Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2udQjRHkcijaH-ADJZe70p91iQw.cer
File: 2udQjRHkcijaH-ADJZe70p91iQw.cer (raw, json)
Hash identifier: SRuTYnVOb7zslFLSw8LpL4SzKcSXa85WHuQO4DEs09E=
Subject key identifier: DA:E7:50:8D:11:E4:72:28:DA:1F:E0:03:25:97:BB:D2:9F:75:89:0C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02279F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/2udQjRHkcijaH-ADJZe70p91iQw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 06 Jan 2025 17:34:27 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 17804
AS: 132861
IP: 103.26.103.0/24
IP: 103.63.188.0/24
IP: 103.81.180.0/24
IP: 103.82.56.0/22
IP: 103.228.101.0/24
IP: 2001:df3:e000::/48
IP: 2400:81c0::/32
IP: 2402:8d80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141215 (0x2279f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 6 17:34:27 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A91912DD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:70:fb:de:97:6e:c5:2a:b5:d5:b6:2e:92:cd:
7a:77:76:f8:dd:d3:2c:1e:4d:94:5e:c2:33:99:ed:
98:5f:13:1b:44:65:a8:03:71:e2:45:00:b1:ba:66:
a5:55:f5:19:e9:a2:02:6c:46:98:87:58:1a:0d:72:
db:e0:a8:56:6b:b3:53:71:85:40:6d:d9:e0:6e:26:
be:b2:79:4f:ae:e9:8e:31:9b:38:b5:4a:a1:f8:63:
9a:c4:21:78:7a:6e:b8:84:c9:7b:41:c1:a9:cc:5b:
d9:74:91:11:77:22:1c:4c:1a:22:ea:98:29:ea:61:
11:40:dc:bd:f5:fa:ee:4b:6b:0d:1a:19:50:92:73:
9f:d5:5f:6c:13:0c:75:1e:2d:80:84:dc:10:da:2b:
5e:70:f1:91:e7:3a:b3:5b:ad:ed:56:c2:8a:e7:0e:
b0:d7:3e:e6:c9:5c:22:7d:c8:a9:df:c3:20:75:ea:
a8:a8:ba:40:98:e4:e8:b4:81:61:3f:11:ce:88:1f:
f1:33:16:09:dd:30:d2:ce:fb:8d:e5:b0:9e:23:3c:
ff:dd:03:32:76:c2:a0:22:6f:83:ae:34:e6:ce:f7:
7c:e1:74:38:e3:1b:c6:2b:40:be:8e:37:c9:66:39:
92:68:4e:48:15:3a:c4:9d:aa:25:dc:0b:06:1c:fc:
c8:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:E7:50:8D:11:E4:72:28:DA:1F:E0:03:25:97:BB:D2:9F:75:89:0C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/2udQjRHkcijaH-ADJZe70p91iQw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17804
132861
sbgp-ipAddrBlock: critical
IPv4:
103.26.103.0/24
103.63.188.0/24
103.81.180.0/24
103.82.56.0/22
103.228.101.0/24
IPv6:
2001:df3:e000::/48
2400:81c0::/32
2402:8d80::/32
Signature Algorithm: sha256WithRSAEncryption
c7:9c:eb:f5:38:a4:0e:18:6f:df:b1:4b:6c:ea:ac:e8:95:3a:
4b:2a:e5:d1:d6:a5:53:d7:67:73:95:a8:62:e9:96:a1:7b:14:
5a:f2:a9:6b:5f:7a:2f:ae:b6:a3:4c:b7:d5:14:0c:90:43:d3:
eb:08:25:ab:9d:07:3b:7b:f3:73:68:7f:51:4e:bf:6b:d8:ac:
cc:a3:5a:65:8d:d2:62:75:e2:5d:33:db:d9:73:74:64:c6:6b:
6d:88:6c:e9:2a:14:12:cf:e4:31:a9:33:36:ff:22:70:30:60:
c0:b1:78:d2:56:b6:2b:87:4f:58:a8:72:0a:5a:37:47:75:01:
72:e5:be:be:a8:d9:04:94:93:77:0b:bf:38:ca:d3:27:68:b6:
57:cc:d2:53:bf:66:70:8f:d1:ce:e5:73:e7:d2:ec:ca:04:62:
f7:28:08:76:51:b9:34:f3:c0:40:fd:ac:e8:f2:59:e1:73:2f:
40:c0:7e:9b:ac:11:c4:81:e5:7c:94:0d:e8:2b:b2:10:8f:61:
56:5d:84:e6:92:f9:4a:84:3c:7e:20:7c:59:17:0d:c6:1c:43:
fa:55:5a:10:ac:79:12:c1:34:ab:08:85:64:e1:2a:93:15:5e:
b0:e2:45:af:10:2c:f2:ba:11:7f:1e:2b:70:35:06:19:c6:23:
b3:96:29:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:07:11 2025 by rpki-client