Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer
File: cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer (raw, json)
Hash identifier: mvBh1qUhUFd4cWvlaLTef3wBg6G2bpyiNwDW1ithFVo=
Subject key identifier: 70:E8:85:57:B0:C0:82:C9:B0:6E:CF:59:B8:F2:8A:77:03:A6:38:01
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 6251
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 23 Feb 2025 14:43:27 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: IP: 157.15.136.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 02:50:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25169 (0x6251)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 23 14:43:27 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A91764E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:65:4b:e7:66:93:a0:f0:72:54:6b:a2:6e:65:
2d:08:d5:f9:89:e9:3f:4c:51:9b:58:b3:32:68:e4:
34:a9:9c:4d:f3:b2:cf:d3:f3:20:5b:74:73:15:9a:
b9:e8:20:94:c4:13:b4:2f:3d:16:48:dd:37:ad:ed:
3e:f1:83:52:9d:42:63:3d:f1:bd:90:df:b7:83:b9:
4f:73:06:15:81:f2:da:c6:a5:00:1b:9b:2b:1c:3e:
e3:67:88:f1:68:5f:fb:a2:f1:80:49:cb:07:d6:a0:
ca:96:2d:61:8a:cf:3f:83:3a:27:c5:de:cb:ad:3b:
dd:80:1b:93:cc:d8:77:3a:f8:53:b9:81:93:52:91:
71:ce:73:2e:24:6f:71:32:47:1a:b1:56:dc:86:97:
fc:b4:59:8f:bd:95:c9:e0:56:8a:92:6f:42:e2:ac:
36:50:f0:23:b0:a5:70:ff:a6:ee:9e:d5:b9:81:1d:
7c:fb:dd:e6:f1:73:ef:bb:e7:0a:4d:9e:5b:3b:bd:
a9:c6:b3:6a:8c:8c:a4:21:75:87:5e:05:fe:1d:d0:
4f:51:d9:87:30:d4:cc:93:5d:16:83:02:cb:c9:75:
13:cb:51:7f:b7:b5:62:6b:69:51:b3:bb:9c:d3:3a:
8a:c4:27:34:57:3c:97:ac:d8:7a:1a:d4:0d:09:1e:
33:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:E8:85:57:B0:C0:82:C9:B0:6E:CF:59:B8:F2:8A:77:03:A6:38:01
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.15.136.0/23
Signature Algorithm: sha256WithRSAEncryption
a1:6f:52:39:ba:15:d3:b3:80:1c:f2:07:28:0a:d1:eb:d7:17:
24:60:3e:69:25:40:65:80:ce:b4:e7:0c:11:08:55:9e:11:85:
2d:8e:04:99:07:76:61:2c:ba:20:73:68:05:e7:3f:f8:4e:6a:
71:ec:50:3d:1e:f3:f4:79:f6:39:d9:a4:68:be:fc:73:76:93:
94:f4:f2:3b:1d:99:94:08:d6:b0:59:94:6d:13:63:33:50:60:
a5:17:92:fb:98:66:46:40:38:31:ad:c7:31:1b:d0:53:62:71:
9e:e5:7b:ca:c4:9f:3a:cf:16:3b:cb:66:44:28:e0:84:6d:37:
c3:d7:6a:56:0a:ee:08:8a:7d:1a:e4:cf:5f:3c:2c:d4:ca:82:
ef:3c:56:16:c0:e1:df:2b:47:43:79:92:92:02:d5:1c:68:70:
12:06:8c:f0:76:5e:01:f7:26:a3:be:22:2b:33:70:de:4d:d3:
a5:96:e9:b1:23:84:47:af:32:25:7a:e8:de:bd:3f:a5:b8:51:
1a:9d:11:11:27:4f:91:8b:f2:cf:c4:7d:e5:a6:ee:1b:c2:85:
5f:ae:de:98:44:81:8c:16:a7:29:b3:35:88:65:d1:68:17:fa:
a3:4b:32:ff:be:a8:78:e6:67:ca:2d:04:dd:0a:8b:ca:bf:00:
5b:4b:5c:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:45:43 2025 by rpki-client