Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fi6Vb4jdPgmmsETYsrQt6xCoPaE.cer
File: Fi6Vb4jdPgmmsETYsrQt6xCoPaE.cer (raw, json)
Hash identifier: EyuWVBtyycPF4PkGNTv/l60tsVcxrNqackD4Lb5oHrM=
Subject key identifier: 16:2E:95:6F:88:DD:3E:09:A6:B0:44:D8:B2:B4:2D:EB:10:A8:3D:A1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F11C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E6F07/C13D81D8052911EA82D74337C4F9AE02/Fi6Vb4jdPgmmsETYsrQt6xCoPaE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E6F07/C13D81D8052911EA82D74337C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 10 May 2024 19:28:02 +0000
Certificate not after: Sun 01 Jul 2029 00:00:00 +0000
Subordinate resources: AS: 137540
IP: 103.112.147.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 16 Apr 2025 08:40:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127260 (0x1f11c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: May 10 19:28:02 2024 GMT
Not After : Jul 1 00:00:00 2029 GMT
Subject: CN=A91E6F07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f7:da:5c:d1:dc:33:fd:58:30:1e:00:01:24:
0b:05:5e:56:56:25:5a:6f:09:d8:86:1f:06:3a:e0:
07:32:cc:42:34:89:4e:5d:06:5c:e8:e9:f1:5d:af:
52:81:b3:25:03:cf:82:31:55:d6:a4:a5:cd:62:fa:
7f:58:b8:fd:e4:77:0f:69:de:e3:41:06:f3:ed:c1:
11:a2:2d:bc:ab:cf:19:24:ca:42:31:af:b2:64:3a:
48:00:be:10:f9:2a:ca:52:37:3b:01:2f:32:ea:a7:
e9:d3:33:ed:ef:5f:92:07:32:37:0a:de:45:62:27:
2a:7b:1d:cf:c3:ec:ab:96:1c:b8:53:11:d3:67:66:
9f:fa:ab:59:33:e1:46:a6:f3:b9:fb:da:6b:e5:46:
74:c9:1a:51:52:0a:44:96:ae:d0:63:7e:21:22:0c:
99:35:cc:de:4b:d0:0e:a4:b4:46:33:8c:40:16:18:
3b:60:62:82:f8:c3:3e:69:e9:07:1d:c3:13:f9:a6:
e8:05:3a:02:b6:be:b5:33:97:25:f4:34:d9:34:54:
e0:78:a2:9f:5f:58:f4:77:94:9d:e5:09:ba:7c:0b:
97:fb:c6:f1:a8:c9:5f:b9:9a:7d:71:b4:57:6e:eb:
c0:2f:a2:89:c5:cf:c7:07:69:9b:72:51:21:6a:4e:
69:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:2E:95:6F:88:DD:3E:09:A6:B0:44:D8:B2:B4:2D:EB:10:A8:3D:A1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E6F07/C13D81D8052911EA82D74337C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E6F07/C13D81D8052911EA82D74337C4F9AE02/Fi6Vb4jdPgmmsETYsrQt6xCoPaE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137540
sbgp-ipAddrBlock: critical
IPv4:
103.112.147.0/24
Signature Algorithm: sha256WithRSAEncryption
d3:50:33:d4:bc:38:5d:7a:2a:3d:53:f6:a8:36:81:57:aa:da:
26:a1:03:7a:2f:88:1f:ce:0d:00:6b:b5:9b:fb:26:d2:33:90:
14:ff:f5:cb:cb:72:ba:68:c6:60:6b:c9:68:ce:44:28:6d:21:
40:04:b2:c7:a8:22:52:27:cf:0e:95:af:73:9a:c6:65:6a:ef:
52:85:b5:e9:d6:2a:c8:b9:fe:a3:4a:6a:db:70:85:ae:8d:df:
23:da:9e:b6:cc:b1:5a:28:d0:30:74:66:d5:21:24:da:59:be:
2f:74:23:e2:4c:c4:b2:58:70:77:ae:29:60:d5:41:13:c3:d0:
23:8b:0a:74:9e:8a:85:ae:18:75:da:c6:c4:7d:d4:79:84:b4:
0b:fa:8e:34:0b:3f:93:78:ef:39:ce:18:e4:1c:67:a9:cd:0e:
65:1e:34:04:86:0a:5d:c8:67:72:61:2c:bb:e2:4f:94:8e:01:
79:1e:68:55:8e:32:fb:85:ec:f2:cd:a9:fe:0b:ad:33:f7:9c:
42:ed:28:c5:bf:7d:19:4a:9a:51:30:9a:d2:d8:86:95:ca:55:
2e:94:7c:77:86:67:08:93:93:33:93:84:43:4a:d6:75:e0:3d:
8b:2a:31:ae:43:78:6d:6d:53:f7:72:c7:63:4f:8d:48:e1:8a:
14:90:d9:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 12:01:24 2025 by rpki-client