Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tXSEdav1kHeBiVHMH-bti9LzEhM.cer
File: tXSEdav1kHeBiVHMH-bti9LzEhM.cer (raw, json)
Hash identifier: mMFl+vDQfBL4fFb7fl+mQ8OS8CCxWFuppcDixkQeLdg=
Subject key identifier: B5:74:84:75:AB:F5:90:77:81:89:51:CC:1F:E6:ED:8B:D2:F3:12:13
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022B0C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/tXSEdav1kHeBiVHMH-bti9LzEhM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 23 Jan 2025 13:36:13 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 138587
IP: 103.133.252.0/22
IP: 2404:57c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142092 (0x22b0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 23 13:36:13 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A913DA50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c3:ca:ce:22:98:56:b2:ad:1a:8d:f6:3e:7f:
eb:94:ac:e3:e5:53:a3:b5:c1:bd:09:c3:d5:41:83:
03:db:33:c5:4a:27:f0:91:88:88:75:72:bf:ed:5d:
89:81:c7:1d:00:ae:af:f6:25:cc:00:1e:4f:1b:35:
53:5a:a4:95:e6:e1:3d:8a:4d:4d:51:5c:15:0f:7a:
c7:a8:28:d7:19:b4:12:b8:41:15:d4:bf:21:fd:65:
2f:81:7e:80:74:cb:4c:15:f9:5f:24:e3:1d:aa:f7:
a5:9c:eb:3c:5d:47:94:86:6f:53:69:9e:78:0e:2d:
de:07:76:f0:76:f0:da:cf:76:17:66:28:9a:b2:a0:
0e:30:3f:ff:bc:5b:e5:6d:48:d4:93:7a:49:45:53:
cc:d2:db:4f:aa:2b:5e:5b:ea:2c:f2:f9:7c:21:85:
6b:23:14:7f:9f:b1:f8:ea:6e:33:b4:32:50:e2:6e:
e9:6d:05:b0:6e:26:91:e1:b9:eb:db:cd:b6:b5:46:
a7:4b:17:e0:32:e1:c0:b0:2b:7f:c5:22:d6:fc:e9:
c2:a7:cc:11:c7:b2:4d:a9:69:79:86:12:40:ef:8a:
1f:25:dd:f9:2c:11:b2:fe:08:87:0e:26:67:0e:c8:
5a:d6:a2:8d:9e:b8:98:26:dd:9f:35:9f:76:2c:80:
10:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:74:84:75:AB:F5:90:77:81:89:51:CC:1F:E6:ED:8B:D2:F3:12:13
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/tXSEdav1kHeBiVHMH-bti9LzEhM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138587
sbgp-ipAddrBlock: critical
IPv4:
103.133.252.0/22
IPv6:
2404:57c0::/32
Signature Algorithm: sha256WithRSAEncryption
93:c0:eb:e6:22:67:cd:fa:d6:0f:a6:81:60:5a:e6:4f:b8:e3:
bc:26:92:c1:5c:0f:ae:7a:30:24:7e:2b:59:3a:45:5e:60:d6:
4f:ee:f7:84:e5:df:31:ca:41:22:0f:c8:89:1a:cd:e4:84:32:
21:20:3d:7c:0f:e6:f1:ad:21:e6:e6:90:bf:ff:fa:20:28:ee:
22:12:09:a7:99:57:4f:17:d5:25:80:c8:ad:3a:50:c4:c9:78:
1f:ae:34:55:c7:f3:e7:38:33:b4:91:8c:44:73:27:43:06:7a:
99:cb:2f:c5:2e:f5:c3:48:81:b0:73:0c:75:34:41:40:e8:b4:
1c:53:18:58:41:1c:e3:83:06:5b:0e:6e:8e:fa:08:f9:8f:27:
81:76:2b:94:88:57:7d:a6:7f:41:da:7c:cf:fb:cd:fb:73:4f:
b8:6d:cd:b4:d6:71:3c:8c:2c:a2:c3:43:1e:74:be:4e:e7:ee:
63:f2:95:e3:d2:ca:c9:63:1e:2b:2c:d1:d6:93:1c:9e:c9:19:
42:7f:33:3e:e1:5b:e3:8e:e9:80:72:0a:28:9b:38:f8:b7:05:
34:c9:83:d3:e5:14:b5:5f:17:d4:3d:80:74:4a:09:a8:63:ed:
3d:3d:14:9d:da:0b:e1:b2:21:bf:c4:a7:45:23:ca:5e:61:74:
be:37:96:ab
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAisMMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDEyMzEzMzYxM1oXDTI2MDMzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxM0RBNTAxMTAvBgNVBAUTKEI1NzQ4NDc1QUJGNTkwNzc4MTg5NTFD
QzFGRTZFRDhCRDJGMzEyMTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDFw8rOIphWsq0ajfY+f+uUrOPlU6O1wb0Jw9VBgwPbM8VKJ/CRiIh1cr/tXYmB
xx0Arq/2JcwAHk8bNVNapJXm4T2KTU1RXBUPeseoKNcZtBK4QRXUvyH9ZS+BfoB0
y0wV+V8k4x2q96Wc6zxdR5SGb1NpnngOLd4HdvB28NrPdhdmKJqyoA4wP/+8W+Vt
SNSTeklFU8zS20+qK15b6izy+XwhhWsjFH+fsfjqbjO0MlDibultBbBuJpHhuevb
zba1RqdLF+Ay4cCwK3/FItb86cKnzBHHsk2paXmGEkDvih8l3fksEbL+CIcOJmcO
yFrWoo2euJgm3Z81n3YsgBAzAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUtXSEdav1
kHeBiVHMH+bti9LzEhMwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTNEQTUwL0Q0OUJEMjEwRjQ5RjExRTk4QkZGRjgyQ0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEzREE1MC9ENDlCRDIxMEY0OUYxMUU5OEJGRkY4MkNDNEY5QUUwMi90WFNFZGF2
MWtIZUJpVkhNSC1idGk5THpFaE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAh1bMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZ4X8MA0EAgAC
MAcDBQAkBFfAMA0GCSqGSIb3DQEBCwUAA4IBAQCTwOvmImfN+tYPpoFgWuZPuOO8
JpLBXA+uejAkfitZOkVeYNZP7veE5d8xykEiD8iJGs3khDIhID18D+bxrSHm5pC/
//ogKO4iEgmnmVdPF9UlgMitOlDEyXgfrjRVx/PnODO0kYxEcydDBnqZyy/FLvXD
SIGwcwx1NEFA6LQcUxhYQRzjgwZbDm6O+gj5jyeBdiuUiFd9pn9B2nzP+837c0+4
bc201nE8jCyiw0MedL5O5+5j8pXj0srJYx4rLNHWkxyeyRlCfzM+4VvjjumAcgoo
mzj4twU0yYPT5RS1XxfUPYB0SgmoY+09PRSd2gvhsiG/xKdFI8peYXS+N5ar
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:36 2025 by rpki-client