Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer
File: RoxqeSq7PkX-7iIo0o54AxNytFU.cer (raw, json)
Hash identifier: D59AIaoeRX2zp0fp5Qk7huKzzhEUOUR0Y3boVSv5aLY=
Subject key identifier: 46:8C:6A:79:2A:BB:3E:45:FE:EE:22:28:D2:8E:78:03:13:72:B4:55
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 6028
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 02 Jan 2025 14:15:14 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 161.152.0.0/16
IP: 192.112.215.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 02:50:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24616 (0x6028)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 2 14:15:14 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A912DD15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:e2:b5:d3:02:07:2f:71:52:c0:2a:9c:76:4f:
4b:16:37:45:48:cb:fe:e5:d9:b6:fb:33:f3:1a:5c:
28:a4:2d:f2:24:6c:5a:bb:eb:97:60:37:6b:07:64:
76:cf:1c:26:dd:51:ce:9d:00:9d:8f:8b:59:28:c0:
ea:b8:61:4a:2f:0a:60:04:b3:1e:82:52:9a:36:43:
0f:79:fd:31:cf:4f:64:bd:40:f0:30:9a:04:03:13:
de:41:8e:ee:3b:96:1e:ef:b6:ab:a7:5f:7c:fa:98:
7a:da:df:bb:5b:d0:16:9c:e2:10:4d:45:9d:6e:3b:
d8:9f:a6:4a:04:e6:c5:fc:53:10:45:ef:f6:c4:9f:
21:77:9f:83:bf:b6:8b:8e:82:88:1e:b1:d5:bb:40:
67:18:e2:1a:c9:06:9a:5e:be:ce:94:70:be:00:05:
81:15:d4:69:13:da:76:d6:cb:c0:07:ef:0a:bc:99:
8b:e9:07:1c:e4:0d:db:69:94:b7:e0:de:48:8a:0c:
f9:84:f0:23:2a:3e:b2:14:88:1c:0a:ba:f5:2d:4f:
8f:3a:40:12:ab:33:2b:1b:1b:02:3f:00:9f:ca:f1:
36:e4:27:96:03:ef:3f:db:6e:5d:e2:05:46:8f:4a:
fe:32:59:dc:ff:0b:34:2a:b6:7d:a8:7d:ac:1e:cc:
38:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:8C:6A:79:2A:BB:3E:45:FE:EE:22:28:D2:8E:78:03:13:72:B4:55
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.152.0.0/16
192.112.215.0/24
Signature Algorithm: sha256WithRSAEncryption
86:f8:2f:8e:d7:d8:f7:98:6f:e5:da:90:48:80:ad:c6:e5:84:
4a:c9:73:49:d0:82:da:4e:2c:ca:2a:51:68:93:8c:ee:e6:e9:
25:5e:6b:0a:38:09:e6:89:8b:65:c7:40:35:53:0c:4b:cd:54:
ea:5d:12:e5:31:a0:b7:62:14:80:ce:0a:36:f4:70:dd:cc:27:
98:a7:5b:b6:62:90:e5:59:e3:1e:d4:f3:11:f3:4f:af:45:77:
65:17:0d:df:9b:be:b1:cb:e9:24:a4:fc:8b:76:61:9e:3e:8c:
51:49:c9:68:eb:f2:a6:f9:23:dc:b2:fa:c0:f6:2b:c1:37:a3:
aa:d3:17:a5:cd:91:b9:06:9a:e7:a2:5b:cc:09:76:59:2c:85:
b1:be:d4:c8:75:5c:d0:a0:23:c2:66:7b:7f:c8:82:ef:5a:73:
a4:9e:9e:b5:be:30:84:7c:02:44:4a:af:f9:d4:4f:cd:c5:1a:
ba:61:33:fc:15:b2:97:f7:5f:a5:52:bc:5a:1d:a7:4f:62:b0:
79:06:f7:71:de:2b:e5:8b:79:29:f6:bd:f4:a5:aa:7c:24:fa:
0c:04:60:b0:66:79:fb:f1:60:5e:e0:78:9f:fc:83:5c:4c:9f:
88:e0:22:e0:dc:56:90:4f:3d:54:06:54:87:ba:db:ca:08:63:
e6:0d:df:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:39:37 2025 by rpki-client