Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrgD2zk43LFdxZooyXcZ2h_yClM.cer
File: FrgD2zk43LFdxZooyXcZ2h_yClM.cer (raw, json)
Hash identifier: CUYzDMgBmYUE/37C90fc02NzHYGgPWi6nyW+ltqd9VI=
Subject key identifier: 16:B8:03:DB:39:38:DC:B1:5D:C5:9A:28:C9:77:19:DA:1F:F2:0A:53
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023754
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 13 Mar 2025 13:58:26 +0000
Certificate not after: Thu 28 May 2026 00:00:00 +0000
Subordinate resources: AS: 137505
IP: 103.111.8.0/22
IP: 2402:9140::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145236 (0x23754)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 13 13:58:26 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=A9149E0D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3c:76:1c:35:c3:43:8c:87:f5:a3:2e:59:32:
e6:d7:f2:67:5f:fe:b0:da:5f:4a:4e:72:df:5b:d5:
21:d2:50:3e:d2:a6:7c:01:c6:66:c5:69:58:bb:05:
2e:c3:90:4d:b3:78:b9:a0:f7:84:15:9c:31:d7:99:
68:45:9b:03:12:62:7a:cd:67:b0:0c:7f:cc:de:77:
37:fe:ea:57:d6:7b:80:84:c8:80:ae:f1:62:d1:7e:
24:13:86:ea:c5:8b:a7:a7:6d:76:66:76:6e:93:ed:
c1:e5:39:15:54:1b:43:28:1f:bb:70:b1:69:6d:50:
09:63:01:12:1c:64:55:f9:f6:83:e0:dd:e8:95:c2:
68:a7:fd:dc:9c:bb:c8:5f:94:de:3f:49:16:3f:fe:
a1:e6:42:08:d3:2d:62:1c:26:1b:98:29:de:72:24:
fe:12:03:24:a4:8d:1d:b6:3b:6c:16:2d:01:fe:b4:
fe:49:db:7c:00:1c:5f:fd:d2:d5:a5:72:7a:3a:07:
ab:28:d6:e9:f8:76:dc:a0:81:d6:4e:e6:28:63:98:
af:f2:5b:9a:2e:e9:24:67:7b:ce:63:18:66:cf:75:
81:38:74:53:a5:a8:42:5b:82:04:a6:8a:de:77:0b:
9a:3f:1d:af:f1:46:c8:e4:ce:b5:73:17:00:d3:78:
18:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:B8:03:DB:39:38:DC:B1:5D:C5:9A:28:C9:77:19:DA:1F:F2:0A:53
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137505
sbgp-ipAddrBlock: critical
IPv4:
103.111.8.0/22
IPv6:
2402:9140::/32
Signature Algorithm: sha256WithRSAEncryption
d9:7f:3e:ac:1c:c1:5f:3e:ce:ac:c3:06:3b:48:3a:73:c2:77:
f8:74:32:c2:6a:bf:68:a3:51:11:c3:3a:90:e0:85:1b:d7:f2:
b1:16:d4:b7:4e:44:dc:f2:97:83:24:e5:fc:f4:a1:5b:a6:5b:
57:34:be:3c:5d:b7:d8:55:fe:17:80:2b:d4:b9:15:58:63:c4:
57:82:ed:77:40:19:f0:0f:ee:ea:7d:28:39:09:9f:9e:29:d1:
2d:d5:03:ca:48:bf:46:53:36:0b:9b:5d:96:f1:19:b6:d2:96:
8c:1d:da:3b:53:26:2d:17:3a:51:bc:b8:b8:2b:73:a7:40:11:
ff:8f:c0:92:e6:0d:9c:2c:be:7c:0d:eb:a6:9a:39:cc:43:29:
02:f6:3a:6f:54:30:dd:d9:b3:9d:97:1a:b7:11:83:5b:5b:62:
0b:47:8c:29:7e:91:9d:74:df:aa:e6:2b:43:20:d0:e3:70:69:
ab:0e:1a:a8:4c:3f:a5:77:c7:e2:d0:8b:84:07:3a:e1:41:80:
09:d5:ba:fd:08:2b:6b:be:0c:ad:5b:33:74:72:f0:17:62:d7:
07:79:c6:cc:1a:78:4a:d7:9c:7b:55:e8:1e:cb:d8:25:c2:d7:
4b:96:04:fc:c2:14:26:93:d7:18:04:b5:83:e2:b8:8c:1c:5c:
1f:c9:2a:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:08:08 2025 by rpki-client