Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/byZ-RWYIP-sjaiw5I7cDlgC955Q.cer
File: byZ-RWYIP-sjaiw5I7cDlgC955Q.cer (raw, json)
Hash identifier: FdfE1IXubaJ41bllzu48ZeTOdE7BCSXMqhtqNrt0PjI=
Subject key identifier: 6F:26:7E:45:66:08:3F:EB:23:6A:2C:39:23:B7:03:96:00:BD:E7:94
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0230BE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E0C24/18C8B692443211EA9CADFD1CC4F9AE02/byZ-RWYIP-sjaiw5I7cDlgC955Q.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E0C24/18C8B692443211EA9CADFD1CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 12 Feb 2025 20:03:15 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 140068
IP: 103.148.14.0/23
IP: 2001:df2:b780::/47
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143550 (0x230be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 12 20:03:15 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A91E0C24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b8:66:76:e8:21:86:80:54:6d:69:05:1b:ec:
ea:9d:3a:ac:61:e7:f4:02:e5:54:9b:28:f7:d0:e2:
cb:f1:a5:9e:02:01:53:34:0a:13:b0:1a:c3:81:83:
d1:73:00:4d:bb:e9:0f:e7:40:14:51:ec:bc:bb:34:
37:a3:c5:47:91:64:f9:d4:de:79:72:8a:ff:06:0e:
a6:2b:1b:74:de:ed:99:8e:af:05:06:4f:38:ff:99:
2a:9c:00:3c:9b:05:e7:51:3a:65:df:e8:5e:19:d0:
e3:73:02:ce:45:77:60:2c:b4:e2:72:62:dc:e2:81:
ea:44:9f:d0:ae:c8:1b:0e:3b:21:d8:c8:ec:1c:77:
05:11:56:b3:7c:98:c5:c4:e5:65:d1:eb:b4:15:d0:
21:a6:15:a6:16:18:9d:b8:ad:30:38:51:71:fe:70:
79:c3:4e:3b:f5:bf:0d:79:11:0a:d7:20:33:b7:39:
26:90:35:ab:11:3f:92:74:f9:78:00:17:0c:56:73:
67:69:2f:bf:28:88:a2:5b:cc:45:76:21:1f:39:55:
4f:32:3e:a0:e6:8e:e4:f0:ae:43:bd:ef:c5:f3:b7:
c1:25:18:85:45:de:25:c1:38:db:8a:4a:b3:d8:0d:
5b:52:5b:91:cd:c8:9b:30:af:c4:1f:64:d1:08:8d:
13:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:26:7E:45:66:08:3F:EB:23:6A:2C:39:23:B7:03:96:00:BD:E7:94
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E0C24/18C8B692443211EA9CADFD1CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E0C24/18C8B692443211EA9CADFD1CC4F9AE02/byZ-RWYIP-sjaiw5I7cDlgC955Q.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140068
sbgp-ipAddrBlock: critical
IPv4:
103.148.14.0/23
IPv6:
2001:df2:b780::/47
Signature Algorithm: sha256WithRSAEncryption
2c:bd:93:23:43:75:d8:d0:9c:21:56:9b:b5:34:6e:b0:1b:24:
2e:84:34:e8:a6:89:69:c9:f0:26:bd:14:15:5e:5c:61:3d:1b:
01:c0:92:87:90:12:69:c0:e6:b1:6c:18:38:e3:61:02:d1:57:
a2:ed:83:dd:13:ae:5e:21:22:97:9a:49:41:32:23:60:29:f2:
5d:0d:a3:de:5c:11:1e:27:a2:8d:48:3c:2a:2e:c7:45:82:eb:
d1:c0:5f:23:e0:bc:b4:6d:7b:ee:30:8a:29:80:1a:ed:fe:f7:
ba:c1:8b:85:96:9f:fa:d6:9c:08:ca:dd:b2:cc:d4:2f:96:95:
0d:68:06:24:f3:fd:d7:1e:02:5f:97:18:4f:0b:5e:fe:2e:07:
ef:cb:c8:74:e1:e1:62:d7:12:1d:dc:87:7e:2d:fe:c8:e0:24:
c0:7c:83:1d:df:86:60:b7:ad:6f:b1:9b:fc:6c:d5:de:73:7f:
1e:b7:53:d8:aa:cc:14:1c:a7:6b:fb:46:e8:01:96:b4:94:f1:
ef:46:e8:8f:99:56:c0:e9:8e:89:77:16:0d:c5:cf:86:89:2f:
87:ae:5a:72:53:5d:b7:53:fe:c5:ac:27:e8:b3:01:41:17:44:
90:60:30:48:d3:cd:62:0e:00:8b:21:69:12:27:3f:f6:10:64:
23:b5:77:2d
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAjC+MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDIxMjIwMDMxNVoXDTI2MDUwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRTBDMjQxMTAvBgNVBAUTKDZGMjY3RTQ1NjYwODNGRUIyMzZBMkMz
OTIzQjcwMzk2MDBCREU3OTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDIuGZ26CGGgFRtaQUb7OqdOqxh5/QC5VSbKPfQ4svxpZ4CAVM0ChOwGsOBg9Fz
AE276Q/nQBRR7Ly7NDejxUeRZPnU3nlyiv8GDqYrG3Te7ZmOrwUGTzj/mSqcADyb
BedROmXf6F4Z0ONzAs5Fd2AstOJyYtzigepEn9CuyBsOOyHYyOwcdwURVrN8mMXE
5WXR67QV0CGmFaYWGJ24rTA4UXH+cHnDTjv1vw15EQrXIDO3OSaQNasRP5J0+XgA
FwxWc2dpL78oiKJbzEV2IR85VU8yPqDmjuTwrkO978Xzt8ElGIVF3iXBONuKSrPY
DVtSW5HNyJswr8QfZNEIjRPbAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUbyZ+RWYI
P+sjaiw5I7cDlgC955QwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUUwQzI0LzE4QzhCNjkyNDQzMjExRUE5Q0FERkQxQ0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFFMEMyNC8xOEM4QjY5MjQ0MzIxMUVBOUNBREZEMUNDNEY5QUUwMi9ieVotUldZ
SVAtc2phaXc1STdjRGxnQzk1NVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAiMkMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ5QOMA8EAgAC
MAkDBwEgAQ3yt4AwDQYJKoZIhvcNAQELBQADggEBACy9kyNDddjQnCFWm7U0brAb
JC6ENOimiWnJ8Ca9FBVeXGE9GwHAkoeQEmnA5rFsGDjjYQLRV6Ltg90Trl4hIpea
SUEyI2Ap8l0No95cER4noo1IPCoux0WC69HAXyPgvLRte+4wiimAGu3+97rBi4WW
n/rWnAjK3bLM1C+WlQ1oBiTz/dceAl+XGE8LXv4uB+/LyHTh4WLXEh3ch34t/sjg
JMB8gx3fhmC3rW+xm/xs1d5zfx63U9iqzBQcp2v7RugBlrSU8e9G6I+ZVsDpjol3
Fg3Fz4aJL4euWnJTXbdT/sWsJ+izAUEXRJBgMEjTzWIOAIshaRInP/YQZCO1dy0=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:23:05 2025 by rpki-client