Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5G4YncjpEKGrvi42TdCBd1zkhGA.cer
File: 5G4YncjpEKGrvi42TdCBd1zkhGA.cer (raw, json)
Hash identifier: OTOvGeYaIWSE2xAdalwVPkcPCGPDVJTmWtWLYQ3ST/Q=
Subject key identifier: E4:6E:18:9D:C8:E9:10:A1:AB:BE:2E:36:4D:D0:81:77:5C:E4:84:60
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02353E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9135B44/AD0D61F83A6C11ED9941F55CC4F9AE02/5G4YncjpEKGrvi42TdCBd1zkhGA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9135B44/AD0D61F83A6C11ED9941F55CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 04 Mar 2025 14:23:59 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 141686
IP: 103.161.250.0/23
IP: 2001:df5:d980::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 12 Apr 2025 00:59:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144702 (0x2353e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 4 14:23:59 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A9135B44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:30:ad:b1:6a:3f:39:28:2f:57:6c:06:09:9e:
fe:ed:22:26:9c:8c:22:4b:29:4f:c7:6b:23:00:ab:
6f:7f:2d:7b:70:0c:a1:a0:75:57:9d:97:ca:be:33:
d6:8e:67:1a:4c:87:4b:1c:60:c4:3a:b7:8a:31:cd:
1d:b2:1b:d0:19:d9:69:76:1e:dc:46:bc:d6:d1:55:
4d:6d:13:97:b8:6b:3b:06:0b:dc:58:77:3f:89:7e:
f1:2a:72:e8:c9:2d:73:2e:11:00:88:ae:a7:2e:b3:
35:08:ba:97:65:87:e8:70:b8:3f:55:b9:55:f5:fe:
a8:0a:16:82:7b:58:15:6e:4a:47:a7:f1:fe:8d:f2:
a8:e0:c8:f7:a4:21:a3:ff:db:2a:5d:4b:38:8b:67:
21:87:3d:71:a7:0b:04:f7:8b:20:99:d9:ea:28:4c:
5d:e0:bf:0c:59:f7:68:5c:42:b0:c7:15:41:2f:56:
69:05:a3:42:31:d7:17:5c:77:eb:5b:66:f8:01:18:
d3:47:a9:79:0c:dc:af:26:ef:cf:4d:e8:70:95:77:
1f:cd:ae:04:aa:f0:93:31:e9:68:de:d3:72:c2:14:
4e:af:e3:2d:84:cd:8d:3c:57:9a:e6:8c:2e:ce:12:
f1:88:0a:42:c8:a5:e0:63:16:56:59:e3:55:09:6c:
70:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:6E:18:9D:C8:E9:10:A1:AB:BE:2E:36:4D:D0:81:77:5C:E4:84:60
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9135B44/AD0D61F83A6C11ED9941F55CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9135B44/AD0D61F83A6C11ED9941F55CC4F9AE02/5G4YncjpEKGrvi42TdCBd1zkhGA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141686
sbgp-ipAddrBlock: critical
IPv4:
103.161.250.0/23
IPv6:
2001:df5:d980::/48
Signature Algorithm: sha256WithRSAEncryption
23:19:bb:0b:3e:e9:c7:fe:b5:9a:95:d7:08:cb:05:35:5b:37:
84:38:68:c9:af:2d:bf:b7:55:26:22:06:49:9c:50:64:07:5f:
9c:04:85:9b:eb:68:73:f5:48:b5:77:0c:79:fe:bb:29:8b:6f:
66:70:f3:74:fe:e9:e4:c5:e5:2f:ca:e3:c2:8e:5d:d8:37:56:
e9:2e:e2:35:89:24:67:67:55:61:7c:6e:52:54:53:84:0e:b7:
8d:74:ef:76:4e:92:8b:35:4c:38:30:ed:97:f8:a7:f7:94:50:
ff:23:76:7d:62:3d:22:5f:35:bf:26:c8:1c:c3:5a:ba:72:1c:
52:60:43:15:11:8a:8f:ba:e1:7d:c5:2b:f4:88:3b:60:98:84:
98:d7:f5:e6:43:86:8d:3b:3d:1f:d8:70:9c:6e:f4:6b:5c:38:
b6:cb:42:49:8f:1d:f3:82:8d:5d:ea:58:9f:54:c4:c9:ed:20:
ab:27:1f:f2:90:23:a8:00:f8:d3:68:b0:3e:91:0d:08:83:82:
6f:39:4f:49:71:4a:27:fd:d8:19:84:8a:36:6a:0d:4d:64:2f:
1e:0d:79:78:af:15:5e:f1:4e:4f:11:8f:ea:25:49:13:07:05:
17:44:d2:29:6d:95:1c:3a:43:c0:2c:94:02:f3:27:a1:81:74:
b8:b4:85:bb
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 5 03:57:19 2025 by rpki-client