf9467nWOKQyzTOEm4u65oOXNgpd23TycPy/
jkskHuaVYX+gUNA2J+wclHVkhM6EXoGL8akdsKtJ8o6fc4+CajNu6vJKJycdNKQy
hHmQJzuDqi+j0DiEP7NstRHpqAagkt0S4Sh9KPmrvu3v+hNatrDTYHTL5g9ZQ0cI
CubX15jiWoOPrU6pisq3PYn+CmY20wn6pY3ST5f/82MljolteKw0OwPufGllC+Y=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:19:14 2025 by rpki-client