Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ltGlmUmhu3ombXKg8S_81fUFnxc.cer
File: ltGlmUmhu3ombXKg8S_81fUFnxc.cer (raw, json)
Hash identifier: CuapP2ITsD0r/ChEOXo9ZrTDQX89usDzXjTgwFY9LXU=
Subject key identifier: 96:D1:A5:99:49:A1:BB:7A:26:6D:72:A0:F1:2F:FC:D5:F5:05:9F:17
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02282E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AB001/83D54E52574811ECA77E5D86C4F9AE02/ltGlmUmhu3ombXKg8S_81fUFnxc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AB001/83D54E52574811ECA77E5D86C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 08 Jan 2025 18:58:33 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 149048
IP: 103.177.118.0/23
IP: 2001:df0:2140::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141358 (0x2282e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 8 18:58:33 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91AB001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c2:1d:a3:dc:c0:49:a5:61:b6:37:f2:8f:58:
29:fb:63:04:56:11:c0:95:31:9a:ca:0a:ae:90:d7:
49:ba:bc:c3:0c:0e:fa:d1:49:ce:4e:df:a0:96:df:
1e:03:43:a8:4f:e9:e7:f7:cf:76:ef:8c:34:6c:75:
88:ee:38:5b:b7:c6:a3:88:8c:d1:fa:13:6f:d4:0a:
78:cf:91:a9:2d:0e:7e:fb:53:e6:66:27:f5:74:b1:
ba:12:ea:38:6c:e7:16:24:e7:97:11:84:08:b6:32:
1f:36:2c:2d:2c:45:29:a6:53:64:cc:2c:33:d5:9b:
cd:a8:af:93:a4:78:a3:ef:50:1e:55:07:a3:35:57:
65:f1:b2:c7:8b:b1:83:07:80:83:42:1c:d6:aa:b1:
12:97:16:90:41:b0:4b:a0:98:8b:d5:11:9b:78:c9:
64:ca:5a:93:60:66:71:c7:55:7d:f3:6a:8a:43:c7:
8b:d2:11:ed:47:92:2e:cd:9b:e2:68:09:1d:9a:3b:
fc:fa:b2:14:53:74:38:d3:ba:79:fd:bc:32:1b:ec:
c0:dc:00:23:83:52:7c:7a:61:d0:ee:f1:e9:18:93:
bf:14:9e:ab:a2:62:38:ca:f3:8d:e0:e8:0e:5b:70:
80:0e:70:f8:d8:e5:49:9d:67:7f:4d:25:df:88:8a:
da:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:D1:A5:99:49:A1:BB:7A:26:6D:72:A0:F1:2F:FC:D5:F5:05:9F:17
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AB001/83D54E52574811ECA77E5D86C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AB001/83D54E52574811ECA77E5D86C4F9AE02/ltGlmUmhu3ombXKg8S_81fUFnxc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149048
sbgp-ipAddrBlock: critical
IPv4:
103.177.118.0/23
IPv6:
2001:df0:2140::/48
Signature Algorithm: sha256WithRSAEncryption
16:3d:37:c9:3a:5f:4e:11:2a:5b:07:fd:a6:9b:13:ed:b7:b8:
ad:da:1b:dc:c6:bb:49:bb:6e:1f:29:48:6d:eb:28:4b:22:76:
c6:5b:97:59:2f:da:c5:4e:26:05:6d:4f:2b:dd:2e:6e:4f:6a:
c3:83:15:f9:dc:45:7b:98:f0:95:db:21:c1:16:5f:8b:ed:3f:
23:ac:de:34:e9:22:6f:fd:a9:63:1e:43:ea:ab:cd:fd:64:5a:
9f:9d:66:8e:5e:72:e0:21:f4:7d:09:dc:aa:7c:b7:a8:a7:e9:
82:a7:b0:a4:99:71:74:5b:cc:ab:5f:2c:cd:da:aa:b1:72:d2:
76:43:5d:9b:79:8e:8a:8d:a1:66:ed:ac:e6:55:28:78:ec:55:
f6:69:42:9f:54:c8:f8:63:38:b5:6c:51:6e:21:60:68:6d:5a:
c7:dc:8f:06:fc:51:17:c1:51:d9:c4:dd:0e:18:9d:1f:2b:44:
af:ef:2b:7a:1b:81:85:0f:e6:7b:62:e3:c4:f2:09:a8:c3:a2:
2a:25:9c:74:e5:cb:1a:be:8b:eb:70:45:e5:89:f5:fe:e9:fb:
eb:15:c3:37:ce:10:31:99:da:96:78:99:2f:a3:c3:f2:0a:57:
e1:75:7e:a2:bb:62:e2:fb:cd:32:63:3e:0a:41:7a:e4:a3:c7:
ec:81:d2:5e
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAiguMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDEwODE4NTgzM1oXDTI2MDMwMjAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQUIwMDExMTAvBgNVBAUTKDk2RDFBNTk5NDlBMUJCN0EyNjZENzJB
MEYxMkZGQ0Q1RjUwNTlGMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC7wh2j3MBJpWG2N/KPWCn7YwRWEcCVMZrKCq6Q10m6vMMMDvrRSc5O36CW3x4D
Q6hP6ef3z3bvjDRsdYjuOFu3xqOIjNH6E2/UCnjPkaktDn77U+ZmJ/V0sboS6jhs
5xYk55cRhAi2Mh82LC0sRSmmU2TMLDPVm82or5OkeKPvUB5VB6M1V2XxsseLsYMH
gINCHNaqsRKXFpBBsEugmIvVEZt4yWTKWpNgZnHHVX3zaopDx4vSEe1Hki7Nm+Jo
CR2aO/z6shRTdDjTunn9vDIb7MDcACODUnx6YdDu8ekYk78UnquiYjjK843g6A5b
cIAOcPjY5UmdZ39NJd+IitobAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUltGlmUmh
u3ombXKg8S/81fUFnxcwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUFCMDAxLzgzRDU0RTUyNTc0ODExRUNBNzdFNUQ4NkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFBQjAwMS84M0Q1NEU1MjU3NDgxMUVDQTc3RTVEODZDNEY5QUUwMi9sdEdsbVVt
aHUzb21iWEtnOFNfODFmVUZueGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAkY4MDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ7F2MA8EAgAC
MAkDBwAgAQ3wIUAwDQYJKoZIhvcNAQELBQADggEBABY9N8k6X04RKlsH/aabE+23
uK3aG9zGu0m7bh8pSG3rKEsidsZbl1kv2sVOJgVtTyvdLm5PasODFfncRXuY8JXb
IcEWX4vtPyOs3jTpIm/9qWMeQ+qrzf1kWp+dZo5ecuAh9H0J3Kp8t6in6YKnsKSZ
cXRbzKtfLM3aqrFy0nZDXZt5joqNoWbtrOZVKHjsVfZpQp9UyPhjOLVsUW4hYGht
Wsfcjwb8URfBUdnE3Q4YnR8rRK/vK3obgYUP5nti48TyCajDoiolnHTlyxq+i+tw
ReWJ9f7p++sVwzfOEDGZ2pZ4mS+jw/IKV+F1fqK7YuL7zTJjPgpBeuSjx+yB0l4=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:21:38 2025 by rpki-client