Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer
File: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer (raw, json)
Hash identifier: klDKDugdPCD1+l2KOaR3Buz1BYEerU+3BBv38uof9QI=
Subject key identifier: 05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0230DE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 13 Feb 2025 04:26:06 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 150445
IP: 103.76.116.0/23
IP: 2400:d360::/31
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143582 (0x230de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 13 04:26:06 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A91AB8D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:62:74:62:0c:6d:a4:16:7e:77:76:95:7a:ca:
37:9c:2a:14:b4:78:ce:47:48:67:ac:d0:5e:18:5c:
13:ca:f2:2f:b0:14:8a:61:d5:84:04:33:85:af:0b:
31:af:c0:76:4c:2c:72:23:84:d9:fa:b9:93:73:f1:
2b:57:21:1f:a9:38:29:5e:0c:79:2d:ce:33:e3:5e:
6f:67:70:ea:0a:eb:2f:9d:5b:4e:db:69:40:f9:4b:
38:78:18:11:df:19:82:8a:23:99:dd:6e:ed:d5:2e:
63:71:b6:33:6c:ae:b2:40:b5:96:ba:13:29:8a:f4:
98:45:34:ea:ac:0d:c2:47:88:f4:f2:41:c5:14:80:
aa:77:70:7d:14:45:e6:16:71:7d:0e:33:c3:5c:24:
1f:12:cf:2b:71:09:60:a0:07:f9:d0:de:b1:37:23:
26:f0:86:9a:48:0f:e2:b6:98:fd:6c:ed:26:6d:79:
8d:18:28:d0:58:21:55:11:1e:93:58:78:af:be:16:
7c:cf:b6:98:66:da:26:9d:e5:34:9b:c0:9b:cf:cc:
69:a1:4b:65:d4:1a:cf:00:08:d9:b9:12:df:43:45:
70:ae:80:fb:84:46:db:66:2f:e0:ff:94:63:02:22:
99:2d:6b:4a:95:54:85:88:6d:68:1f:1b:4a:66:e5:
95:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150445
sbgp-ipAddrBlock: critical
IPv4:
103.76.116.0/23
IPv6:
2400:d360::/31
Signature Algorithm: sha256WithRSAEncryption
c0:d9:ca:ba:a6:07:41:b0:34:58:f3:a1:74:ab:77:c8:54:4f:
25:70:21:c4:87:51:f9:8f:35:90:c3:a8:4c:3d:f4:bc:d6:e7:
a6:e0:18:6f:16:42:26:60:c1:26:4f:b7:67:15:51:4d:31:2f:
da:42:10:d1:56:c7:ea:c7:cc:bd:91:b8:f9:07:ad:2f:fa:f5:
ca:9d:85:d9:8b:b4:e9:a5:b5:d2:ac:aa:71:c7:67:2c:87:39:
d0:e9:42:b7:98:81:ab:dc:be:25:3f:a7:93:9c:6a:22:16:b0:
0a:eb:32:42:26:40:e5:9d:06:a3:e2:74:b1:77:a7:f8:9a:2b:
86:73:b9:57:a7:f3:4d:9f:f1:df:80:b7:f7:85:33:ac:22:f9:
2a:18:97:bf:2c:f5:43:8b:73:58:9d:ce:51:f3:bb:96:b2:95:
5c:2a:3b:ae:4c:93:b1:91:69:a4:2a:48:ae:54:f7:02:61:67:
a5:a8:88:be:16:86:a3:fb:b9:55:b1:a1:ba:43:fb:3e:a3:f0:
28:ff:e9:6a:f7:20:07:0b:0c:5a:51:16:50:eb:54:a9:a1:02:
ee:92:57:d9:f4:f2:a7:7a:54:ed:01:05:41:74:65:dc:b6:4f:
cf:16:f3:79:67:39:a2:e9:9c:40:f3:43:47:5e:68:d3:ca:ae:
c7:d2:63:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:06:03 2025 by rpki-client