Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6AuL12r8P85OGKLxP9fthZT8EU.cer
File: A6AuL12r8P85OGKLxP9fthZT8EU.cer (raw, json)
Hash identifier: od0X+AyTcPbwfB+CWyMqETvlZ1YxkKX0zc7pgSvEg+k=
Subject key identifier: 03:A0:2E:2F:5D:AB:F0:FF:39:38:62:8B:C4:FF:5F:B6:16:53:F0:45
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0212EA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9161099/FD367C700D0411EF85E46F55C4F9AE02/A6AuL12r8P85OGKLxP9fthZT8EU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9161099/FD367C700D0411EF85E46F55C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 09 Oct 2024 02:12:59 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 121.127.32.0/24
IP: 202.157.180.0/23
IP: 2401:cb60::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 17:46:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135914 (0x212ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Oct 9 02:12:59 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A9161099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:02:95:56:78:71:af:30:2c:4f:4d:96:00:f8:
57:cf:15:71:bf:f2:68:09:af:04:28:d4:3a:33:ce:
8b:06:81:2c:04:96:b3:a3:47:d6:a4:90:5c:ca:60:
82:ae:5b:e8:06:b7:93:f3:94:1e:1c:38:f0:92:cc:
76:82:cb:4c:5c:5f:0d:67:76:d7:31:32:c7:0a:34:
9d:eb:97:2f:de:39:6f:27:31:39:35:a4:73:fb:bc:
b5:38:06:03:76:f4:55:45:5d:f2:43:fc:4a:01:80:
17:3e:dd:be:cc:46:87:cb:90:69:fb:a8:01:73:0a:
51:c1:6d:88:56:14:23:21:0f:04:86:84:b5:b3:57:
ef:77:e1:ab:cb:13:f1:33:6d:55:30:db:07:31:6d:
18:4a:0f:85:80:d9:f2:fb:71:ae:32:89:78:44:c2:
97:51:b5:63:7f:cf:bb:69:61:41:c4:c1:31:e5:26:
09:ec:77:8d:aa:a0:8b:82:28:45:7e:34:19:d4:d5:
0c:51:bf:7e:37:73:2e:4c:93:d1:c6:4b:e5:54:ff:
9f:bf:01:68:38:29:a1:07:b3:74:43:00:bb:4c:c6:
a8:42:cd:07:d9:14:32:1c:3a:af:d8:49:32:d6:d0:
74:87:e3:c6:fa:96:21:e9:88:f3:18:ce:99:3f:d6:
98:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:A0:2E:2F:5D:AB:F0:FF:39:38:62:8B:C4:FF:5F:B6:16:53:F0:45
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9161099/FD367C700D0411EF85E46F55C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9161099/FD367C700D0411EF85E46F55C4F9AE02/A6AuL12r8P85OGKLxP9fthZT8EU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
121.127.32.0/24
202.157.180.0/23
IPv6:
2401:cb60::/32
Signature Algorithm: sha256WithRSAEncryption
18:c7:59:b0:94:5e:14:33:79:8b:f9:5b:a6:8b:3e:96:29:cf:
64:66:42:84:0e:5f:ca:bc:a8:24:e8:44:8e:f3:f0:ad:78:9b:
bd:3b:d0:02:07:16:8e:d3:73:c1:cd:66:93:b8:3d:a9:f5:74:
5f:ab:1c:c4:64:66:a1:58:0e:a0:f2:ac:e7:6d:0f:0d:7d:b7:
a8:36:aa:78:81:70:c6:17:44:bb:44:11:bb:70:94:db:ef:7c:
de:d6:50:7d:f3:e0:f3:c8:a2:1f:3d:b9:2c:a5:81:47:31:ca:
08:95:80:6d:9a:0e:20:b6:de:72:89:1f:a9:3b:88:d7:42:3a:
de:45:c2:74:82:66:6c:49:cb:4a:14:c3:3d:5e:77:dc:47:72:
b7:a2:5d:7a:2e:cd:24:02:42:50:52:b6:d0:03:d1:c0:de:02:
53:c0:6e:60:8a:89:a6:98:62:22:9a:9d:57:d4:7a:d8:74:90:
a9:12:40:00:cb:97:7e:86:16:ee:07:b3:45:1d:f5:f0:d7:ab:
61:2e:ae:8e:d5:ed:3f:74:f6:fc:4d:b4:a2:bc:85:43:e0:2a:
a8:75:01:8b:72:26:e6:97:c7:82:21:ee:cc:71:25:b7:26:a5:
d5:0f:94:59:b0:bd:12:42:dc:75:fe:0a:7f:ed:c9:84:cc:8e:
4a:65:9f:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:10:15 2025 by rpki-client