Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FBD9h4cUD_mXb-nB-lhE7V3R48U.cer
File: FBD9h4cUD_mXb-nB-lhE7V3R48U.cer (raw, json)
Hash identifier: r+ywrgPCKS4t20FsuolC/Y4NsHGwn/o3U44RAOJRTc0=
Subject key identifier: 14:10:FD:87:87:14:0F:F9:97:6F:E9:C1:FA:58:44:ED:5D:D1:E3:C5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0225D0
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FDD88/C8236AC2049011EC8CC1A386C4F9AE02/FBD9h4cUD_mXb-nB-lhE7V3R48U.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FDD88/C8236AC2049011EC8CC1A386C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 30 Dec 2024 23:26:01 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 141389
IP: 103.158.14.0/23
IP: 2406:ac40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140752 (0x225d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 30 23:26:01 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91FDD88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:73:f9:6b:9d:68:d4:53:28:7e:4d:09:38:30:
1e:a1:8a:95:2c:28:87:19:40:01:dd:0b:23:37:0b:
89:d2:5d:68:d6:bc:1d:23:8f:99:14:43:bc:24:ff:
9b:27:af:34:7b:1d:d2:dd:60:c9:45:f4:0e:aa:57:
f9:4c:06:76:d0:95:79:a8:39:3f:f2:bf:fa:96:43:
b0:28:36:d5:0c:4c:00:fc:ca:8f:68:be:64:b8:08:
b1:65:76:2a:20:d3:87:b9:0d:e2:12:1f:fe:8f:08:
7b:e6:41:e3:93:7b:c9:b7:cb:fb:d2:28:48:13:60:
dc:95:b2:3d:fb:b6:3e:08:0c:97:4f:ae:ec:1a:ea:
62:aa:57:7c:18:eb:56:90:77:40:59:23:db:4b:5a:
3d:d3:5b:ff:f8:1a:4c:66:83:95:8c:a9:0d:78:af:
fe:bb:85:09:2f:da:ae:ee:5c:e5:00:9e:86:ff:13:
00:92:9c:71:c3:28:84:59:ee:04:a2:44:9e:39:4a:
7e:eb:ab:6d:6d:05:5a:9e:1f:ea:df:65:a4:2d:a3:
fb:51:0a:b1:c8:9b:a3:ed:77:2c:f4:52:1b:27:08:
13:49:03:5c:32:6b:93:00:13:e2:59:af:b9:27:fc:
bb:f0:fa:a4:2f:06:cc:76:4b:6f:19:77:07:a8:c8:
de:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:10:FD:87:87:14:0F:F9:97:6F:E9:C1:FA:58:44:ED:5D:D1:E3:C5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FDD88/C8236AC2049011EC8CC1A386C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FDD88/C8236AC2049011EC8CC1A386C4F9AE02/FBD9h4cUD_mXb-nB-lhE7V3R48U.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141389
sbgp-ipAddrBlock: critical
IPv4:
103.158.14.0/23
IPv6:
2406:ac40::/32
Signature Algorithm: sha256WithRSAEncryption
02:56:50:87:1d:2e:05:a7:df:ee:04:7c:5e:79:df:9c:15:73:
f6:5e:d3:e4:c9:18:d3:46:6e:77:66:3d:e3:ff:82:73:cd:aa:
7d:59:3e:1d:db:73:9e:9a:5b:e3:a1:f6:bc:61:37:52:7e:27:
6a:c9:6b:aa:a8:14:6f:4e:67:26:80:e2:28:d8:8e:cc:17:a1:
bf:b9:be:04:1c:cf:b5:7d:3a:e2:8c:87:41:df:06:e6:2e:78:
a5:3d:22:39:94:19:8c:0a:74:d8:03:3c:fc:4b:f4:5d:c2:b5:
77:a9:fa:10:b1:25:a5:61:c5:0a:d8:6a:64:b8:94:6f:01:b1:
2e:e2:eb:10:63:9f:7e:99:d8:62:ff:05:5d:21:54:e1:6a:75:
67:22:78:da:6a:a1:f9:ee:67:1f:84:49:d0:80:6b:a7:4f:17:
c4:8a:77:37:ae:f5:7d:4b:17:dd:50:15:48:da:e8:62:9e:27:
f7:21:a5:34:2f:4b:7f:13:70:61:85:14:18:31:a6:76:1b:11:
0d:e7:f4:3b:32:a7:93:66:ec:52:f7:27:fd:79:ff:7e:85:b3:
34:20:27:da:38:2e:bd:1e:2f:69:a9:4b:d8:96:79:9c:6d:63:
52:c9:7f:0b:7a:79:23:64:8f:37:59:4e:9b:12:de:09:93:00:
a1:00:5d:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:01:22 2025 by rpki-client