Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer
File: fvLsMxvWVD0y25gMUGJsBAfKiYI.cer (raw, json)
Hash identifier: ezxIWaWnIym+m4/saMnnxzir2hIIc4Q+UJdbs6XtJ/4=
Subject key identifier: 7E:F2:EC:33:1B:D6:54:3D:32:DB:98:0C:50:62:6C:04:07:CA:89:82
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0225BF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 30 Dec 2024 20:21:51 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 136035
IP: 103.80.100.0/23
IP: 2001:df7:2200::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140735 (0x225bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 30 20:21:51 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91D5E23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a3:3c:6d:69:63:c1:bb:80:08:6e:75:f0:16:
07:a7:e6:bb:0b:19:80:bb:62:ff:5b:6c:5d:95:47:
5f:a4:cd:d3:3a:b5:25:1f:6b:88:69:07:91:49:3b:
6b:11:42:01:22:77:7e:8f:6f:7e:19:30:04:a6:61:
07:1b:26:d5:61:c1:ca:15:0b:7c:8a:3b:cd:fa:a3:
9e:50:3e:bd:e5:98:bb:97:4c:96:08:6a:89:05:6d:
e6:c0:07:9e:a4:91:e4:86:a1:ad:59:cc:8f:78:35:
f2:86:a5:b3:c8:f2:63:fe:58:c5:8c:18:92:5c:f2:
27:62:d0:8d:b0:dd:c9:08:8a:64:bd:b0:5c:8f:6e:
b9:b3:e3:f7:6f:34:a8:60:85:fd:81:61:21:b0:cc:
94:d8:e8:65:58:8b:10:74:52:29:93:2c:85:40:4a:
a3:78:41:98:ec:0a:de:b3:16:15:37:00:b3:c5:1e:
93:47:56:8f:f8:02:42:d0:03:b2:c5:ac:e6:20:c8:
3d:0a:63:91:1c:6b:e7:b1:1a:b5:d0:ea:06:be:2f:
c4:aa:98:9f:e1:d1:d4:cd:1b:8b:12:5e:ef:e9:42:
be:3c:bd:d9:0f:8c:34:92:82:33:20:07:84:7c:41:
81:4e:d9:45:f4:a0:8b:0e:4b:89:db:c4:18:3c:86:
68:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:F2:EC:33:1B:D6:54:3D:32:DB:98:0C:50:62:6C:04:07:CA:89:82
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136035
sbgp-ipAddrBlock: critical
IPv4:
103.80.100.0/23
IPv6:
2001:df7:2200::/48
Signature Algorithm: sha256WithRSAEncryption
d3:3c:ee:14:23:80:1f:cc:43:99:05:b7:aa:8f:e1:fe:93:50:
70:12:5c:ce:d8:f3:17:3b:b7:58:28:d1:a0:a8:65:28:f7:be:
64:61:1d:42:84:3c:9f:8e:61:84:8b:26:a4:1a:bc:35:79:ce:
1f:77:b2:3b:a8:30:2d:a9:3a:ac:9c:43:b4:84:54:2d:1d:35:
4f:33:c1:89:b6:5a:ec:9a:08:55:b7:34:1e:79:10:1d:b3:5f:
06:de:dd:81:7d:2b:16:e9:b3:bc:98:25:4e:70:fc:47:dc:78:
ba:2c:3e:79:02:8e:d2:80:da:4a:42:d9:37:93:0c:61:09:09:
df:e5:4d:ea:31:b6:da:63:6e:a9:a2:3c:e7:1a:33:8f:49:92:
33:71:81:8a:0e:9e:af:05:e5:ca:03:22:3e:0c:e0:f6:f0:d5:
d0:a8:46:26:17:95:5d:ec:82:d9:d2:da:f1:f1:2b:cc:8c:9f:
48:13:d2:11:a3:0d:f8:4a:56:9a:63:1c:b5:d2:10:a8:8e:e6:
3c:f8:e5:7e:12:42:ae:d3:b4:14:38:12:75:d5:4f:8d:d9:e9:
dd:6a:43:6f:f7:5d:7f:2b:09:ac:52:e6:63:38:22:0f:28:4b:
b2:32:c3:f6:7c:3b:c1:7d:92:40:5a:46:fa:02:4a:f2:ed:e9:
f3:1d:6c:5c
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAiW/MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTIzMDIwMjE1MVoXDTI2MDMwMjAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRDVFMjMxMTAvBgNVBAUTKDdFRjJFQzMzMUJENjU0M0QzMkRCOTgw
QzUwNjI2QzA0MDdDQTg5ODIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCnozxtaWPBu4AIbnXwFgen5rsLGYC7Yv9bbF2VR1+kzdM6tSUfa4hpB5FJO2sR
QgEid36Pb34ZMASmYQcbJtVhwcoVC3yKO836o55QPr3lmLuXTJYIaokFbebAB56k
keSGoa1ZzI94NfKGpbPI8mP+WMWMGJJc8idi0I2w3ckIimS9sFyPbrmz4/dvNKhg
hf2BYSGwzJTY6GVYixB0UimTLIVASqN4QZjsCt6zFhU3ALPFHpNHVo/4AkLQA7LF
rOYgyD0KY5Eca+exGrXQ6ga+L8SqmJ/h0dTNG4sSXu/pQr48vdkPjDSSgjMgB4R8
QYFO2UX0oIsOS4nbxBg8hmh7AgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUfvLsMxvW
VD0y25gMUGJsBAfKiYIwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUQ1RTIzLzg2MkE4M0NBQjA3MzExRUE5MEVDOTk2RUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFENUUyMy84NjJBODNDQUIwNzMxMUVBOTBFQzk5NkVDNEY5QUUwMi9mdkxzTXh2
V1ZEMHkyNWdNVUdKc0JBZktpWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhNjMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ1BkMA8EAgAC
MAkDBwAgAQ33IgAwDQYJKoZIhvcNAQELBQADggEBANM87hQjgB/MQ5kFt6qP4f6T
UHASXM7Y8xc7t1go0aCoZSj3vmRhHUKEPJ+OYYSLJqQavDV5zh93sjuoMC2pOqyc
Q7SEVC0dNU8zwYm2WuyaCFW3NB55EB2zXwbe3YF9Kxbps7yYJU5w/EfceLosPnkC
jtKA2kpC2TeTDGEJCd/lTeoxttpjbqmiPOcaM49JkjNxgYoOnq8F5coDIj4M4Pbw
1dCoRiYXlV3sgtnS2vHxK8yMn0gT0hGjDfhKVppjHLXSEKiO5jz45X4SQq7TtBQ4
EnXVT43Z6d1qQ2/3XX8rCaxS5mM4Ig8oS7Iyw/Z8O8F9kkBaRvoCSvLt6fMdbFw=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:32:29 2025 by rpki-client