Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bDt_HBM9qcUdRE2oXmAqloRR_lQ.cer
File: bDt_HBM9qcUdRE2oXmAqloRR_lQ.cer (raw, json)
Hash identifier: BZBBXIivwvSpZIbVP1PCYSvaOMF0vyuesQsEUKKkQno=
Subject key identifier: 6C:3B:7F:1C:13:3D:A9:C5:1D:44:4D:A8:5E:60:2A:96:84:51:FE:54
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0229EA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 17 Jan 2025 14:10:28 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 202.27.240.0/22
IP: 202.36.85.0 -- 202.36.86.255
IP: 202.50.199.0/24
IP: 202.50.205.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141802 (0x229ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 17 14:10:28 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91626D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b4:50:19:65:71:65:0e:18:34:4d:9d:2f:b8:
b9:3e:5a:47:bc:3f:4b:ba:57:7a:ae:bd:a8:ac:bb:
e2:29:44:ee:6c:76:90:28:fd:11:64:ea:30:07:51:
df:ed:fc:19:bd:80:02:16:51:72:e9:84:a8:87:09:
81:90:b9:e8:d5:d2:3a:b8:48:4c:f5:07:c4:6d:f2:
45:c0:fe:9e:16:f4:1e:a3:15:33:6c:1e:07:f2:8b:
3f:8a:ab:af:e7:5c:91:fb:b2:e8:6f:45:53:78:bb:
33:a2:bd:14:71:f6:b6:e1:7b:27:9f:49:e1:78:f2:
d6:d9:a2:02:7e:54:a3:9a:2c:d1:5e:a9:70:2b:cd:
24:af:f9:ba:b4:24:54:05:be:1f:44:75:c1:e8:02:
2f:73:4a:18:b2:f1:6d:ee:06:14:7d:04:4f:bb:c4:
08:63:af:a8:49:c8:54:7e:e9:b8:ea:92:5c:a3:17:
d8:7a:1f:e8:0c:d0:77:ba:dc:b4:96:67:b5:9e:2c:
5d:1d:38:f4:e4:84:80:2e:65:83:cd:8f:87:c5:f5:
42:e5:a5:38:5f:ba:46:67:14:47:bc:af:d0:0a:64:
4a:b8:ee:19:28:5f:5c:d3:35:45:fe:2c:82:ff:42:
77:b1:99:9d:9a:29:35:06:4b:3d:85:e3:9a:d2:68:
09:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:3B:7F:1C:13:3D:A9:C5:1D:44:4D:A8:5E:60:2A:96:84:51:FE:54
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.27.240.0/22
202.36.85.0-202.36.86.255
202.50.199.0/24
202.50.205.0/24
Signature Algorithm: sha256WithRSAEncryption
39:36:d9:60:f0:d3:bf:10:9f:25:1c:f4:fb:ad:61:69:3c:af:
c6:1d:c9:aa:64:89:c9:19:76:ec:b3:bf:6d:ff:34:c6:42:8b:
c2:e9:de:13:2e:8a:70:4a:ef:73:9f:79:8e:44:cb:f2:fa:b5:
85:c5:7c:c7:54:38:04:8b:fe:7c:0b:d8:bb:0d:44:0f:6e:23:
9f:f3:cf:30:24:5d:dd:4a:09:57:25:f5:a8:02:99:6a:e1:3e:
93:d4:e8:15:15:43:70:72:b6:40:21:f1:6d:7b:f8:81:f0:6b:
64:c5:76:9d:a8:6e:cc:b1:31:7f:a8:82:18:0d:62:ef:8e:40:
9b:29:6f:93:70:b1:b7:b8:ab:6a:13:12:b6:e5:2f:7a:93:da:
ef:bc:69:c0:67:65:fc:1f:ee:2d:dc:c4:ca:d5:37:df:2e:66:
04:21:f8:ea:6b:86:69:08:ac:fd:88:e8:21:12:35:d7:70:13:
7f:5b:09:10:50:3d:70:f5:6e:55:e6:1f:2d:ea:cb:80:05:6f:
c2:ba:91:df:ed:99:92:df:f4:36:a8:9f:2d:27:2c:d3:59:4c:
03:d7:e5:72:19:2c:ce:b6:64:81:2c:4d:02:cc:bf:ab:c8:41:
2c:70:18:cb:9b:72:b7:97:96:e0:3a:0a:3e:a2:ee:e5:45:9d:
4f:c4:10:af
-----BEGIN CERTIFICATE-----
MIIGGDCCBQCgAwIBAgIDAinqMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDExNzE0MTAyOFoXDTI2MDMwMjAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNjI2RDIxMTAvBgNVBAUTKDZDM0I3RjFDMTMzREE5QzUxRDQ0NERB
ODVFNjAyQTk2ODQ1MUZFNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDStFAZZXFlDhg0TZ0vuLk+Wke8P0u6V3quvaisu+IpRO5sdpAo/RFk6jAHUd/t
/Bm9gAIWUXLphKiHCYGQuejV0jq4SEz1B8Rt8kXA/p4W9B6jFTNsHgfyiz+Kq6/n
XJH7suhvRVN4uzOivRRx9rbheyefSeF48tbZogJ+VKOaLNFeqXArzSSv+bq0JFQF
vh9EdcHoAi9zShiy8W3uBhR9BE+7xAhjr6hJyFR+6bjqklyjF9h6H+gM0He63LSW
Z7WeLF0dOPTkhIAuZYPNj4fF9ULlpThfukZnFEe8r9AKZEq47hkoX1zTNUX+LIL/
QnexmZ2aKTUGSz2F45rSaAmNAgMBAAGjggMNMIIDCTAdBgNVHQ4EFgQUbDt/HBM9
qcUdRE2oXmAqloRR/lQwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTYyNkQyL0FGMjA4MzRFMTNGNTExRUZBMDlEMzIxQkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE2MjZEMi9BRjIwODM0RTEzRjUxMUVGQTA5RDMyMUJDNEY5QUUwMi9iRHRfSEJN
OXFjVWRSRTJvWG1BcWxvUlJfbFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8EKjAo
MCYEAgABMCADBALKG/AwDAMEAMokVQMEAMokVgMEAMoyxwMEAMoyzTANBgkqhkiG
9w0BAQsFAAOCAQEAOTbZYPDTvxCfJRz0+61haTyvxh3JqmSJyRl27LO/bf80xkKL
wuneEy6KcErvc595jkTL8vq1hcV8x1Q4BIv+fAvYuw1ED24jn/PPMCRd3UoJVyX1
qAKZauE+k9ToFRVDcHK2QCHxbXv4gfBrZMV2nahuzLExf6iCGA1i745Amylvk3Cx
t7irahMStuUvepPa77xpwGdl/B/uLdzEytU33y5mBCH46muGaQis/YjoIRI113AT
f1sJEFA9cPVuVeYfLerLgAVvwrqR3+2Zkt/0NqifLScs01lMA9flchkszrZkgSxN
Asy/q8hBLHAYy5tyt5eW4DoKPqLu5UWdT8QQrw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:50:27 2025 by rpki-client