Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeWWyyxgy3V9uPQOuG8kdlLBOjA.cer
File: DeWWyyxgy3V9uPQOuG8kdlLBOjA.cer (raw, json)
Hash identifier: jjZmAlxzQ9caYjA3oEXzwxmCD7WvvamWbvRmQAnXWBQ=
Subject key identifier: 0D:E5:96:CB:2C:60:CB:75:7D:B8:F4:0E:B8:6F:24:76:52:C1:3A:30
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021E89
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/DeWWyyxgy3V9uPQOuG8kdlLBOjA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 29 Nov 2024 13:04:31 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 134538
IP: 103.131.64.0/22
IP: 2403:c740::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138889 (0x21e89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 29 13:04:31 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A9135033
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:7d:01:fa:12:fa:be:e6:26:43:21:e6:71:13:
78:bd:55:13:1c:55:c4:e8:f1:6c:f0:54:85:6f:64:
d3:2a:98:6d:fb:6e:02:1e:6e:26:6f:19:d4:cc:3a:
31:fa:51:1d:1e:1a:54:34:3b:d7:f1:7c:6a:22:11:
18:eb:7f:5e:d9:38:78:8e:cb:89:cc:fd:06:cc:b1:
30:1d:50:02:ae:12:2b:2c:0c:9e:a3:e8:a0:e0:64:
7b:c5:3e:e3:77:3a:d3:40:69:99:ec:d7:6a:00:dd:
37:15:6c:9e:3f:2f:6d:61:a6:9a:9d:84:65:26:15:
e3:70:4c:8b:7e:98:52:d3:47:d0:36:f3:59:42:fd:
8e:73:44:69:b3:1a:75:f4:d4:d6:07:47:f9:a5:bb:
3d:52:e6:c7:62:61:f7:3f:40:00:9a:a8:68:ba:ae:
c9:cd:e4:ba:cf:1e:44:1e:88:4d:43:a1:02:69:cc:
81:8a:47:38:d8:1a:72:54:54:34:41:96:95:96:b0:
dd:ad:91:fa:e6:86:0b:20:3f:6d:ac:e3:8a:19:86:
8f:51:14:d1:88:9b:9f:59:ed:f3:d5:99:28:9d:dd:
5d:48:74:4e:90:fe:40:8d:8f:11:79:3d:e6:d5:b9:
ce:09:1a:19:58:3a:a9:91:b4:e1:4e:db:3b:74:ed:
59:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:E5:96:CB:2C:60:CB:75:7D:B8:F4:0E:B8:6F:24:76:52:C1:3A:30
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/DeWWyyxgy3V9uPQOuG8kdlLBOjA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134538
sbgp-ipAddrBlock: critical
IPv4:
103.131.64.0/22
IPv6:
2403:c740::/32
Signature Algorithm: sha256WithRSAEncryption
2f:74:75:6e:68:f9:88:d7:fe:80:5a:c2:10:8d:bd:30:5b:e6:
59:61:36:e8:4e:4a:46:3c:9b:3a:9b:aa:62:ad:82:3c:c5:3f:
c4:61:05:77:f5:56:77:7a:be:fa:44:43:61:24:09:95:62:c8:
46:a4:cf:dc:10:03:a0:1c:4a:37:69:f6:81:7d:6b:7a:f3:07:
ac:bf:ff:53:1d:0c:c8:7b:f3:a6:44:67:85:42:82:f6:7c:43:
e2:5b:ef:c0:90:08:17:a5:a4:51:61:1c:4d:67:b0:ae:52:fc:
de:bf:9d:5a:25:15:c3:cd:5d:df:4b:94:c9:17:70:ec:a9:e2:
1b:77:cd:f5:e8:5d:eb:57:c9:fe:72:cc:8d:4e:06:2a:ea:c4:
16:31:fb:dd:68:a3:2f:01:c8:3f:55:16:e2:32:6c:59:43:21:
8b:db:22:07:aa:29:75:fd:ea:e6:9f:5a:2b:31:3e:01:1f:8f:
ea:6e:c2:22:19:c2:bd:25:be:77:55:e5:51:37:f4:d8:1b:da:
ce:1f:6f:d6:d6:e6:6a:6b:7c:15:f9:78:dc:ab:2a:51:32:0b:
bb:83:d6:bf:80:b1:81:30:82:b5:98:f6:ea:75:e6:ce:ac:ba:
4a:43:f5:ef:85:cf:60:67:01:21:3f:89:e1:f9:ee:38:db:a6:
19:0b:ae:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:42:09 2025 by rpki-client