Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7N0mV0PpIRvOCq3LsCLObzO-CwY.cer
File: 7N0mV0PpIRvOCq3LsCLObzO-CwY.cer (raw, json)
Hash identifier: 4M+kQevxKFw4cZD6UxMp5G5mxjDMCVYGZPWVIjB1Fxc=
Subject key identifier: EC:DD:26:57:43:E9:21:1B:CE:0A:AD:CB:B0:22:CE:6F:33:BE:0B:06
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021F0C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/7N0mV0PpIRvOCq3LsCLObzO-CwY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 30 Nov 2024 21:20:02 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 58701
IP: 103.20.89.0/24
IP: 2406:e9c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139020 (0x21f0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 30 21:20:02 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91C1710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:de:34:dd:79:e0:40:da:e7:35:b8:8e:3d:62:
93:1a:93:bd:f2:eb:f8:e7:ab:19:15:92:dc:f7:5f:
72:52:9e:a2:7b:63:c5:46:94:c3:0b:dc:1c:15:f3:
ad:7d:11:c4:74:40:36:96:05:18:ea:cf:1e:fa:b5:
6c:ae:05:cb:8e:3f:51:f1:63:2c:96:2c:b3:54:88:
cb:d6:1b:02:6e:73:b1:48:6d:20:54:b8:32:fb:13:
0b:39:60:b3:42:c2:1c:ca:38:66:1e:3e:f5:d9:41:
19:c6:2a:00:71:17:46:62:0e:d2:ac:54:7a:41:24:
f1:49:e4:70:29:42:bb:8a:2e:9e:ce:16:44:e2:c7:
32:e9:f6:d4:8e:14:f9:61:b8:e5:d1:fa:b5:04:77:
1a:1b:b4:9d:17:4a:24:8f:66:15:32:9d:93:c6:bb:
51:af:94:29:d8:38:7a:21:e4:b3:b4:b5:60:b8:bd:
64:1d:3f:9f:d2:19:fb:0f:16:00:3e:96:0f:eb:03:
de:21:72:cc:fa:7b:87:c1:a4:8c:3d:88:b6:ec:60:
27:62:da:e2:7b:b7:5d:8c:c6:b2:3a:ae:f7:77:23:
7b:28:08:df:4d:7b:eb:a8:54:3e:e6:ca:2a:83:89:
1a:17:b8:92:ee:bf:be:0c:30:8b:c3:b3:93:cc:c4:
cc:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:DD:26:57:43:E9:21:1B:CE:0A:AD:CB:B0:22:CE:6F:33:BE:0B:06
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/7N0mV0PpIRvOCq3LsCLObzO-CwY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58701
sbgp-ipAddrBlock: critical
IPv4:
103.20.89.0/24
IPv6:
2406:e9c0::/32
Signature Algorithm: sha256WithRSAEncryption
99:34:6b:c7:27:ef:dd:da:40:13:99:b9:68:ee:c0:04:81:6c:
16:ed:54:e5:0b:d3:d2:3a:aa:91:8a:27:6b:1e:57:ce:ce:9e:
3d:c9:c7:ea:40:b7:f9:80:96:ae:2c:20:de:4d:cc:71:05:cf:
f4:68:6c:49:2e:07:cd:2f:58:2a:a7:c3:1b:ed:f8:3f:8a:44:
3f:d3:b7:9b:fa:6d:a1:92:e9:cd:a1:7d:64:ad:89:0a:61:ea:
6f:9c:46:a0:b0:64:5e:61:ab:6d:ca:2d:03:22:15:b5:b8:9a:
8f:9a:9b:e8:6b:20:02:f0:42:55:95:3e:59:f6:e5:49:b6:75:
a1:d7:57:cd:67:55:f7:97:96:51:16:4d:ed:ea:3b:7b:9e:ee:
e7:3b:9d:c2:ed:12:7b:8e:96:9f:c3:7b:79:75:f8:2c:84:b5:
54:85:78:5d:2d:c8:bf:40:51:3d:5f:26:eb:c4:70:1d:ab:0c:
77:ef:5c:2a:80:9e:c2:33:01:5e:b3:86:eb:06:8d:a8:1e:46:
ff:7b:fd:7d:df:dc:89:f2:77:44:60:b9:9b:27:e4:bf:45:f4:
ef:28:9b:73:6a:cf:38:09:d6:d5:4f:24:41:23:27:35:8a:1d:
a4:3e:ce:8e:77:03:5e:f6:ce:c2:09:a7:59:95:70:59:13:0f:
9d:2b:09:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:07:56 2025 by rpki-client