Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ZW8t7_jyGcqgoIcyTa8jsOSA2k.cer
File: 5ZW8t7_jyGcqgoIcyTa8jsOSA2k.cer (raw, json)
Hash identifier: LPXfn73REI78S3P5PcT6yof8C0XC9+GZgeE1H2QPD1Y=
Subject key identifier: E5:95:BC:B7:BF:E3:C8:67:2A:82:82:1C:C9:36:BC:8E:C3:92:03:69
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0221B4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9127B77/5898A56C1DA611E29785999D08B02CD2/5ZW8t7_jyGcqgoIcyTa8jsOSA2k.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9127B77/5898A56C1DA611E29785999D08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 10 Dec 2024 12:49:10 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 55761
AS: 132444
IP: 2405:e980::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139700 (0x221b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 10 12:49:10 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A9127B77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:d7:42:24:ce:ab:eb:d9:47:a1:83:bf:72:7f:
06:e2:4e:d0:6e:f5:b3:82:cd:ec:58:ae:33:22:39:
e5:56:8c:ad:46:78:bd:cf:5d:f8:e2:78:40:b1:b3:
bd:8a:1c:88:12:ae:c9:fc:60:f0:ef:e2:2f:e3:ad:
24:73:41:b6:78:6b:a5:84:5f:e1:d2:60:20:46:f8:
b1:e0:b9:fa:47:eb:58:89:95:13:55:48:2e:a4:97:
df:c0:79:92:29:7d:4d:8d:af:4e:a4:9a:8f:9e:6d:
50:97:35:cd:c9:04:88:32:93:78:a0:35:36:8c:61:
24:c7:b5:29:f6:9f:3b:d9:e8:93:17:5c:14:9a:fe:
16:2e:25:6d:e3:55:a2:8a:d1:1f:e4:2e:c3:95:aa:
12:43:7b:c0:ac:ea:38:a6:cf:5a:3d:10:14:f0:19:
5b:eb:ce:d0:c5:6b:d0:59:e9:60:0e:73:93:04:fd:
c0:11:e7:0d:1f:c5:49:38:ed:46:0a:be:8e:0e:f2:
0e:12:6e:df:17:41:b1:df:ed:43:38:cc:af:1c:f9:
5b:84:9c:a6:3f:cc:97:27:13:cc:02:13:da:33:23:
71:57:be:de:6a:31:3c:21:56:99:50:94:59:e3:9e:
19:0a:8d:5e:ae:1f:c3:e4:22:a8:ca:3d:5e:6a:0f:
a9:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:95:BC:B7:BF:E3:C8:67:2A:82:82:1C:C9:36:BC:8E:C3:92:03:69
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9127B77/5898A56C1DA611E29785999D08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9127B77/5898A56C1DA611E29785999D08B02CD2/5ZW8t7_jyGcqgoIcyTa8jsOSA2k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55761
132444
sbgp-ipAddrBlock: critical
IPv6:
2405:e980::/32
Signature Algorithm: sha256WithRSAEncryption
46:88:8b:72:62:16:49:48:1d:3f:e3:92:7f:3c:b5:19:94:c6:
39:7a:26:72:a4:d3:15:c1:67:51:18:90:66:1e:28:de:7b:84:
50:a9:d5:54:79:13:1a:8d:0d:a8:a7:21:74:bd:29:93:a5:05:
21:9a:c5:4a:8b:80:5b:86:58:5c:d0:ce:00:65:7d:f4:0d:71:
9a:ff:b4:cd:09:dc:b2:7a:db:59:50:be:b8:b7:c1:27:76:10:
56:cd:51:c6:85:ae:42:1b:2d:27:01:16:95:40:b2:15:28:8e:
c7:c3:f2:5a:db:41:4c:52:6e:95:63:f3:af:a8:9b:e1:8a:a0:
97:28:08:fc:2d:3b:2f:c9:d0:54:af:2d:78:eb:88:7e:28:04:
8c:3b:55:bd:b7:b2:5d:a3:90:ac:35:33:b8:10:f1:99:e1:f9:
a7:1d:0d:4f:c4:89:de:f6:32:6a:3b:dd:c9:1c:99:42:73:4a:
23:97:10:e5:57:c6:fd:b6:4b:c6:e7:e1:bc:6e:7e:db:56:30:
f8:25:70:8c:cd:ff:43:80:d5:86:78:89:ea:d0:e4:e4:8b:d3:
35:4b:6b:b7:09:8a:6d:9a:68:31:54:a2:59:e5:ac:20:8e:ba:
f9:b0:21:21:3b:59:34:2d:e6:b7:5c:55:87:bd:ce:eb:78:44:
19:40:70:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:06:02 2025 by rpki-client