Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v4hgssA3e7Xv7b461A8c8YnyrLI.cer
File: v4hgssA3e7Xv7b461A8c8YnyrLI.cer (raw, json)
Hash identifier: kva1nk33LzQXIrdvshVFdJ7GSuLnVNc6xdTwhoVtuQc=
Subject key identifier: BF:88:60:B2:C0:37:7B:B5:EF:ED:BE:3A:D4:0F:1C:F1:89:F2:AC:B2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0247FE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 22 May 2025 03:28:23 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 141011
IP: 103.17.19.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 06 Jun 2025 05:39:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149502 (0x247fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 22 03:28:23 2025 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A9157B74, serialNumber=BF8860B2C0377BB5EFEDBE3AD40F1CF189F2ACB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b2:77:ea:4a:e0:f2:bd:48:bb:ff:62:5a:cc:
ee:7e:af:b2:c2:30:af:87:bc:7e:0b:d3:d7:98:7a:
8d:c8:c9:29:cb:0c:8b:32:ad:76:48:01:3d:f5:a9:
d6:0d:d6:84:3a:90:8b:dd:d2:35:6c:01:9f:7d:cc:
8a:b2:26:7b:d0:7d:2e:a7:86:de:59:fe:e2:57:a1:
25:d7:0f:2c:71:0c:e9:65:69:47:91:5c:0b:9e:f1:
10:11:77:89:5a:84:7a:a2:df:40:4b:eb:a6:e5:1a:
7c:85:25:58:e3:c4:08:81:a5:ad:81:b2:8c:9b:15:
86:1b:f2:f0:69:45:2c:d7:bd:81:c3:2e:18:4f:64:
fd:28:46:f6:c7:a2:c9:4b:8b:97:6c:73:74:da:87:
a7:bb:20:fd:b6:fa:76:b4:d6:45:98:04:f1:e7:e6:
f7:6a:9b:8a:8f:68:38:14:a3:6a:ff:d9:bf:a7:b7:
11:26:ae:a7:9e:63:d1:4b:41:02:b1:1a:a1:bf:4d:
44:85:1f:48:0d:1b:9d:06:26:51:7f:de:a0:76:16:
f7:af:26:28:6b:f8:0f:d9:f8:4a:b3:e8:8e:e4:d5:
b1:23:ba:af:4b:e8:23:33:cd:e9:c4:fe:58:40:8c:
2d:c7:bb:a1:5f:1e:26:a4:f6:9e:a7:70:36:98:ae:
da:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:88:60:B2:C0:37:7B:B5:EF:ED:BE:3A:D4:0F:1C:F1:89:F2:AC:B2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9157B74/CE00425A36BC11F081D55F17C4F9AE02/v4hgssA3e7Xv7b461A8c8YnyrLI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141011
sbgp-ipAddrBlock: critical
IPv4:
103.17.19.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:48:9a:71:08:fa:b6:6e:c5:1b:eb:42:f2:e9:a2:69:15:eb:
ed:bf:c7:4c:7c:8b:70:80:26:44:04:a2:de:af:c3:49:80:3a:
53:80:8e:3d:7d:d6:12:0b:4f:2e:dc:8e:e4:75:c3:5b:4a:bd:
f9:f2:43:ba:bb:a1:1e:f6:c4:f4:13:68:ec:f2:dc:af:0f:e1:
81:c2:ec:aa:8d:d1:95:43:70:5d:d9:ae:dd:fe:3a:3e:45:c5:
eb:25:cb:d3:da:0c:d1:57:cc:9c:b9:66:c1:df:d3:23:1d:d6:
fc:38:d0:17:77:7c:80:c0:db:fe:53:0b:af:2f:e0:1c:72:06:
33:ce:1b:60:a2:8c:a4:dd:55:96:b2:4e:44:2b:e7:a2:ed:80:
11:57:8c:38:e6:84:c5:da:28:e0:bd:c1:b8:bc:f2:31:4d:e7:
5b:b8:79:46:6b:95:03:2c:2d:f8:c5:b4:16:fc:11:1c:98:b8:
d2:c3:36:32:6c:5b:45:42:f9:39:4f:bf:82:c3:28:33:f0:3b:
cb:c9:42:62:af:e8:9a:f9:78:7a:67:a3:58:e6:da:bd:ac:a5:
46:54:8a:3a:ab:22:36:c1:da:a9:da:0a:67:d1:14:08:de:43:
c0:76:15:2d:51:9e:46:9d:8b:d6:1c:c0:40:92:56:fc:f6:a3:
ca:c0:0f:eb
-----BEGIN CERTIFICATE-----
MIIGGjCCBQKgAwIBAgIDAkf+MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDUyMjAzMjgyM1oXDTI1MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNTdCNzQxMTAvBgNVBAUTKEJGODg2MEIyQzAzNzdCQjVFRkVEQkUz
QUQ0MEYxQ0YxODlGMkFDQjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC3snfqSuDyvUi7/2JazO5+r7LCMK+HvH4L09eYeo3IySnLDIsyrXZIAT31qdYN
1oQ6kIvd0jVsAZ99zIqyJnvQfS6nht5Z/uJXoSXXDyxxDOllaUeRXAue8RARd4la
hHqi30BL66blGnyFJVjjxAiBpa2BsoybFYYb8vBpRSzXvYHDLhhPZP0oRvbHoslL
i5dsc3Tah6e7IP22+na01kWYBPHn5vdqm4qPaDgUo2r/2b+ntxEmrqeeY9FLQQKx
GqG/TUSFH0gNG50GJlF/3qB2FvevJihr+A/Z+Eqz6I7k1bEjuq9L6CMzzenE/lhA
jC3Hu6FfHiak9p6ncDaYrtqHAgMBAAGjggMPMIIDCzAdBgNVHQ4EFgQUv4hgssA3
e7Xv7b461A8c8YnyrLIwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTU3Qjc0L0NFMDA0MjVBMzZCQzExRjA4MUQ1NUYxN0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1N0I3NC9DRTAwNDI1QTM2QkMxMUYwODFENTVGMTdDNEY5QUUwMi92NGhnc3NB
M2U3WHY3YjQ2MUE4YzhZbnlyTEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAibTMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxETMA0GCSqG
SIb3DQEBCwUAA4IBAQDBSJpxCPq2bsUb60Ly6aJpFevtv8dMfItwgCZEBKLer8NJ
gDpTgI49fdYSC08u3I7kdcNbSr358kO6u6Ee9sT0E2js8tyvD+GBwuyqjdGVQ3Bd
2a7d/jo+RcXrJcvT2gzRV8ycuWbB39MjHdb8ONAXd3yAwNv+UwuvL+AccgYzzhtg
ooyk3VWWsk5EK+ei7YARV4w45oTF2ijgvcG4vPIxTedbuHlGa5UDLC34xbQW/BEc
mLjSwzYybFtFQvk5T7+Cwygz8DvLyUJir+ia+Xh6Z6NY5tq9rKVGVIo6qyI2wdqp
2gpn0RQI3kPAdhUtUZ5GnYvWHMBAklb89qPKwA/r
-----END CERTIFICATE-----
Generated at Fri May 30 08:13:49 2025 by rpki-client