Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0C2Q-5EqWWC75Wy051NRaiTG73s.cer
File: 0C2Q-5EqWWC75Wy051NRaiTG73s.cer (raw, json)
Hash identifier: M6Kqh9YldTYiDg+cDaPefX84Qf4YCTubp0rGNc/ZMIs=
Subject key identifier: D0:2D:90:FB:91:2A:59:60:BB:E5:6C:B4:E7:53:51:6A:24:C6:EF:7B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02339B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9148FE8/12F96FB24EFB11EA8D694D0DC4F9AE02/0C2Q-5EqWWC75Wy051NRaiTG73s.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9148FE8/12F96FB24EFB11EA8D694D0DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 27 Feb 2025 14:26:04 +0000
Certificate not after: Thu 28 May 2026 00:00:00 +0000
Subordinate resources: AS: 140091
IP: 103.5.120.0/23
IP: 103.148.104.0/24
IP: 103.153.202.0/24
IP: 2001:df2:ce80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 17 Apr 2025 14:26:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144283 (0x2339b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 27 14:26:04 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=A9148FE8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:7d:fa:f0:ec:b4:b7:6b:19:12:79:b4:9d:78:
69:b4:15:47:13:d1:1d:7d:22:85:a2:85:0d:6a:c3:
1c:8d:ac:07:34:51:56:96:71:b5:00:09:50:2c:4e:
46:77:e7:d6:cc:59:55:a8:e3:c9:d5:c8:02:1f:db:
b4:e8:55:ab:2d:f2:47:93:11:f1:6e:af:bc:f8:0d:
44:29:34:5a:bf:c0:c0:69:e4:5f:09:85:a8:48:2b:
aa:cd:59:b3:cf:2c:5c:70:02:d3:39:f5:37:87:9d:
24:41:2f:4e:45:30:8c:92:fa:8e:d8:11:0c:d5:8d:
ca:51:b3:59:67:1e:7b:02:f8:24:12:98:4d:ec:81:
90:39:eb:7a:e5:84:48:09:4d:29:2c:96:4f:b2:7e:
bc:cb:1d:f2:8a:60:3a:52:bd:fe:7a:ff:9f:54:90:
22:6d:31:c6:c8:ef:4f:38:cd:75:c4:f7:95:78:30:
0a:31:45:e2:37:48:99:e3:b8:ae:65:9c:30:e2:2e:
0c:b9:c9:32:f9:ec:2c:f9:23:3e:02:a3:3a:03:f6:
6a:fa:36:74:67:65:4f:a5:5f:7f:cd:a7:c6:bb:20:
33:c3:03:81:09:fd:58:0b:4f:01:e1:d8:28:6d:1a:
21:47:6f:dd:1a:42:98:61:20:f7:7b:0c:26:b9:7b:
9a:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:2D:90:FB:91:2A:59:60:BB:E5:6C:B4:E7:53:51:6A:24:C6:EF:7B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9148FE8/12F96FB24EFB11EA8D694D0DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9148FE8/12F96FB24EFB11EA8D694D0DC4F9AE02/0C2Q-5EqWWC75Wy051NRaiTG73s.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140091
sbgp-ipAddrBlock: critical
IPv4:
103.5.120.0/23
103.148.104.0/24
103.153.202.0/24
IPv6:
2001:df2:ce80::/48
Signature Algorithm: sha256WithRSAEncryption
14:1d:8d:3b:08:b4:33:0c:46:09:34:1a:86:a3:1a:83:4e:62:
ed:ff:c7:ff:3c:a3:f5:e7:2d:97:16:b4:f8:be:3c:a9:5c:78:
6b:7b:df:42:0f:20:e6:e4:d5:97:ba:02:83:cb:50:f4:18:b6:
9f:76:6f:71:43:4f:ba:b6:b5:79:f3:85:15:a7:13:25:3b:71:
a0:f9:f4:86:56:a1:0b:cb:70:a3:63:05:42:9c:46:2b:44:1c:
a7:59:ba:03:e0:b2:1b:bf:ac:f8:4c:7c:5a:4a:1e:fe:c2:37:
7e:5f:c5:77:a4:18:d0:f1:ec:49:28:aa:8e:1c:29:da:36:71:
e2:ca:13:fa:0d:c7:2d:d4:2f:9c:45:95:73:6a:b3:2b:c9:36:
97:a9:57:30:b3:6c:fb:af:c3:85:08:b7:3b:2e:c7:73:1b:49:
71:f7:12:61:b0:af:f0:a5:81:e0:68:ea:f0:73:99:47:cb:5d:
6c:eb:53:96:a0:73:d3:75:ee:ef:b9:b6:6e:85:3d:0a:e7:5b:
e8:12:08:a8:00:f5:6f:06:f7:fc:f5:18:77:15:a9:66:8c:45:
93:20:b4:4e:dd:eb:08:82:7a:c0:42:85:f6:2f:c2:bb:95:a0:
b5:cf:8b:a8:2d:f3:3a:ab:5c:81:49:00:c3:7d:e2:18:29:1b:
5e:31:2c:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 19:17:27 2025 by rpki-client