Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer
File: HaAa_AiIyqYXHgoOdBz8kE7S328.cer (raw, json)
Hash identifier: 1rx0qhx/mlM1xMtpJsNYi9sMXDGP+Q9CjYgyn/n91Gk=
Subject key identifier: 1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023BAF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 01 Apr 2025 15:25:00 +0000
Certificate not after: Thu 28 May 2026 00:00:00 +0000
Subordinate resources: AS: 135107
IP: 103.86.188.0/23
IP: 103.209.152.0/23
IP: 202.27.10.0/23
IP: 2401:f340::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146351 (0x23baf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Apr 1 15:25:00 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=A91352C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a2:f6:86:6e:4c:23:45:c8:3d:f4:1d:a1:f7:
3a:84:fa:dc:86:75:7a:f2:e5:b0:f9:3f:8c:4f:81:
32:59:5d:0a:0e:d6:7e:c3:05:7a:60:9b:f5:bb:dc:
e1:1f:44:bb:f9:ca:73:ad:69:a7:e1:f4:9b:fd:3a:
ff:71:bf:1c:49:a9:a4:e6:80:db:c9:e4:ec:26:9a:
f8:41:24:8d:e2:8a:82:fb:ca:26:50:17:76:76:04:
ce:cd:ff:08:65:d6:45:6d:75:75:b8:2e:0c:ee:12:
e5:bc:fd:2d:e5:2d:a6:3b:58:32:42:9a:69:bf:4c:
5d:2b:21:af:cb:82:f3:72:27:cb:1e:b5:92:37:d0:
e4:8f:7f:87:7c:ad:8c:51:e1:be:cc:0d:51:b0:38:
c0:5c:3d:2c:01:b2:2a:cd:aa:82:2a:3a:0b:9d:cf:
00:2e:98:d8:b7:38:09:02:29:75:8b:5d:21:d6:31:
23:b1:ac:67:a6:91:73:86:85:29:40:b6:9c:da:97:
fa:8c:12:84:0d:e4:26:10:59:bb:b8:20:5b:8c:b2:
f3:d3:01:4f:9b:d9:03:66:b3:dd:c4:ef:ab:21:b8:
0d:17:0f:a6:c1:50:5c:49:41:81:71:a2:ed:c3:20:
d3:13:77:0a:3d:5a:04:ef:a0:86:69:04:4b:d2:13:
d3:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135107
sbgp-ipAddrBlock: critical
IPv4:
103.86.188.0/23
103.209.152.0/23
202.27.10.0/23
IPv6:
2401:f340::/32
Signature Algorithm: sha256WithRSAEncryption
ab:a3:1b:ff:43:35:c7:24:72:32:50:16:27:ca:9d:27:18:b4:
78:4a:5b:fb:97:71:89:74:c2:aa:4e:96:bf:23:85:91:9f:7d:
92:f3:a4:f5:c5:f1:75:c6:b4:80:8b:71:3d:45:bf:9d:44:37:
6c:f8:1d:13:08:b0:be:57:df:53:32:82:b5:ac:bb:5d:fa:af:
1b:01:bb:01:15:82:bf:54:7a:a5:3d:0f:a5:a3:a8:db:b9:a9:
36:94:24:11:b3:0e:89:1a:5a:87:d3:43:32:db:dc:58:66:64:
f8:c7:5d:04:f0:22:2f:e0:48:76:25:7a:9a:06:da:fa:00:f5:
ab:a4:01:67:61:65:8f:e5:dd:72:ce:89:da:31:93:e1:38:8e:
3a:cf:79:97:bd:54:b2:31:15:94:0b:2e:c4:60:b0:89:48:71:
5c:34:d7:cb:28:58:7f:c1:8a:77:8c:14:8f:ee:81:b4:f6:ea:
8a:e7:f7:61:76:a7:e0:d7:4f:6f:0e:03:37:02:80:74:89:d8:
d7:f0:6e:60:28:cb:ea:4b:32:16:48:27:b4:3d:f9:a4:29:0c:
9c:dc:1a:e5:1d:ee:f0:8a:b3:b0:79:85:67:a2:55:dc:4c:5b:
ba:4b:0e:d9:ec:3e:1f:46:c2:0e:3d:2a:5e:ca:00:33:15:8f:
f3:24:a2:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:11:26 2025 by rpki-client