Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jaw-SPLljojGBUR5jsZyQHa1NBM.cer
File: Jaw-SPLljojGBUR5jsZyQHa1NBM.cer (raw, json)
Hash identifier: /4W0a70GZ6Q2gnAE7lz4Hb/tx2AtweA1lP4gO3vBdj4=
Subject key identifier: 25:AC:3E:48:F2:E5:8E:88:C6:05:44:79:8E:C6:72:40:76:B5:34:13
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022BEE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9153E2E/FFA35F04DD9811EFA9AF4346C4F9AE02/Jaw-SPLljojGBUR5jsZyQHa1NBM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9153E2E/FFA35F04DD9811EFA9AF4346C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 28 Jan 2025 16:57:51 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 45337
AS: 55360
IP: 103.11.20.0/24
IP: 202.58.228.0/24
IP: 202.129.215.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 07:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142318 (0x22bee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 28 16:57:51 2025 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A9153E2E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:09:dd:3f:77:90:92:25:b2:68:de:32:8a:a4:
cd:97:67:96:a6:30:6c:bf:da:b2:85:33:fb:9f:9d:
3e:23:ab:93:ef:74:31:c3:e8:12:62:66:da:2f:64:
ea:83:50:4b:25:8d:fa:a6:ae:62:72:d1:92:b2:e1:
43:65:ba:99:d3:8c:28:58:47:59:15:c8:1a:7f:48:
a9:1b:f7:ef:15:7d:ea:37:38:2a:05:ef:6c:19:7f:
84:28:d4:6f:43:34:61:2c:1b:58:bc:12:fb:cd:81:
d9:58:e9:54:16:ef:ee:49:1f:22:09:cb:3d:fb:4b:
cf:a6:75:e1:9c:f9:62:1d:ab:ae:d2:c4:bf:7c:01:
da:bb:f6:fc:ba:e1:34:9b:6b:32:e4:f2:5e:e5:72:
2b:f2:5d:6a:b6:e4:60:ab:1a:4c:6e:83:11:f5:bc:
85:9b:b8:d9:37:40:2d:6d:9c:a5:4e:85:f5:37:5d:
5e:28:95:e3:14:58:67:09:dd:3a:ec:21:38:3c:ff:
20:26:d5:33:bb:3a:e0:59:9d:61:93:1f:a3:b0:13:
c7:dd:c3:21:f1:8b:52:d9:cd:c4:1c:6a:a2:ed:d5:
76:69:6c:a2:52:00:bf:9c:7c:6e:e4:fb:19:29:d3:
16:3c:20:cd:fa:03:6d:98:c7:d8:c4:4e:da:ab:54:
0a:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:AC:3E:48:F2:E5:8E:88:C6:05:44:79:8E:C6:72:40:76:B5:34:13
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9153E2E/FFA35F04DD9811EFA9AF4346C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9153E2E/FFA35F04DD9811EFA9AF4346C4F9AE02/Jaw-SPLljojGBUR5jsZyQHa1NBM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
45337
55360
sbgp-ipAddrBlock: critical
IPv4:
103.11.20.0/24
202.58.228.0/24
202.129.215.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:0c:40:21:c8:1b:c0:ed:a2:32:fc:3a:48:78:7d:39:e7:ae:
1d:df:51:d5:7e:f4:32:e0:1c:4f:05:ae:8f:e2:48:d9:ce:c4:
75:7e:cc:d5:a8:81:f0:de:7f:fa:61:b1:1b:37:7c:f8:1d:91:
2c:30:29:15:7c:c9:1c:1e:e3:42:d6:34:95:fb:2f:77:05:07:
e1:c7:bc:00:73:26:23:69:14:7d:1e:44:8e:63:7a:7e:3d:46:
2f:01:df:5b:f7:f7:62:00:f6:bf:cb:2e:35:08:a4:bf:c4:29:
1d:c7:f1:3d:e8:be:96:82:69:a6:3b:aa:31:a3:c8:1e:fe:9f:
e0:db:6d:51:d4:cd:42:d8:36:43:3c:16:4a:69:43:5c:68:69:
44:b9:0f:40:c9:ca:a2:14:43:59:a9:6c:e3:66:5e:ff:13:17:
7c:ad:1c:23:5c:05:ec:d5:bb:ad:3d:ec:fd:79:e1:a2:5e:6a:
8e:51:16:38:18:4b:14:5b:ca:0d:40:b2:b9:c3:e2:44:7e:73:
e9:92:de:df:b2:9f:ac:6e:c6:bb:a7:df:1a:81:3e:dd:88:1c:
46:f8:51:15:69:d1:c6:b7:d0:cd:4c:32:66:a8:cc:4e:ab:59:
53:45:a2:25:54:c8:4e:62:4f:23:35:b3:2b:39:ca:c4:46:57:
79:c4:8a:ac
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 10:40:26 2025 by rpki-client