Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EZbN39o-vcWtqP_FvLOEkSFH1UQ.cer
File: EZbN39o-vcWtqP_FvLOEkSFH1UQ.cer (raw, json)
Hash identifier: LDo0tknJeYpMFvRJLGwoG0HRR3/Tohp42a4GGdT0mNE=
Subject key identifier: 11:96:CD:DF:DA:3E:BD:C5:AD:A8:FF:C5:BC:B3:84:91:21:47:D5:44
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021E73
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FD4A1/62B423BA6B0111ED9A30F155C4F9AE02/EZbN39o-vcWtqP_FvLOEkSFH1UQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FD4A1/62B423BA6B0111ED9A30F155C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 28 Nov 2024 22:41:01 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 134228
IP: 103.156.166.0/23
IP: 2001:df1:9140::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138867 (0x21e73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 28 22:41:01 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91FD4A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e9:2f:44:91:f3:29:56:0f:bd:b5:22:64:9c:
6e:dd:d9:23:a5:2a:20:76:a3:5b:67:94:c4:26:8f:
6e:0e:a9:bf:b3:59:76:0e:43:32:08:e8:e6:06:70:
ba:06:09:d2:1a:80:0d:e8:d5:08:f7:d2:7f:eb:89:
87:0a:56:28:dc:11:7e:9b:a8:7c:2f:af:13:bf:dd:
ae:8c:dc:41:0f:cd:a1:48:a4:a6:ae:72:04:3d:f0:
58:65:aa:b4:15:ac:38:d8:ba:ed:2e:9e:71:9e:e1:
60:4c:77:58:9d:72:1f:2a:2b:79:a1:f5:72:45:4a:
a6:27:1d:2b:24:71:bf:c4:0b:7a:7d:55:6f:e7:c5:
eb:2e:6a:09:fb:4b:a1:df:54:06:88:1e:94:fd:5b:
3e:6d:64:f2:14:a9:73:ae:75:bb:91:40:f3:ca:09:
c2:a6:d8:de:05:b5:4a:b9:20:cf:b2:79:2a:fe:36:
9e:fc:c9:f7:b1:31:f3:dd:65:98:6c:f0:c4:ba:bd:
4a:75:a5:21:80:ea:e7:96:0e:2e:4c:64:f2:46:55:
f7:a0:50:a7:95:74:d3:6e:2d:e2:bc:b1:7e:4d:d9:
53:1e:20:81:43:fb:bd:56:44:76:bb:08:90:85:0a:
38:e1:7f:b4:68:5d:65:97:24:4b:8a:46:3e:af:fd:
29:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:96:CD:DF:DA:3E:BD:C5:AD:A8:FF:C5:BC:B3:84:91:21:47:D5:44
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FD4A1/62B423BA6B0111ED9A30F155C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FD4A1/62B423BA6B0111ED9A30F155C4F9AE02/EZbN39o-vcWtqP_FvLOEkSFH1UQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134228
sbgp-ipAddrBlock: critical
IPv4:
103.156.166.0/23
IPv6:
2001:df1:9140::/48
Signature Algorithm: sha256WithRSAEncryption
da:3a:9d:d8:f3:9d:b7:7c:0b:a0:fa:6d:ce:c3:43:f9:43:23:
81:78:9b:88:ff:6e:51:ea:f4:a3:ac:6b:fa:91:13:49:45:94:
75:00:9a:38:74:2b:88:19:30:c7:be:eb:fe:13:66:e1:8a:d0:
02:0f:00:b9:e7:1b:ec:a9:5a:f5:08:60:59:9d:e6:fd:09:00:
c0:5e:f3:05:20:e1:32:38:88:6b:ee:b1:39:a4:27:ea:c2:7a:
8b:90:a0:d0:ad:7c:ef:ba:89:ae:23:e6:24:09:8c:92:b5:1e:
1d:5d:33:07:c1:71:d3:4d:dd:c1:6a:7e:de:68:72:f1:87:2e:
1d:d8:c1:f4:ee:c1:16:8b:bb:70:c8:ad:9c:36:14:06:79:3f:
51:bc:fc:57:2e:17:29:2e:7c:93:5c:b2:6e:85:90:28:05:9d:
8f:6f:ad:e3:81:0e:99:4e:5d:9c:fe:c4:b5:02:b8:68:09:d0:
ff:e6:59:84:31:84:90:6c:c5:fd:62:ab:48:1b:a3:d7:c1:23:
c8:22:d3:95:f2:b7:81:cf:1b:6f:bc:d6:1d:d7:bd:bf:dd:87:
7d:10:3e:18:a8:f9:5b:98:d9:fc:36:5b:c3:42:a3:28:2d:62:
35:f6:9e:3c:a6:04:44:05:8f:a1:ca:c8:f2:e5:25:db:b8:34:
61:43:90:88
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 02:14:40 2025 by rpki-client