Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer
File: 1lqglKUeKDl1O1khC2zyxUkVwB4.cer (raw, json)
Hash identifier: 38M42DA0GD7Xe1PPdtSgeY/XuVPr795kNp7O8FXmt9U=
Subject key identifier: D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02454F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 09 May 2025 15:36:21 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 134105
IP: 103.52.228.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 20 May 2025 08:51:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148815 (0x2454f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 9 15:36:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A915C1AA, serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d8:48:7e:0d:72:e2:3d:7f:55:76:51:9d:fe:
77:b3:5d:87:c1:d2:ab:25:bd:e1:f4:09:a1:ef:e2:
22:e9:8a:b7:41:c8:8b:d3:93:4f:d0:cc:f0:e3:1a:
65:b2:7a:8b:da:91:75:d1:73:e0:40:46:4d:9f:5e:
0b:90:80:69:b3:97:c5:db:21:80:7f:72:cf:8d:3c:
7e:4d:b7:34:2a:58:d7:b5:51:10:35:fe:c9:f6:d4:
ce:8a:83:c7:c9:69:d3:87:56:8c:3a:a0:11:34:84:
1e:97:cb:70:60:51:2b:c8:ca:76:8f:ba:6f:0c:d4:
c3:dd:33:74:e5:a7:62:0c:07:2c:a5:61:51:c1:18:
c5:a1:0d:5c:df:8e:25:f2:79:fa:25:79:cd:c6:48:
37:7a:68:08:82:ef:10:02:ea:b2:f2:92:57:3a:c6:
73:a0:47:55:58:cd:a8:8a:58:92:0a:fd:2a:1e:70:
aa:be:84:bf:59:c8:66:7b:57:ea:b7:f1:d1:38:d8:
19:34:6a:e5:22:7b:c0:e6:6b:83:64:28:ba:a0:4a:
c2:93:77:c6:0d:49:6e:25:09:cc:b7:7c:01:17:08:
15:77:76:0a:6c:76:76:70:be:ea:a7:50:43:16:40:
d8:fd:a4:36:c1:d5:d3:14:1e:83:58:a5:4e:b7:a3:
69:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134105
sbgp-ipAddrBlock: critical
IPv4:
103.52.228.0/22
Signature Algorithm: sha256WithRSAEncryption
0f:62:11:47:c3:dc:96:4a:6c:e4:b6:bf:5e:2c:a5:9b:1c:0c:
be:a8:da:7d:de:9b:31:d1:28:a3:58:d7:64:d2:8e:3f:9c:81:
40:8c:7c:5a:43:af:2c:4c:42:9d:12:2f:fa:2a:17:da:9f:65:
0a:82:29:0f:51:72:b7:63:80:7f:78:6d:e0:c6:73:74:41:fb:
da:b1:46:38:14:61:5e:f9:07:63:4a:a6:90:c4:91:00:32:b2:
40:64:f8:eb:52:a8:77:92:1c:05:81:d7:b2:6e:a5:a9:e8:85:
ab:44:64:f7:e4:48:12:ef:cf:bd:3d:cd:64:fe:e8:06:0c:70:
37:d4:ac:f8:84:81:67:7d:48:c0:59:29:55:a1:81:35:ce:92:
21:a1:85:a6:42:f2:c1:a6:55:1b:e9:8b:9d:de:23:9f:b8:ad:
83:1b:cb:f3:24:ed:e7:89:92:68:9d:97:fa:8d:67:ef:d2:18:
cd:6b:cc:90:cd:a5:d1:4c:eb:31:34:41:ff:90:4f:ab:24:57:
d1:4e:6d:4f:af:19:df:a0:db:26:b2:a2:ba:f5:17:da:63:5d:
65:6e:38:63:5a:ea:5a:10:45:0a:bb:3a:ee:76:e4:7b:ca:cc:
5a:62:82:ef:21:19:b6:d9:8a:93:cd:9b:d1:54:93:db:08:3c:
ec:85:54:26
-----BEGIN CERTIFICATE-----
MIIGGjCCBQKgAwIBAgIDAkVPMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI1MDUwOTE1MzYyMVoXDTI2MDcwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNUMxQUExMTAvBgNVBAUTKEQ2NUFBMDk0QTUxRTI4Mzk3NTNCNTky
MTBCNkNGMkM1NDkxNUMwMUUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDG2Eh+DXLiPX9VdlGd/nezXYfB0qslveH0CaHv4iLpirdByIvTk0/QzPDjGmWy
eovakXXRc+BARk2fXguQgGmzl8XbIYB/cs+NPH5NtzQqWNe1URA1/sn21M6Kg8fJ
adOHVow6oBE0hB6Xy3BgUSvIynaPum8M1MPdM3Tlp2IMByylYVHBGMWhDVzfjiXy
efolec3GSDd6aAiC7xAC6rLyklc6xnOgR1VYzaiKWJIK/SoecKq+hL9ZyGZ7V+q3
8dE42Bk0auUie8Dma4NkKLqgSsKTd8YNSW4lCcy3fAEXCBV3dgpsdnZwvuqnUEMW
QNj9pDbB1dMUHoNYpU63o2nHAgMBAAGjggMPMIIDCzAdBgNVHQ4EFgQU1lqglKUe
KDl1O1khC2zyxUkVwB4wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTVDMUFBLzZDOUQyNjMwN0YyMDExRUFCNTdENTczMkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1QzFBQS82QzlEMjYzMDdGMjAxMUVBQjU3RDU3MzJDNEY5QUUwMi8xbHFnbEtV
ZUtEbDFPMWtoQzJ6eXhVa1Z3QjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAgvZMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZzTkMA0GCSqG
SIb3DQEBCwUAA4IBAQAPYhFHw9yWSmzktr9eLKWbHAy+qNp93psx0SijWNdk0o4/
nIFAjHxaQ68sTEKdEi/6Khfan2UKgikPUXK3Y4B/eG3gxnN0QfvasUY4FGFe+Qdj
SqaQxJEAMrJAZPjrUqh3khwFgdeybqWp6IWrRGT35EgS78+9Pc1k/ugGDHA31Kz4
hIFnfUjAWSlVoYE1zpIhoYWmQvLBplUb6Yud3iOfuK2DG8vzJO3niZJonZf6jWfv
0hjNa8yQzaXRTOsxNEH/kE+rJFfRTm1PrxnfoNsmsqK69RfaY11lbjhjWupaEEUK
uzruduR7ysxaYoLvIRm22YqTzZvRVJPbCDzshVQm
-----END CERTIFICATE-----
Generated at Tue May 13 12:45:41 2025 by rpki-client