Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer
File: sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer (raw, json)
Hash identifier: ZNdOg3WwZUQOaNTp4iDXR0EdEbMY6ElKlcCTAXv20cQ=
Subject key identifier: B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020895
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 23 Aug 2024 14:10:59 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 134562
IP: 103.120.164.0/22
IP: 2403:5a40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133269 (0x20895)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Aug 23 14:10:59 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A913BF1E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f1:36:bf:5d:64:d8:7c:ed:c4:36:5a:5b:02:
86:04:d2:20:32:df:a0:c1:ca:3d:1f:8e:6f:16:a7:
35:09:96:12:bb:ea:40:0a:4e:6e:16:c3:94:2b:5f:
a7:e4:4d:22:bb:40:f3:7a:d7:c9:33:d0:18:07:7d:
c2:25:8c:a5:fa:06:bb:a4:df:e2:bc:fa:5d:9e:d3:
c4:20:f0:93:82:33:87:ef:83:8e:07:6d:14:5c:14:
a2:4d:a4:58:e6:13:16:b2:38:40:3b:28:53:18:38:
20:c6:00:0b:82:67:05:52:35:79:1e:4e:d1:9b:d5:
b4:11:ad:72:ce:d4:4f:1a:6b:e7:15:06:e7:d8:70:
cc:30:d4:ce:91:e0:86:6b:11:94:34:31:9c:aa:d1:
bf:b5:96:88:d1:b3:72:38:21:4f:67:98:fe:9b:dc:
e5:a1:bd:3d:86:ee:db:dc:d6:6e:90:24:97:30:d3:
0a:2a:9b:92:a6:10:1f:50:55:13:b6:13:73:6e:a3:
ee:a1:72:7e:3d:57:13:3a:b5:e8:c6:59:80:68:e1:
9d:02:d2:85:e1:37:36:4a:d1:77:a6:e8:d6:a7:25:
63:49:4e:45:f3:e0:4d:c3:ab:dd:cf:54:29:f7:f0:
94:7c:0d:a4:3a:ef:27:23:4b:37:16:ea:e7:bd:93:
2e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134562
sbgp-ipAddrBlock: critical
IPv4:
103.120.164.0/22
IPv6:
2403:5a40::/32
Signature Algorithm: sha256WithRSAEncryption
42:e5:1a:77:38:fb:d0:c1:92:1f:df:e3:59:4d:2c:76:19:25:
86:e4:a3:5b:4e:50:13:4b:1b:71:c6:75:56:4b:ad:ef:ae:08:
21:c4:33:f2:2d:0d:76:5c:3f:5d:0d:ea:5c:aa:da:15:7a:97:
51:f3:e5:0b:55:fc:da:8e:7a:64:e9:65:0b:15:09:76:a6:e5:
03:db:20:ff:6b:58:e8:d3:ef:2f:8e:85:b2:a7:d6:c7:e9:15:
ac:74:4d:70:5b:99:ff:c6:1f:08:d4:3e:f8:e4:3c:7a:d2:53:
19:8b:c1:4b:e4:d2:d9:a4:19:8d:4e:77:1b:c4:00:af:21:c0:
34:b4:f4:9a:28:10:6e:d3:a4:07:ab:a2:24:a9:74:c8:4a:73:
76:80:a8:8c:bb:6d:a8:94:ba:05:3c:19:df:6f:35:0b:38:32:
fd:11:25:bc:52:db:76:55:93:6c:9c:13:30:ef:ca:f0:a8:bc:
d4:ff:a9:c5:e6:ed:d1:e3:0f:4f:5f:24:10:a4:db:74:23:b4:
8f:3e:4f:92:c5:58:c3:2d:4e:30:e4:06:84:71:8d:6a:c8:5c:
68:f8:66:fc:e8:f3:d3:76:41:95:9a:43:c0:f2:91:ea:18:e8:
99:60:96:df:08:e2:e4:f0:0b:a2:9b:56:58:45:9c:33:47:bb:
4e:33:6e:8a
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAgiVMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDgyMzE0MTA1OVoXDTI1MTAzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxM0JGMUUxMTAvBgNVBAUTKEIxNEIyRUU1QzVFRDczNkFCNzM2QjI1
NTM1ODY3NTlBRkNERUMzRTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCl8Ta/XWTYfO3ENlpbAoYE0iAy36DByj0fjm8WpzUJlhK76kAKTm4Ww5QrX6fk
TSK7QPN618kz0BgHfcIljKX6Bruk3+K8+l2e08Qg8JOCM4fvg44HbRRcFKJNpFjm
ExayOEA7KFMYOCDGAAuCZwVSNXkeTtGb1bQRrXLO1E8aa+cVBufYcMww1M6R4IZr
EZQ0MZyq0b+1lojRs3I4IU9nmP6b3OWhvT2G7tvc1m6QJJcw0woqm5KmEB9QVRO2
E3Nuo+6hcn49VxM6tejGWYBo4Z0C0oXhNzZK0Xem6NanJWNJTkXz4E3Dq93PVCn3
8JR8DaQ67ycjSzcW6ue9ky6lAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUsUsu5cXt
c2q3NrJVNYZ1mvzew+IwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTNCRjFFL0RCQjJCRjY2NkU2RjExRTlBQTAxN0MzM0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEzQkYxRS9EQkIyQkY2NjZFNkYxMUU5QUEwMTdDMzNDNEY5QUUwMi9zVXN1NWNY
dGMycTNOckpWTllaMW12emV3LUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAg2iMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZ3ikMA0EAgAC
MAcDBQAkA1pAMA0GCSqGSIb3DQEBCwUAA4IBAQBC5Rp3OPvQwZIf3+NZTSx2GSWG
5KNbTlATSxtxxnVWS63vrgghxDPyLQ12XD9dDepcqtoVepdR8+ULVfzajnpk6WUL
FQl2puUD2yD/a1jo0+8vjoWyp9bH6RWsdE1wW5n/xh8I1D745Dx60lMZi8FL5NLZ
pBmNTncbxACvIcA0tPSaKBBu06QHq6IkqXTISnN2gKiMu22olLoFPBnfbzULODL9
ESW8Utt2VZNsnBMw78rwqLzU/6nF5u3R4w9PXyQQpNt0I7SPPk+SxVjDLU4w5AaE
cY1qyFxo+Gb86PPTdkGVmkPA8pHqGOiZYJbfCOLk8Auim1ZYRZwzR7tOM26K
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:15:37 2025 by rpki-client