Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9rpuYwpqqY2CFWgmTgJ7mI31ybo.cer
File: 9rpuYwpqqY2CFWgmTgJ7mI31ybo.cer (raw, json)
Hash identifier: x+7xNG4rrn36rq2QVnJGaMEeirwpshOJVg/2wwKDN4s=
Subject key identifier: F6:BA:6E:63:0A:6A:A9:8D:82:15:68:26:4E:02:7B:98:8D:F5:C9:BA
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02315F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/9rpuYwpqqY2CFWgmTgJ7mI31ybo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 14 Feb 2025 18:07:30 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 135058
IP: 27.0.156.0/22
IP: 103.208.8.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143711 (0x2315f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 14 18:07:30 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A91AF3E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:35:46:0b:ff:41:88:f0:18:3c:7e:d1:2a:b1:
ac:e2:50:10:f6:a1:74:2f:77:e2:b9:5d:36:f7:80:
75:98:c1:57:e2:08:02:86:80:2e:12:e7:b0:0b:68:
e6:72:27:99:60:9f:86:af:4b:97:42:49:94:5a:bb:
23:4b:42:ee:80:b2:95:54:33:ae:c6:5d:c1:97:c6:
26:9b:3c:1b:a0:e1:07:8d:9a:17:c3:f0:5a:f8:be:
96:e3:cf:ba:de:bd:e1:37:dc:9c:bc:7f:cb:f8:e3:
37:e3:08:c6:7f:c7:71:d0:2c:8c:66:44:e2:f7:30:
db:21:bb:d2:0e:30:46:5e:f9:ed:61:7d:b3:6b:16:
09:60:87:8f:88:27:29:2d:92:ee:bf:71:4e:4c:e7:
62:08:41:f4:b9:62:6a:a4:ad:0c:32:60:04:f6:d4:
2f:40:d8:5c:b4:25:55:47:7f:aa:55:75:04:d2:4f:
9a:0f:b6:f2:2a:7c:20:20:c9:67:74:37:77:42:ff:
3b:af:8f:d7:07:cd:15:e8:c8:41:f2:62:be:3b:b6:
e1:72:c3:0b:dd:04:1f:75:d6:fb:ae:76:a8:14:fc:
a0:a7:5d:0c:a9:0f:31:99:43:da:82:53:84:a8:a0:
f3:14:8e:e8:37:6e:39:87:43:2d:bf:ce:a6:a7:a6:
1e:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:BA:6E:63:0A:6A:A9:8D:82:15:68:26:4E:02:7B:98:8D:F5:C9:BA
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/9rpuYwpqqY2CFWgmTgJ7mI31ybo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135058
sbgp-ipAddrBlock: critical
IPv4:
27.0.156.0/22
103.208.8.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:7e:06:f3:26:ef:81:25:dc:75:02:09:c1:01:ac:f2:42:c8:
39:08:0e:19:a8:cb:c6:81:d1:47:c9:8b:74:5f:4f:b7:cd:ed:
65:ca:c3:e2:4a:86:03:a9:5f:be:3a:3d:f9:73:b5:54:54:31:
75:b7:18:d0:fa:3b:0c:cd:73:35:e0:f5:1e:77:4f:f4:fb:83:
92:d7:5d:be:ae:dc:b2:96:8f:aa:20:e6:5b:80:45:76:6c:98:
c3:93:69:92:0c:8b:0e:20:7f:d7:7a:0c:95:17:64:72:72:fc:
8c:68:12:d5:0f:ed:01:1a:c7:7b:09:a2:65:4c:15:21:1d:2e:
50:f3:c0:ba:50:13:ab:88:bb:c8:a3:25:f3:cd:37:96:d4:97:
10:fa:b3:21:ea:5b:35:7f:cd:28:ba:87:43:e5:94:e5:d6:6e:
9a:89:76:0a:2d:f2:44:02:78:e6:9b:99:99:85:41:1e:97:07:
b2:20:38:92:58:20:0c:7e:fa:09:bc:1f:d4:48:0a:4b:0a:af:
0b:aa:21:ea:86:3a:ae:f5:14:5a:f5:be:95:5a:71:f3:ad:64:
3c:96:e7:38:47:2c:59:b8:d2:74:dd:1e:c6:aa:ce:18:f9:ad:
10:85:dd:f3:6f:98:b0:89:20:54:1a:a9:02:fc:e4:10:2e:29:
d3:f9:07:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:13:27 2025 by rpki-client