Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6aByRw-BRLTaJ6ZvOW8ZkCRZzQ.cer
File: B6aByRw-BRLTaJ6ZvOW8ZkCRZzQ.cer (raw, json)
Hash identifier: 14lMwpK3mFw/WE8xfwc1oCXGfH0I8018YLYB5CC8eC0=
Subject key identifier: 07:A6:81:C9:1C:3E:05:12:D3:68:9E:99:BC:E5:BC:66:40:91:67:34
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022704
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9129162/5A380D6AAD4311EFAA86C31AC4F9AE02/B6aByRw-BRLTaJ6ZvOW8ZkCRZzQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9129162/5A380D6AAD4311EFAA86C31AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 03 Jan 2025 06:05:06 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 150455
IP: 103.47.130.0/23
IP: 2400:c660::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141060 (0x22704)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 3 06:05:06 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A9129162
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c7:f0:ab:66:65:31:72:8a:8f:f8:cd:dc:b2:
91:d9:12:eb:2d:29:9d:f1:f8:09:6d:e4:28:1c:77:
c5:74:69:97:b3:15:99:5b:32:7b:89:c0:a3:8b:07:
c3:b4:f4:7f:a0:7a:c7:5e:2d:7e:29:d1:4b:57:21:
39:fb:68:b6:e3:09:26:48:27:11:db:46:41:ed:ff:
bc:ef:90:eb:00:b3:dc:47:f2:0d:26:c1:39:c3:66:
04:cc:68:f4:3a:09:42:ae:fd:a1:e5:ae:99:03:43:
1f:06:53:d1:39:4a:90:bb:98:8b:03:4f:3b:48:9a:
04:ef:71:13:7a:4a:2a:fd:2b:f6:9b:88:5c:1f:96:
82:42:06:8a:e0:6e:0e:ac:a9:fa:37:34:a9:19:9d:
1c:69:8a:f0:30:96:c2:44:f6:cf:b9:4c:e4:8a:74:
e5:94:fc:d3:a5:7e:62:52:8e:57:77:41:39:40:4d:
98:ac:5d:09:1a:17:9b:32:d3:58:9a:d0:2f:f7:bd:
b9:9b:33:cd:6f:47:c7:93:ad:3a:bc:3f:48:0b:1a:
57:35:76:ee:98:16:bb:28:0c:c0:ff:c2:44:1d:3d:
a2:c3:69:ee:92:c0:e5:1c:4d:91:60:ba:5a:93:62:
d2:be:13:ec:47:8c:82:bb:41:cd:04:69:08:a2:eb:
28:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:A6:81:C9:1C:3E:05:12:D3:68:9E:99:BC:E5:BC:66:40:91:67:34
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9129162/5A380D6AAD4311EFAA86C31AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9129162/5A380D6AAD4311EFAA86C31AC4F9AE02/B6aByRw-BRLTaJ6ZvOW8ZkCRZzQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150455
sbgp-ipAddrBlock: critical
IPv4:
103.47.130.0/23
IPv6:
2400:c660::/32
Signature Algorithm: sha256WithRSAEncryption
ce:60:06:84:72:38:78:43:74:05:6d:b5:97:01:2c:3c:a7:99:
b6:63:63:83:05:32:18:97:aa:20:e2:31:67:05:79:58:f8:9c:
c5:4b:17:42:8d:b5:2c:8f:4a:80:11:75:12:3f:36:a9:6f:7a:
20:28:92:0e:aa:c4:af:0b:6f:02:cc:a8:4b:24:56:9a:05:6f:
a4:bd:dd:93:5c:d8:f1:d1:99:6b:c3:10:7e:c9:09:c7:04:fc:
27:ee:05:c2:7f:c4:21:7e:9f:8a:df:e3:3e:25:fb:93:c3:81:
4d:34:8b:31:1b:52:8c:1d:47:62:e3:5b:4f:c0:31:3b:df:df:
c0:7c:51:28:51:20:e2:ad:bf:9a:61:34:15:9a:ed:55:cd:0b:
d8:9e:f6:e4:8b:54:11:4d:1d:09:51:8b:4b:56:41:95:6b:72:
35:67:0e:47:93:01:05:2d:61:2b:68:85:b1:3b:85:1b:07:ad:
18:da:a6:01:7e:1f:cb:17:16:1a:e8:e2:e1:f2:5f:b3:a1:51:
67:8f:80:20:fb:82:57:84:09:44:df:4f:a9:99:d3:93:8f:ca:
c9:4a:ba:0c:c9:92:a6:03:e3:9b:f7:84:ce:27:49:64:e3:6a:
b9:77:53:7b:56:6e:32:98:ad:d1:d8:0c:34:23:e1:90:bf:11:
e1:0d:c3:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:15:34 2025 by rpki-client