Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qgt4LbmTLiL93vDD91WW7glF4S0.cer
File: qgt4LbmTLiL93vDD91WW7glF4S0.cer (raw, json)
Hash identifier: OeGztcGeAqm4WrzOI2LObdsApXIJM/AXOq6Rx1V9ZLs=
Subject key identifier: AA:0B:78:2D:B9:93:2E:22:FD:DE:F0:C3:F7:55:96:EE:09:45:E1:2D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022439
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 23 Dec 2024 03:14:37 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 133458
IP: 2401:e260::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 13 Feb 2025 03:45:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140345 (0x22439)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 23 03:14:37 2024 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A917C909
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c6:58:62:41:e5:04:4d:51:d8:68:c2:fb:bb:
8c:36:c2:eb:1e:36:95:b0:cb:18:0a:bf:bb:dd:8f:
b7:f9:14:4d:27:cf:1a:27:0c:c6:22:59:47:b5:9e:
87:34:db:33:fb:5b:45:02:89:36:3a:f4:ad:dc:d6:
9f:18:96:f8:46:0a:a4:d6:c6:66:09:36:76:3a:1d:
22:e2:3c:24:07:94:fb:6e:76:e1:18:7f:f8:d3:2c:
56:7f:33:a5:76:32:04:74:b5:db:b4:23:6d:ae:48:
b9:66:38:78:38:26:a8:72:0b:dd:cf:15:79:27:18:
a0:1c:df:38:9a:82:e9:21:59:ac:81:7e:db:49:cf:
3b:8a:b1:43:e8:eb:e3:a5:98:d9:f2:36:94:2f:d8:
5c:6a:95:1a:a7:a5:91:37:c7:15:84:22:13:28:c9:
f8:5c:84:75:aa:0c:70:88:04:1b:7b:80:fe:5c:57:
c7:1a:90:33:4e:c8:6d:cd:2a:0a:58:8e:48:e2:4f:
7b:25:a9:f6:fe:9d:ba:71:5c:49:0c:12:a7:e5:59:
38:51:ee:62:31:bf:55:ad:37:ff:df:06:cc:26:d6:
4b:6d:42:70:ca:f3:87:e4:1c:4c:a1:35:7b:19:e8:
1d:a6:42:9f:62:f0:b7:38:ad:61:d1:22:10:22:85:
a8:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:0B:78:2D:B9:93:2E:22:FD:DE:F0:C3:F7:55:96:EE:09:45:E1:2D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133458
sbgp-ipAddrBlock: critical
IPv6:
2401:e260::/32
Signature Algorithm: sha256WithRSAEncryption
98:f2:3d:65:af:0d:ca:47:eb:46:c3:36:72:a1:be:9d:88:89:
9f:24:0c:87:99:e0:ee:b0:4a:f0:ce:01:60:c9:aa:9f:94:0b:
8a:8a:a8:31:4e:f2:f6:3f:5c:37:ce:d0:0c:01:91:6f:4d:fd:
86:64:29:15:c1:a4:da:b5:5a:f8:a5:38:6a:62:b2:6a:47:e1:
9c:ac:d6:5d:c9:10:6b:71:9f:f2:21:1c:29:ec:50:58:78:53:
60:b8:c7:17:f6:44:ed:ac:f1:3e:36:42:d4:fc:dd:c0:0d:96:
60:55:dc:de:c1:88:76:45:96:df:34:2b:25:8e:72:5b:09:1d:
3b:65:21:03:05:08:4a:a9:b1:09:ae:5b:a6:1c:77:16:48:6d:
08:5d:99:4c:89:19:8a:d4:d9:eb:cb:81:02:10:86:69:31:41:
34:f6:7f:f3:1f:62:6c:75:a3:8d:f5:b5:d8:ce:d8:2f:f7:ba:
a6:e4:6f:08:09:88:ae:3b:63:fc:55:70:c7:c7:1d:94:b4:01:
e5:6d:7f:a6:c6:88:ce:b1:72:c4:bd:66:be:95:d3:4c:99:b6:
32:2a:13:ed:3a:e8:68:80:de:b8:b4:cb:30:ac:0e:be:90:3a:
3b:31:85:1d:f7:de:c3:c2:b6:57:4c:66:4b:9a:79:01:53:71:
66:48:2b:1f
-----BEGIN CERTIFICATE-----
MIIGGzCCBQOgAwIBAgIDAiQ5MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTIyMzAzMTQzN1oXDTI2MDMzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxN0M5MDkxMTAvBgNVBAUTKEFBMEI3ODJEQjk5MzJFMjJGRERFRjBD
M0Y3NTU5NkVFMDk0NUUxMkQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC7xlhiQeUETVHYaML7u4w2wuseNpWwyxgKv7vdj7f5FE0nzxonDMYiWUe1noc0
2zP7W0UCiTY69K3c1p8YlvhGCqTWxmYJNnY6HSLiPCQHlPtuduEYf/jTLFZ/M6V2
MgR0tdu0I22uSLlmOHg4JqhyC93PFXknGKAc3ziagukhWayBfttJzzuKsUPo6+Ol
mNnyNpQv2FxqlRqnpZE3xxWEIhMoyfhchHWqDHCIBBt7gP5cV8cakDNOyG3NKgpY
jkjiT3slqfb+nbpxXEkMEqflWThR7mIxv1WtN//fBswm1kttQnDK84fkHEyhNXsZ
6B2mQp9i8Lc4rWHRIhAihaiNAgMBAAGjggMQMIIDDDAdBgNVHQ4EFgQUqgt4LbmT
LiL93vDD91WW7glF4S0wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTdDOTA5LzA3Nzk3RkU0QzBEQzExRUY5RTg3MTg0NEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE3QzkwOS8wNzc5N0ZFNEMwREMxMUVGOUU4NzE4NDRDNEY5QUUwMi9xZ3Q0TGJt
VExpTDkzdkREOTFXVzdnbEY0UzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAglSMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAHiYDANBgkq
hkiG9w0BAQsFAAOCAQEAmPI9Za8NykfrRsM2cqG+nYiJnyQMh5ng7rBK8M4BYMmq
n5QLioqoMU7y9j9cN87QDAGRb039hmQpFcGk2rVa+KU4amKyakfhnKzWXckQa3Gf
8iEcKexQWHhTYLjHF/ZE7azxPjZC1PzdwA2WYFXc3sGIdkWW3zQrJY5yWwkdO2Uh
AwUISqmxCa5bphx3FkhtCF2ZTIkZitTZ68uBAhCGaTFBNPZ/8x9ibHWjjfW12M7Y
L/e6puRvCAmIrjtj/FVwx8cdlLQB5W1/psaIzrFyxL1mvpXTTJm2MioT7TroaIDe
uLTLMKwOvpA6OzGFHffew8K2V0xmS5p5AVNxZkgrHw==
-----END CERTIFICATE-----
Generated at Thu Feb 6 08:07:26 2025 by rpki-client