Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer
File: 3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer (raw, json)
Hash identifier: UtRayGn9tlcKSsYm8k+sANQ/LzZR2V6u4v09bB0ghg8=
Subject key identifier: DC:B8:39:31:9F:D5:2E:AD:9F:CB:97:78:29:84:FD:1F:D4:49:2C:17
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0222CC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 15 Dec 2024 16:14:49 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 150372
IP: 103.19.122.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 14 Apr 2025 05:12:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139980 (0x222cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 15 16:14:49 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91B569E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:60:ba:db:3e:1f:fe:00:34:50:9d:6e:7d:93:
45:b2:2f:8b:57:7f:f5:18:fd:90:09:17:87:b3:01:
21:4f:91:26:e3:d1:99:6c:d9:a4:3c:51:3d:f3:af:
06:62:68:c9:1e:f0:8e:74:9a:ba:01:1f:54:38:bd:
f7:f5:34:3b:73:5f:3a:89:19:fd:0c:eb:77:14:e1:
48:87:84:fd:93:5f:c4:a5:bb:a9:f2:2d:f9:1e:34:
b6:dd:40:16:69:2b:b1:d9:d9:4e:10:d0:27:84:d5:
d0:ba:74:7c:15:86:07:9d:4b:36:e8:5b:6e:28:69:
4c:0b:9f:76:dd:95:77:f4:0e:59:e4:fa:20:af:c6:
5c:a8:28:7e:3e:cc:44:5f:ac:d9:31:45:da:53:f0:
63:52:88:3d:df:42:82:be:f1:76:60:8b:c6:0f:0f:
e4:06:2c:fc:1d:93:4d:8f:81:f5:1b:4b:6c:e5:b4:
1b:a7:a0:66:8d:8e:ee:90:17:b5:8e:e2:70:4e:f1:
7e:eb:00:b6:4d:b3:77:f9:5b:77:1d:6d:29:1d:7d:
92:e8:39:75:3e:38:e5:85:d6:65:d9:6e:5f:78:ba:
21:a5:04:d7:be:ad:bb:64:f7:67:2d:9d:0b:ed:34:
80:47:9a:72:1b:31:fb:fc:5c:42:5f:aa:ea:64:fd:
6e:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:B8:39:31:9F:D5:2E:AD:9F:CB:97:78:29:84:FD:1F:D4:49:2C:17
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150372
sbgp-ipAddrBlock: critical
IPv4:
103.19.122.0/23
Signature Algorithm: sha256WithRSAEncryption
3b:5c:09:3c:92:af:ab:e1:f9:26:51:f0:48:38:9c:05:9c:3b:
d3:20:53:99:50:4d:ef:c6:c7:c9:20:53:6f:d4:94:fb:56:b1:
05:b7:c6:ca:db:6d:45:ce:2d:20:1b:37:0e:ab:85:67:9a:2f:
df:07:c5:40:f5:7c:d9:16:d5:70:1a:24:1a:c0:19:ed:58:74:
88:49:c3:64:22:e3:a5:22:dd:5c:e1:1c:8b:fc:60:fe:7a:ec:
f2:d3:fa:ff:af:c0:d7:79:2c:a7:28:f6:8e:76:5d:a3:50:db:
38:8b:b2:a1:40:05:96:c1:a8:7b:42:66:d2:3c:86:5d:0a:ca:
c6:a7:63:1a:f8:f1:9d:b3:58:00:67:e7:71:37:ff:09:90:11:
56:ad:bf:17:d6:62:4d:88:06:26:cf:0d:75:d6:d0:c9:25:5b:
40:10:87:af:ec:cc:45:65:5f:86:05:8e:be:ae:0d:0c:d9:47:
ca:d9:52:f1:eb:51:bc:a8:ef:e1:fd:5d:c8:36:72:4e:c3:14:
94:f4:8b:96:9c:7d:93:b8:ad:42:00:94:23:62:26:d6:cb:f7:
c3:4d:8a:f8:b1:79:84:14:44:6c:86:91:dd:31:0a:20:f7:71:
93:44:cc:55:e8:46:c1:ac:78:0a:7c:9a:28:74:28:2f:ab:d2:
20:dc:f2:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 08:04:10 2025 by rpki-client