Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J5ydeYJLogRvE4r2zbijsI8DvrM.cer
File: J5ydeYJLogRvE4r2zbijsI8DvrM.cer (raw, json)
Hash identifier: 0VPAHjJE/8utT4Zd+BDWtJH59aqEOYS3ilAf5EJZAv0=
Subject key identifier: 27:9C:9D:79:82:4B:A2:04:6F:13:8A:F6:CD:B8:A3:B0:8F:03:BE:B3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023868
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9170927/C106D33C04DC11F0B6B25A43C4F9AE02/J5ydeYJLogRvE4r2zbijsI8DvrM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9170927/C106D33C04DC11F0B6B25A43C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 19 Mar 2025 16:11:08 +0000
Certificate not after: Thu 28 May 2026 00:00:00 +0000
Subordinate resources: AS: 149507
IP: 163.223.120.0/23
IP: 2401:f5e0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145512 (0x23868)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 19 16:11:08 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=A9170927
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:0e:68:cd:ee:8a:49:71:bc:1c:60:e7:df:c6:
03:a4:09:89:3b:4f:87:47:71:65:a6:a9:ee:c9:eb:
11:9b:61:db:7a:7a:fb:d7:c1:7a:32:88:68:09:79:
6e:c5:32:95:ce:9d:eb:e1:1e:cf:d3:26:5d:e1:38:
2a:9a:be:08:6c:49:5a:f3:54:d9:b7:0a:ee:f7:f0:
1c:cb:a5:50:14:23:01:57:99:b4:e3:73:55:9c:01:
50:84:f7:68:5a:d0:73:0c:6d:21:49:d3:0c:46:f3:
15:bc:61:8f:97:0f:d4:75:39:dd:56:98:2f:18:3a:
40:db:bf:e1:28:98:43:04:ee:b3:28:73:c2:9c:19:
e4:bf:52:51:8f:dd:19:5e:b2:01:c2:97:74:a8:13:
b9:5c:39:aa:01:91:f0:7e:78:b2:5d:6a:fd:70:bc:
35:91:d8:74:a7:a5:22:b0:67:7e:d7:8f:52:fa:dd:
d0:11:04:cf:fb:15:83:e4:4e:90:7a:d1:a7:48:1a:
ca:96:43:27:4f:2e:3e:06:94:18:da:ae:c2:7a:6f:
73:c1:57:b7:a8:cc:b3:61:a6:e2:bb:e8:e7:0b:f2:
f9:9d:3a:02:67:45:cc:56:91:70:80:f4:b8:4c:99:
0e:0c:e3:f1:c7:95:c9:e3:71:83:ee:6f:51:59:a4:
46:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:9C:9D:79:82:4B:A2:04:6F:13:8A:F6:CD:B8:A3:B0:8F:03:BE:B3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9170927/C106D33C04DC11F0B6B25A43C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9170927/C106D33C04DC11F0B6B25A43C4F9AE02/J5ydeYJLogRvE4r2zbijsI8DvrM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149507
sbgp-ipAddrBlock: critical
IPv4:
163.223.120.0/23
IPv6:
2401:f5e0::/32
Signature Algorithm: sha256WithRSAEncryption
9f:62:40:89:a9:62:40:f9:9f:57:ec:fa:24:e4:3e:9a:1f:9a:
3e:dc:62:a3:e1:39:e0:ce:0c:27:eb:94:31:20:1a:bd:05:6e:
5e:93:b4:36:7e:a8:1b:9b:d3:cf:ad:d4:ae:4f:00:20:28:9b:
62:2c:34:f1:d0:42:77:31:fe:05:89:a0:2c:5e:f3:94:12:e0:
1a:fe:60:74:67:c8:f5:7a:3c:1c:e0:34:0d:0b:7d:a7:4d:65:
8a:9f:14:0b:cd:61:10:28:56:0f:bf:b9:db:98:13:0b:d2:3d:
ac:3a:72:28:fa:96:45:7a:b0:17:dc:ca:af:4e:73:fa:59:89:
81:78:4b:15:ac:18:78:5e:fa:82:bb:28:be:42:02:3d:f0:04:
c7:bb:be:e9:22:1b:b4:4d:a1:d2:67:ee:5e:50:99:7f:d5:4c:
61:bf:18:e8:7d:cb:54:51:75:66:0d:39:81:03:fd:16:9b:7e:
d7:c7:84:14:3d:3c:76:46:e1:63:b8:eb:93:01:74:7e:f2:55:
a1:d2:db:29:fb:51:55:fc:75:fb:4d:97:a8:92:cc:31:c1:4a:
98:2f:68:69:31:35:c2:07:8e:33:3f:fb:01:62:bd:9b:75:0b:
a1:e2:26:07:4c:bb:ca:33:0a:42:c7:6f:93:0d:c7:e0:81:84:
78:2a:ed:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 00:34:58 2025 by rpki-client