Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ADNLjyGPpSUzmIbI-8lAk8iO1Xs.cer
File: ADNLjyGPpSUzmIbI-8lAk8iO1Xs.cer (raw, json)
Hash identifier: VssEv3LJYY3kYNxsBhnX581tXidkRm/PtTTdqgzOepo=
Subject key identifier: 00:33:4B:8F:21:8F:A5:25:33:98:86:C8:FB:C9:40:93:C8:8E:D5:7B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023425
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913C0C6/183F84AE234B11ECB8A2DE7EC4F9AE02/ADNLjyGPpSUzmIbI-8lAk8iO1Xs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913C0C6/183F84AE234B11ECB8A2DE7EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 01 Mar 2025 01:36:31 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 138521
IP: 103.127.162.0/23
IP: 2404:2440::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144421 (0x23425)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 1 01:36:31 2025 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A913C0C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:e4:8b:e8:1f:cd:bd:d9:39:55:a5:0b:ef:4f:
1b:ae:20:4a:8f:6e:b1:98:b0:da:1b:59:bf:56:4c:
1f:ae:08:ad:ce:23:b3:96:75:d0:dd:0a:17:b8:78:
72:79:59:a7:6c:7e:5c:35:4e:27:87:84:91:8a:05:
59:bb:fa:e9:4f:f4:b3:46:1a:eb:d2:db:ab:97:4b:
27:ba:72:17:72:16:59:67:40:d0:a0:c4:53:2a:5f:
a7:e2:3b:5e:93:00:fa:5a:2b:52:90:f6:74:84:f4:
b9:9a:9a:11:8a:66:10:14:35:2d:52:17:b5:f8:ec:
67:e8:2e:c5:d5:38:ae:01:46:b4:7f:2d:e4:80:c1:
a5:47:5d:76:64:11:27:01:b9:8b:06:e9:97:9a:7d:
d4:9b:00:8c:e7:3b:a5:08:3c:10:ab:f3:27:d4:d9:
7b:01:2e:48:d5:99:ce:ee:06:2a:f4:db:10:0c:3c:
35:73:c6:66:9e:9f:d6:a6:44:4b:e9:0c:3e:b9:e1:
36:00:0f:cd:3d:9d:1b:fa:5b:e8:63:ed:72:6a:92:
43:e8:e0:b6:da:75:74:ed:87:98:8b:3f:b0:ad:cc:
24:27:97:57:db:da:bf:f3:6f:f9:cf:65:2c:e1:db:
4a:83:73:c3:32:b0:50:3a:6f:63:59:fd:fc:11:8a:
d9:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:33:4B:8F:21:8F:A5:25:33:98:86:C8:FB:C9:40:93:C8:8E:D5:7B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913C0C6/183F84AE234B11ECB8A2DE7EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913C0C6/183F84AE234B11ECB8A2DE7EC4F9AE02/ADNLjyGPpSUzmIbI-8lAk8iO1Xs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138521
sbgp-ipAddrBlock: critical
IPv4:
103.127.162.0/23
IPv6:
2404:2440::/32
Signature Algorithm: sha256WithRSAEncryption
1b:12:b3:fa:22:53:e6:a9:94:6e:f4:13:8d:0b:68:ce:f5:f1:
bb:4d:ff:f6:13:fd:6d:bb:78:5a:84:0a:48:62:bd:0b:15:a8:
6f:32:a6:ee:68:60:ff:f4:f8:e8:be:2a:8a:2d:19:0c:74:7d:
30:3a:ae:96:58:60:c6:be:e5:c1:fe:47:5b:a4:4e:49:3f:6d:
8f:8e:64:79:d8:44:15:d9:cb:cb:cf:bc:b4:19:90:57:cc:a4:
0b:f6:e6:18:16:30:6e:cd:02:ae:94:a0:17:0b:30:59:00:b0:
80:67:89:6a:28:3f:a5:28:ef:a3:99:18:8b:4c:c1:0b:6f:63:
f9:96:e0:33:9f:8a:a5:34:4c:81:2e:3e:14:f8:fb:b7:06:76:
b0:3e:4f:eb:4c:50:fe:0c:c7:f6:d8:32:66:08:c3:7a:59:2e:
82:bf:fb:ba:cf:33:9e:30:5a:60:10:0a:d2:e7:bb:2e:19:31:
f9:a9:7c:4a:54:60:51:b1:4d:f1:b0:1c:0b:12:2f:5d:24:ff:
bc:14:62:9e:d4:c5:7a:b4:57:11:e6:22:43:f1:36:1d:a6:8d:
de:62:7f:6c:4d:07:60:08:a6:d6:d0:61:a9:eb:c8:d0:6b:f3:
53:1f:2d:39:a9:68:a6:a6:06:de:4a:83:3e:aa:a1:a3:a3:f6:
fe:c0:bb:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:11:37 2025 by rpki-client