Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8rcLSXMivuZoIO0_ziiqeW2wkVM.cer
File: 8rcLSXMivuZoIO0_ziiqeW2wkVM.cer (raw, json)
Hash identifier: 0YQVN0pymmfTI0H0p+sru8LaDHdqZS+mlFD9JZeaDCk=
Subject key identifier: F2:B7:0B:49:73:22:BE:E6:68:20:ED:3F:CE:28:AA:79:6D:B0:91:53
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023A09
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/8rcLSXMivuZoIO0_ziiqeW2wkVM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 26 Mar 2025 21:07:16 +0000
Certificate not after: Thu 28 May 2026 00:00:00 +0000
Subordinate resources: AS: 137533
IP: 45.251.240.0/22
IP: 103.85.24.0/22
IP: 2403:d40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145929 (0x23a09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 26 21:07:16 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=A91B43D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ef:43:e2:4c:19:24:f7:b0:85:e4:14:e2:94:
b3:ec:31:ff:0d:81:d6:6e:67:c2:33:08:86:6d:b5:
36:a7:40:59:d6:66:00:2d:50:91:ce:67:50:e5:d6:
f4:5b:87:bc:2d:bd:98:00:cc:67:f2:af:79:97:b9:
9c:fd:82:9a:b6:19:2c:a4:21:0c:b8:e8:c8:de:be:
03:33:44:b9:cd:d2:1e:84:ef:14:18:c6:ce:4d:4d:
39:94:83:96:41:13:cb:09:80:f7:c2:33:8d:af:c1:
3c:89:42:56:29:31:12:97:ce:77:32:71:2a:4d:bd:
c3:eb:20:e5:66:97:7c:7e:f2:26:ea:a8:48:a8:e5:
64:59:6e:16:26:61:3e:17:88:ca:21:1c:e8:b2:b6:
da:9b:42:8e:4d:24:9a:60:98:ca:c9:52:0e:c5:5b:
c1:48:b7:1d:b6:5f:18:4f:b1:75:85:99:41:b8:a2:
1d:b0:c8:a0:91:e6:dc:be:66:a3:76:15:a8:38:43:
d3:61:b9:3e:41:f8:5f:d3:79:c7:fb:0e:fd:d7:23:
7c:ea:ca:81:20:a7:79:e5:1d:9b:66:17:3d:91:e6:
d5:3d:0f:7e:58:c1:76:0b:ae:58:2b:ff:f0:54:30:
79:3f:20:1f:be:f2:a6:ce:cc:bb:21:3b:96:7c:7b:
10:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:B7:0B:49:73:22:BE:E6:68:20:ED:3F:CE:28:AA:79:6D:B0:91:53
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B43D7/E9F5D93E652411EB983F1B11C4F9AE02/8rcLSXMivuZoIO0_ziiqeW2wkVM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137533
sbgp-ipAddrBlock: critical
IPv4:
45.251.240.0/22
103.85.24.0/22
IPv6:
2403:d40::/32
Signature Algorithm: sha256WithRSAEncryption
4d:37:71:09:af:b6:5f:75:de:7b:ce:f3:c3:03:75:e9:c6:26:
8b:3b:96:b8:f8:1b:1c:28:3a:30:43:ed:b2:3c:ec:99:15:b9:
15:7e:71:fd:5f:d9:8e:12:f9:eb:35:67:6a:cf:68:a7:9d:29:
b2:7e:08:00:62:44:a0:59:45:1f:49:1e:67:f6:13:eb:85:fb:
81:17:ef:83:45:f4:7d:e2:de:7d:e7:f3:41:b9:e8:a5:48:1a:
55:93:4f:74:56:54:31:49:e3:54:1a:2a:24:06:ec:56:8d:0d:
56:d5:9f:cf:35:75:d4:6a:80:f0:dd:1d:28:30:d8:5e:ae:0c:
a8:85:7e:98:29:1f:8f:27:85:7a:3d:07:a5:a9:2e:e0:fd:b5:
d8:25:f9:b9:2d:4b:be:69:b2:af:a5:3f:2a:4a:54:68:1e:de:
7c:fa:42:b8:12:e1:38:d6:96:56:d5:92:ff:f6:2c:d2:ed:a7:
02:ed:7b:23:94:58:4b:0c:e8:f7:22:ba:3c:f7:84:ec:bc:79:
7e:52:c1:63:ef:5e:c4:e3:08:db:66:9f:66:c2:28:99:d6:70:
e8:60:a3:0b:f7:4d:42:b7:6a:6d:56:08:07:a8:6e:70:05:7a:
2f:58:2f:cc:0a:15:da:8e:b0:eb:58:ec:0d:e3:6f:52:f5:c8:
ed:48:08:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:13:12 2025 by rpki-client