Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer
File: uvWtoyyg00zzzPU6vfht5vjtkAU.cer (raw, json)
Hash identifier: OgNp0Wq8TSgnT5KwFbXW2L78jY5MxQOGIaYstu3hThM=
Subject key identifier: BA:F5:AD:A3:2C:A0:D3:4C:F3:CC:F5:3A:BD:F8:6D:E6:F8:ED:90:05
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023E9C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 11 Apr 2025 14:04:03 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 4763
AS: 4768
AS: 4830
AS: 7657
AS: 7714
AS: 9233
AS: 9327
AS: 9345
AS: 9427 -- 9429
AS: 9436
AS: 9445
AS: 9469 -- 9470
AS: 9495
AS: 9500
AS: 9511
AS: 9559
AS: 9561
AS: 9662
AS: 9887
AS: 9897
AS: 9901
AS: 17410
AS: 17646
AS: 17649
AS: 17664
AS: 17808
AS: 17902
AS: 18198
AS: 38748
AS: 45116
IP: 27.252.0.0/16
IP: 49.224.0.0/14
IP: 116.89.224.0/20
IP: 118.92.0.0/15
IP: 121.72.0.0/14
IP: 121.90.0.0/16
IP: 124.6.192.0/19
IP: 202.0.32.0/19
IP: 202.20.76.0/24
IP: 202.20.93.0/24
IP: 202.22.16.0 -- 202.22.30.255
IP: 202.27.69.0/24
IP: 202.27.92.0/22
IP: 202.27.100.0/22
IP: 202.36.72.0/24
IP: 202.37.56.0/24
IP: 202.37.60.0/22
IP: 202.37.136.0/24
IP: 202.49.180.0/23
IP: 202.73.192.0/20
IP: 202.78.128.0/19
IP: 203.79.64.0/18
IP: 203.96.144.0/20
IP: 203.96.192.0/19
IP: 203.97.0.0 -- 203.98.63.255
IP: 203.109.128.0/17
IP: 203.118.128.0/18
IP: 203.144.32.0/20
IP: 203.167.128.0/17
IP: 203.173.128.0/17
IP: 210.246.0.0/18
IP: 218.101.0.0/17
IP: 2001:4400::/30
IP: 2406:9a00::/31
IP: 2407:7000::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 02 May 2025 20:27:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147100 (0x23e9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 11 14:04:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A9146AD7, serialNumber=BAF5ADA32CA0D34CF3CCF53ABDF86DE6F8ED9005
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:65:95:63:ba:0b:c7:50:fd:dd:db:39:e1:0c:
5b:75:0c:96:0e:37:5a:6d:8c:5b:86:77:f3:00:6f:
4f:86:08:76:34:fd:5b:51:78:9b:63:29:1c:c0:de:
a3:8d:a1:0d:b3:f8:8e:a9:61:88:09:0b:86:de:cd:
02:c7:c2:da:c2:92:23:31:6b:1f:f4:aa:ef:bd:8a:
18:cc:1b:87:15:9f:ab:ac:60:2f:fe:a4:61:d6:04:
77:18:a7:f0:9d:9d:1d:7e:40:a1:cc:bb:ed:55:d5:
ba:85:2f:26:49:fc:3a:0c:2d:b3:11:da:e6:bd:2e:
4e:5c:d2:18:e1:ab:79:1f:93:d2:19:ae:c9:e3:02:
47:be:1d:18:20:3c:b2:09:6d:4e:91:a4:6c:9c:43:
f9:e1:2d:51:09:5f:8c:6e:46:5c:45:47:eb:17:00:
f5:b0:45:69:40:28:67:3c:9e:a4:31:88:25:bc:0d:
48:31:23:0a:fe:d2:18:3a:0e:a3:32:cd:a6:71:c4:
9e:d9:98:f9:33:82:c2:91:cd:45:75:42:f2:31:3c:
ed:68:1d:23:e9:64:77:86:9d:5d:30:0e:23:4a:cf:
5d:f5:a4:6a:ef:96:ef:19:b6:ba:6c:56:09:44:0d:
7c:97:e1:3c:39:02:55:32:1d:4b:0e:fc:8d:27:ae:
00:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:F5:AD:A3:2C:A0:D3:4C:F3:CC:F5:3A:BD:F8:6D:E6:F8:ED:90:05
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
4763
4768
4830
7657
7714
9233
9327
9345
9427-9429
9436
9445
9469-9470
9495
9500
9511
9559
9561
9662
9887
9897
9901
17410
17646
17649
17664
17808
17902
18198
38748
45116
sbgp-ipAddrBlock: critical
IPv4:
27.252.0.0/16
49.224.0.0/14
116.89.224.0/20
118.92.0.0/15
121.72.0.0/14
121.90.0.0/16
124.6.192.0/19
202.0.32.0/19
202.20.76.0/24
202.20.93.0/24
202.22.16.0-202.22.30.255
202.27.69.0/24
202.27.92.0/22
202.27.100.0/22
202.36.72.0/24
202.37.56.0/24
202.37.60.0/22
202.37.136.0/24
202.49.180.0/23
202.73.192.0/20
202.78.128.0/19
203.79.64.0/18
203.96.144.0/20
203.96.192.0/19
203.97.0.0-203.98.63.255
203.109.128.0/17
203.118.128.0/18
203.144.32.0/20
203.167.128.0/17
203.173.128.0/17
210.246.0.0/18
218.101.0.0/17
IPv6:
2001:4400::/30
2406:9a00::/31
2407:7000::/32
Signature Algorithm: sha256WithRSAEncryption
41:78:a5:e8:25:94:19:0d:08:e7:8c:dd:54:f3:9d:a7:d0:01:
b1:f7:84:8d:c1:c9:4f:36:37:45:8f:72:fb:a3:a6:d5:df:80:
63:53:56:4c:b6:46:09:15:bd:0c:a7:8a:18:45:ea:eb:e5:85:
c5:2d:ba:00:43:bb:ea:b3:34:0b:cb:15:40:1b:94:26:59:4f:
0f:4d:90:41:3f:7d:fe:52:46:99:2a:13:10:f6:83:fc:0e:02:
0c:f5:a8:04:3d:6a:8a:63:e2:8d:70:a5:9c:7a:d8:aa:1a:ff:
55:02:34:5f:c5:6e:b7:67:5a:39:8f:a7:05:c1:be:25:5f:c9:
ce:1e:c4:88:6a:3c:44:eb:64:9b:1f:2b:9e:30:24:82:2e:b5:
11:ab:eb:ae:72:9a:ff:a5:d5:99:74:19:07:b5:10:d9:bf:b1:
8c:20:c4:3e:cf:3b:32:50:ed:bf:31:2a:ae:d1:66:18:e2:0e:
4a:ee:35:59:5a:ee:81:58:71:89:24:46:07:9a:85:c4:fe:18:
10:dd:5e:84:17:fd:12:b5:7f:e9:c7:41:45:c4:57:53:97:7a:
99:c9:a7:98:71:dc:3f:ee:3e:df:2f:45:4e:a8:86:6a:79:a0:
af:03:6f:bb:7d:f0:98:7d:82:7e:7e:44:ab:33:70:48:ac:fd:
57:f5:cd:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 23:02:31 2025 by rpki-client