Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ex-xujsOyMpeXBOuvPxuuo0g6qc.cer
File: ex-xujsOyMpeXBOuvPxuuo0g6qc.cer (raw, json)
Hash identifier: pp9yYld9RVNToSx+DHiy8OQxzZf2YNjL4q7tibUuA1U=
Subject key identifier: 7B:1F:B1:BA:3B:0E:C8:CA:5E:5C:13:AE:BC:FC:6E:BA:8D:20:EA:A7
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 63A3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/ex-xujsOyMpeXBOuvPxuuo0g6qc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 01 Apr 2025 16:25:02 +0000
Certificate not after: Fri 01 Aug 2025 00:00:00 +0000
Subordinate resources: IP: 157.20.42.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 02:50:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25507 (0x63a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Apr 1 16:25:02 2025 GMT
Not After : Aug 1 00:00:00 2025 GMT
Subject: CN=A913B4BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:5a:6c:e5:f1:4d:39:50:c0:11:6b:1b:3e:bb:
a0:43:4b:3f:cc:2b:a7:f5:dc:04:8e:fa:ee:14:55:
9f:44:d8:6a:45:e9:dd:bd:05:6d:84:83:72:c0:83:
95:02:12:20:32:45:85:3f:7b:47:ce:28:ad:88:ec:
83:0f:3d:c0:8e:70:5b:cf:62:56:4f:24:bf:46:dd:
8a:51:2d:8e:52:68:fe:28:70:65:39:b4:97:ba:7f:
2e:91:b1:c3:ca:24:d5:33:89:5f:fc:2b:7a:a0:36:
97:9d:05:9a:89:f1:44:80:2b:b5:13:ca:11:57:48:
9b:e7:30:5b:40:26:9d:e8:e7:f9:2f:b8:54:83:07:
a3:79:b3:51:59:8f:6c:e8:f8:da:77:c1:14:33:4b:
c9:ad:c8:02:8b:26:d6:d7:e4:8f:b0:09:d5:80:c3:
9e:43:bc:bc:78:e8:fd:bb:7b:2a:3d:14:78:bc:b0:
56:65:33:b2:5d:7f:c3:e2:90:d2:7f:e4:51:3c:df:
f3:00:f6:a0:d5:f5:a4:2e:8a:1a:c3:52:01:eb:ea:
0d:77:2b:4f:91:6a:5a:11:53:c7:44:c7:8f:9d:55:
b6:f2:72:d9:92:c8:cd:c3:75:16:be:08:a6:a5:f9:
01:c5:5d:e3:5d:f8:2c:d2:6f:83:c1:5d:fc:ea:47:
52:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:1F:B1:BA:3B:0E:C8:CA:5E:5C:13:AE:BC:FC:6E:BA:8D:20:EA:A7
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913B4BE/6F2FD338CCF711EE9E89D67AC4F9AE02/ex-xujsOyMpeXBOuvPxuuo0g6qc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.20.42.0/23
Signature Algorithm: sha256WithRSAEncryption
15:32:97:04:9b:90:e4:4d:4d:7e:1b:4c:19:dd:d7:9c:7f:74:
63:fe:4f:fd:e5:6a:68:74:4a:3e:29:d3:28:fa:71:f8:bd:15:
ee:4f:df:f6:c1:91:cd:cc:00:c8:3b:fa:03:c8:a7:2c:83:a2:
7d:42:a1:41:39:00:92:40:32:6a:5d:80:69:66:cb:06:11:79:
55:28:4f:cf:7d:6d:b4:32:aa:4e:31:b6:5c:d6:20:21:ee:05:
a3:49:4d:b1:e1:7b:54:9d:36:27:cc:02:cf:89:98:b9:f1:f7:
e1:1e:1e:c5:61:48:cc:11:32:9f:55:be:5d:34:f7:74:12:f5:
17:97:dc:4b:5b:0d:af:8b:83:79:ca:20:c7:93:a6:62:cc:2b:
e2:1e:ea:76:8b:bb:88:60:89:95:bf:40:03:6b:ec:d9:fc:c8:
df:ab:5d:6c:1c:91:be:e6:a8:e1:b9:61:20:ff:43:cb:09:4d:
b8:8e:32:58:0a:6c:81:2c:74:51:1f:ed:a7:1c:4a:0a:37:d4:
bc:16:9e:e8:c6:6b:92:7e:54:f5:39:c7:8b:84:46:35:3a:e4:
53:49:f9:46:f6:89:85:10:f8:3d:e1:e9:9d:1d:96:98:f9:8a:
86:dd:65:a4:24:65:73:69:97:29:f0:75:9a:24:11:47:78:8b:
6f:26:3f:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:48:24 2025 by rpki-client