Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCdrQR9t9pTdNkxP04LyXJ5qYGI.cer
File: YCdrQR9t9pTdNkxP04LyXJ5qYGI.cer (raw, json)
Hash identifier: Uo27cyGaAC6L1L/DRh+awLESgbexf5CkdthStKXSbkM=
Subject key identifier: 60:27:6B:41:1F:6D:F6:94:DD:36:4C:4F:D3:82:F2:5C:9E:6A:60:62
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021CD2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 21 Nov 2024 16:33:31 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: IP: 103.124.104.0/22
IP: 2403:de40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138450 (0x21cd2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 21 16:33:31 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A919FA55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:1f:1e:f4:27:7d:5b:66:14:84:61:6d:06:3f:
33:78:63:31:c2:ab:44:07:1c:bd:73:fd:46:50:e3:
ae:32:47:0d:db:d3:ab:e1:c2:82:30:c1:e4:bd:c1:
f0:ce:fa:e8:a0:88:d2:1d:40:f6:02:17:3c:94:72:
01:95:4b:93:65:da:80:f6:a4:b4:b4:81:11:43:27:
1d:b4:34:7a:6b:71:62:97:e6:f3:75:f7:a6:aa:02:
9d:1e:ad:fb:7f:9c:9a:ce:05:bc:8a:95:e5:5a:77:
40:66:dd:cb:c2:84:2d:6d:d8:85:9f:e5:7a:45:06:
b6:02:cd:98:b5:f2:d2:79:9f:48:4f:d9:15:58:3b:
71:2c:d0:d9:f3:e5:01:76:f0:d3:5d:df:7a:2a:ae:
cb:78:5d:13:bb:d8:be:f0:37:d4:8d:09:ac:b1:71:
05:42:c8:b8:bc:46:a9:27:e7:b1:d9:df:44:20:a0:
ff:d4:94:ce:e6:0b:ec:0f:62:73:c6:16:ea:e5:36:
c1:b9:d8:6e:eb:33:c5:d4:da:d3:a9:26:d1:43:7c:
3f:31:0f:1e:e9:0a:3d:f8:21:5b:85:9b:55:73:1a:
ac:ff:ed:76:7b:f9:48:72:79:2d:79:5f:a1:be:2f:
0f:02:9e:3b:7b:2a:7d:53:09:b3:17:ef:83:42:6c:
fc:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:27:6B:41:1F:6D:F6:94:DD:36:4C:4F:D3:82:F2:5C:9E:6A:60:62
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.124.104.0/22
IPv6:
2403:de40::/32
Signature Algorithm: sha256WithRSAEncryption
b0:ea:6d:61:fb:6c:14:8a:f0:d5:3a:f8:08:c5:54:ed:0b:ad:
8c:c4:cd:aa:2e:96:2d:c1:13:6b:50:43:59:e5:9c:4f:f9:c3:
a5:14:55:63:67:58:c2:52:c3:ac:cc:b8:ff:92:f5:89:22:b8:
a3:3b:8c:88:3a:8a:49:e9:51:d2:c5:5f:03:65:65:35:bb:ab:
33:19:52:91:02:1a:65:c6:68:54:40:84:dd:db:27:b6:29:34:
9a:56:15:e1:1b:5f:51:bc:6e:7e:e7:e0:8d:bc:3b:5e:ab:98:
d8:d3:a4:6e:08:4e:ad:8a:eb:92:04:fd:de:37:bd:1d:68:ed:
ee:33:ea:4a:7f:fb:c8:d2:7b:d7:52:02:98:fa:8c:b9:c7:c2:
0b:45:ab:23:4d:ad:29:db:ae:86:3b:b9:be:0c:be:8b:28:56:
83:9a:00:ac:d2:e8:89:19:af:a5:d8:d4:fb:01:2a:d0:0a:f9:
4b:53:80:ea:ec:13:33:17:1c:dd:3f:b6:b8:f8:a6:4d:0c:e1:
ca:67:8e:d4:e7:48:97:46:cc:62:91:81:30:8c:fb:56:8e:06:
4c:27:cd:b7:eb:91:ba:6b:44:17:f3:56:aa:b3:8f:f5:14:e4:
36:9c:08:59:79:de:46:1c:1f:06:52:84:3f:90:e2:10:09:59:
15:39:1d:5d
-----BEGIN CERTIFICATE-----
MIIGDTCCBPWgAwIBAgIDAhzSMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTEyMTE2MzMzMVoXDTI2MDEzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxOUZBNTUxMTAvBgNVBAUTKDYwMjc2QjQxMUY2REY2OTRERDM2NEM0
RkQzODJGMjVDOUU2QTYwNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDVHx70J31bZhSEYW0GPzN4YzHCq0QHHL1z/UZQ464yRw3b06vhwoIwweS9wfDO
+uigiNIdQPYCFzyUcgGVS5Nl2oD2pLS0gRFDJx20NHprcWKX5vN196aqAp0erft/
nJrOBbyKleVad0Bm3cvChC1t2IWf5XpFBrYCzZi18tJ5n0hP2RVYO3Es0Nnz5QF2
8NNd33oqrst4XRO72L7wN9SNCayxcQVCyLi8Rqkn57HZ30QgoP/UlM7mC+wPYnPG
FurlNsG52G7rM8XU2tOpJtFDfD8xDx7pCj34IVuFm1VzGqz/7XZ7+UhyeS15X6G+
Lw8Cnjt7Kn1TCbMX74NCbPxTAgMBAAGjggMCMIIC/jAdBgNVHQ4EFgQUYCdrQR9t
9pTdNkxP04LyXJ5qYGIwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTlGQTU1LzBGOUU2MTZFNDBGQzExRUVCODIwNjc0NEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE5RkE1NS8wRjlFNjE2RTQwRkMxMUVFQjgyMDY3NDRDNEY5QUUwMi9ZQ2RyUVI5
dDlwVGROa3hQMDRMeVhKNXFZR0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8EHzAd
MAwEAgABMAYDBAJnfGgwDQQCAAIwBwMFACQD3kAwDQYJKoZIhvcNAQELBQADggEB
ALDqbWH7bBSK8NU6+AjFVO0LrYzEzaouli3BE2tQQ1nlnE/5w6UUVWNnWMJSw6zM
uP+S9YkiuKM7jIg6iknpUdLFXwNlZTW7qzMZUpECGmXGaFRAhN3bJ7YpNJpWFeEb
X1G8bn7n4I28O16rmNjTpG4ITq2K65IE/d43vR1o7e4z6kp/+8jSe9dSApj6jLnH
wgtFqyNNrSnbroY7ub4MvosoVoOaAKzS6IkZr6XY1PsBKtAK+UtTgOrsEzMXHN0/
trj4pk0M4cpnjtTnSJdGzGKRgTCM+1aOBkwnzbfrkbprRBfzVqqzj/UU5DacCFl5
3kYcHwZShD+Q4hAJWRU5HV0=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:18:29 2025 by rpki-client