Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84XzeRdwIPCIv3TaLANG2HnCKh0.cer
File: 84XzeRdwIPCIv3TaLANG2HnCKh0.cer (raw, json)
Hash identifier: G7gunoh9hhOeH2FRJPmfwg5seSWqM10iLGtCNi6euvM=
Subject key identifier: F3:85:F3:79:17:70:20:F0:88:BF:74:DA:2C:03:46:D8:79:C2:2A:1D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021DE3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 27 Nov 2024 12:24:43 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 149005
IP: 103.176.14.0/24
IP: 2001:df0:8c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138723 (0x21de3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 27 12:24:43 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A9112AD5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:43:38:b4:95:10:a3:34:3a:34:22:43:53:cc:
13:c3:35:56:7a:78:60:f4:b0:d9:b3:17:c0:30:c7:
89:16:91:87:f7:a3:75:34:0d:6c:09:57:d9:c2:37:
b4:8a:af:4d:5c:3c:fb:04:05:90:81:c5:99:03:ec:
dd:32:46:9e:d6:25:8b:1a:67:f5:f7:b3:d1:c0:9a:
47:29:a8:67:9d:24:a4:ba:0a:87:bc:47:94:6d:cc:
3d:9a:50:45:f9:1a:9c:5a:25:83:25:9f:ce:b1:7c:
20:e3:44:09:86:6d:50:1d:6c:c1:a1:77:3c:6e:38:
a5:09:66:6f:a3:a8:c1:c3:38:7f:c2:05:ad:ac:1f:
47:66:36:d0:11:5a:4a:d7:fe:1b:e3:76:d1:2b:81:
28:33:56:9a:95:46:6a:56:0a:ce:a0:fa:92:96:43:
30:d6:93:c5:93:2b:81:4c:b0:47:39:6a:9f:09:1c:
b0:4a:aa:34:b8:10:57:9d:3c:35:e2:2b:ec:82:45:
d3:48:f2:53:60:39:bb:4a:f3:4d:a5:0e:a4:f9:4b:
b7:31:41:9c:90:ae:fe:6d:36:21:62:4d:c0:54:b8:
1a:50:26:8f:43:f4:19:f1:60:8e:00:2e:a4:07:04:
88:0f:43:75:39:fd:2a:b3:c1:73:ae:42:92:7c:3e:
4a:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:85:F3:79:17:70:20:F0:88:BF:74:DA:2C:03:46:D8:79:C2:2A:1D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149005
sbgp-ipAddrBlock: critical
IPv4:
103.176.14.0/24
IPv6:
2001:df0:8c0::/48
Signature Algorithm: sha256WithRSAEncryption
38:55:ce:0f:ac:bd:10:2a:d3:56:1a:43:3f:79:40:d7:7f:99:
92:61:ec:25:4f:cd:0b:e5:a9:a8:d8:8e:2c:55:ad:73:79:29:
4b:fd:e7:7d:08:1a:3b:d6:43:84:c4:5d:67:ec:dc:27:29:da:
c8:93:24:ff:b2:66:9c:85:0e:45:f3:c6:d5:2a:a9:30:a8:26:
fd:9d:37:ea:bf:b1:ac:ae:bd:62:42:5f:da:1e:09:18:47:b0:
74:bb:96:1e:28:ba:ca:17:50:fd:1f:ff:07:ed:91:18:31:72:
be:46:af:bb:67:07:bc:cd:55:fc:3f:f7:c1:30:ad:1f:4d:1b:
b4:98:63:c2:ce:7a:32:2b:e9:d7:ed:e2:ab:f7:c5:e4:88:31:
60:86:3a:6c:05:49:78:d8:a9:74:21:04:6c:2e:0e:46:3c:d8:
6b:bf:83:e0:78:a4:a5:27:09:6d:61:2e:e2:84:c7:d3:21:c5:
b1:c6:cc:26:8d:8c:8a:88:4b:c4:4f:67:e2:24:ad:2c:fd:0e:
07:b3:10:28:ae:90:8b:40:b4:6c:91:da:5b:cd:b5:84:45:f8:
73:a7:7f:b1:d1:22:da:fc:6f:c5:50:65:28:3b:7a:62:4e:85:
d4:01:b3:1a:ec:ee:f9:ce:e5:30:11:8c:31:7a:9d:82:56:04:
f7:90:40:60
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 10:42:01 2025 by rpki-client