Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zcGHpkK01-xQ3K5ZoAZvFI1RCAE.cer
File: zcGHpkK01-xQ3K5ZoAZvFI1RCAE.cer (raw, json)
Hash identifier: AfGEaEIHjm6Q1qbd5aTFmtYU+L2QZA2N0CY7m6smAeQ=
Subject key identifier: CD:C1:87:A6:42:B4:D7:EC:50:DC:AE:59:A0:06:6F:14:8D:51:08:01
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020544
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912672E/AF466574337211ED8EEAD61EC4F9AE02/zcGHpkK01-xQ3K5ZoAZvFI1RCAE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912672E/AF466574337211ED8EEAD61EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 06 Aug 2024 13:20:03 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 150306
IP: 103.234.118.0/23
IP: 2001:df1:42c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132420 (0x20544)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Aug 6 13:20:03 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A912672E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:57:fa:b8:45:58:e6:d8:e7:64:3e:41:eb:72:
54:7b:c4:ba:0d:74:fa:60:e3:b8:cc:c6:17:ea:b3:
3b:a5:4d:bc:1d:a4:ce:f2:ba:95:92:33:a1:bc:44:
62:2e:6a:22:77:57:46:ef:55:48:e2:94:be:d8:67:
68:2f:d0:dd:68:94:32:0b:e2:b3:94:9e:5f:25:49:
98:df:8f:be:0f:ad:ed:55:70:e0:2c:a5:22:98:21:
ba:d6:2a:70:97:35:60:5e:d6:f7:ce:5b:2c:9e:ed:
6e:be:d5:c1:d0:df:93:f4:ee:75:fc:9c:4c:b1:65:
b5:eb:25:f2:fa:47:c9:00:7a:dd:95:09:d4:fe:b6:
45:08:e4:b5:9e:10:ee:8f:87:e2:18:fd:d1:43:0d:
63:49:df:77:cb:1b:b8:3b:b3:77:fa:19:97:86:68:
3b:c5:90:aa:76:15:58:be:1e:3b:23:f0:7b:30:ac:
5e:e5:fe:c6:db:a0:6c:d8:d5:46:aa:c3:88:3c:e0:
09:ad:36:fd:df:f7:66:98:47:b4:ee:be:6a:a7:41:
ff:7c:4e:3d:93:d9:2c:21:9b:12:65:c2:28:19:07:
0c:29:26:7d:85:e0:da:9c:2d:dd:ef:65:2f:fa:70:
15:78:45:28:a1:a7:00:09:f8:dd:0b:7b:2c:f3:3a:
77:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:C1:87:A6:42:B4:D7:EC:50:DC:AE:59:A0:06:6F:14:8D:51:08:01
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912672E/AF466574337211ED8EEAD61EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912672E/AF466574337211ED8EEAD61EC4F9AE02/zcGHpkK01-xQ3K5ZoAZvFI1RCAE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150306
sbgp-ipAddrBlock: critical
IPv4:
103.234.118.0/23
IPv6:
2001:df1:42c0::/48
Signature Algorithm: sha256WithRSAEncryption
c4:cd:61:09:9a:02:1c:88:d9:c2:a0:99:3f:6b:04:c5:42:23:
d6:c9:57:3f:bf:ea:83:2f:58:fd:dd:63:61:9c:b6:d5:b1:00:
5f:30:62:22:e5:3e:f4:82:a1:11:63:cc:12:22:0d:03:84:02:
be:b3:01:36:47:66:96:7d:f4:88:9e:4f:5f:f5:97:6a:56:bc:
2d:6c:41:4d:02:6f:f4:6c:e1:06:0e:7a:24:f1:6e:01:b3:32:
be:64:ca:80:f2:1f:83:61:a8:e5:47:8a:ea:ec:34:71:17:aa:
a6:97:93:ca:74:f4:ad:d1:59:36:e7:57:2a:ac:9d:d6:67:01:
94:b9:07:ae:56:30:43:ae:87:ec:1a:00:74:9d:3d:d5:7e:aa:
7e:6c:57:87:2e:f5:5b:bf:97:42:21:14:84:cc:81:9a:e8:47:
38:be:f4:85:2b:e6:82:c1:6c:d2:b3:2c:35:37:47:11:3f:8a:
7e:d1:f8:cf:65:e3:f5:ef:b6:65:4d:e5:a9:c9:d9:c8:cf:a5:
aa:0e:0f:91:9d:06:cd:30:17:21:6c:fd:01:3b:5a:77:e3:d7:
36:2c:05:ab:85:b2:73:0c:e5:0b:96:61:cc:b4:d9:f1:8d:14:
70:16:5e:f2:73:bd:cf:f3:9d:1c:1d:92:98:cf:18:ac:30:93:
a9:1e:44:a6
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAgVEMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDgwNjEzMjAwM1oXDTI1MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMjY3MkUxMTAvBgNVBAUTKENEQzE4N0E2NDJCNEQ3RUM1MERDQUU1
OUEwMDY2RjE0OEQ1MTA4MDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDFV/q4RVjm2OdkPkHrclR7xLoNdPpg47jMxhfqszulTbwdpM7yupWSM6G8RGIu
aiJ3V0bvVUjilL7YZ2gv0N1olDIL4rOUnl8lSZjfj74Pre1VcOAspSKYIbrWKnCX
NWBe1vfOWyye7W6+1cHQ35P07nX8nEyxZbXrJfL6R8kAet2VCdT+tkUI5LWeEO6P
h+IY/dFDDWNJ33fLG7g7s3f6GZeGaDvFkKp2FVi+Hjsj8HswrF7l/sbboGzY1Uaq
w4g84AmtNv3f92aYR7TuvmqnQf98Tj2T2SwhmxJlwigZBwwpJn2F4NqcLd3vZS/6
cBV4RSihpwAJ+N0LeyzzOnebAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUzcGHpkK0
1+xQ3K5ZoAZvFI1RCAEwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTI2NzJFL0FGNDY2NTc0MzM3MjExRUQ4RUVBRDYxRUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEyNjcyRS9BRjQ2NjU3NDMzNzIxMUVEOEVFQUQ2MUVDNEY5QUUwMi96Y0dIcGtL
MDEteFEzSzVab0FadkZJMVJDQUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAksiMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZ+p2MA8EAgAC
MAkDBwAgAQ3xQsAwDQYJKoZIhvcNAQELBQADggEBAMTNYQmaAhyI2cKgmT9rBMVC
I9bJVz+/6oMvWP3dY2GcttWxAF8wYiLlPvSCoRFjzBIiDQOEAr6zATZHZpZ99Iie
T1/1l2pWvC1sQU0Cb/Rs4QYOeiTxbgGzMr5kyoDyH4NhqOVHiursNHEXqqaXk8p0
9K3RWTbnVyqsndZnAZS5B65WMEOuh+waAHSdPdV+qn5sV4cu9Vu/l0IhFITMgZro
Rzi+9IUr5oLBbNKzLDU3RxE/in7R+M9l4/XvtmVN5anJ2cjPpaoOD5GdBs0wFyFs
/QE7Wnfj1zYsBauFsnMM5QuWYcy02fGNFHAWXvJzvc/znRwdkpjPGKwwk6keRKY=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:25 2025 by rpki-client