Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBwH0VEnGWnhPhz9FhsfYHcOKQ0.cer
File: LBwH0VEnGWnhPhz9FhsfYHcOKQ0.cer (raw, json)
Hash identifier: +2YdZxqX/V0i4uGYwQORwx/blTd3CEdNm2uQHdsjaNo=
Subject key identifier: 2C:1C:07:D1:51:27:19:69:E1:3E:1C:FD:16:1B:1F:60:77:0E:29:0D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022BC3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9175648/218F268ADC9E11EF8B62DD5FC4F9AE02/LBwH0VEnGWnhPhz9FhsfYHcOKQ0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9175648/218F268ADC9E11EF8B62DD5FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 28 Jan 2025 04:21:08 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 153558
IP: 163.61.16.0/23
IP: 2001:df5:c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142275 (0x22bc3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 28 04:21:08 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A9175648
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:49:b8:5f:68:5c:d4:e5:75:5c:eb:4e:33:ed:
02:d3:87:7a:64:48:e6:25:7f:80:7c:34:d1:8a:60:
ad:a3:ed:c7:fd:2f:aa:23:fb:50:37:5c:d5:22:2b:
ad:0d:a4:3b:06:cc:9d:26:48:d8:54:15:90:70:ce:
0e:e0:34:97:56:01:69:1d:dc:92:f7:4a:2f:b7:55:
df:09:85:5d:b4:9c:e2:81:35:a8:22:05:ee:a0:28:
94:f8:c4:f2:bf:ba:b0:a7:e9:79:a3:18:06:8d:9e:
db:cb:8d:57:33:40:35:2f:2d:93:ae:d9:3d:a0:07:
14:17:c9:5e:35:01:51:ab:55:e9:11:e5:46:14:87:
5c:40:33:04:e5:d0:25:25:27:1c:5e:3e:0e:16:08:
b4:bf:82:75:61:8e:88:19:94:00:05:09:a0:8e:99:
76:7e:50:0a:b6:6f:6f:4b:5c:18:38:85:39:dd:93:
e4:be:9c:c1:dd:d5:e8:51:b9:08:1f:3c:d2:22:ba:
64:fc:15:69:70:83:9c:df:b0:14:b2:a8:a0:20:03:
ec:07:92:b5:07:f9:cd:a0:0a:91:14:11:9b:df:24:
50:c3:0d:cc:65:7d:94:25:ef:09:0a:4e:c1:a0:ab:
92:34:0f:11:fa:a4:ba:34:2c:6b:0f:0b:b4:01:07:
f3:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:1C:07:D1:51:27:19:69:E1:3E:1C:FD:16:1B:1F:60:77:0E:29:0D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9175648/218F268ADC9E11EF8B62DD5FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9175648/218F268ADC9E11EF8B62DD5FC4F9AE02/LBwH0VEnGWnhPhz9FhsfYHcOKQ0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153558
sbgp-ipAddrBlock: critical
IPv4:
163.61.16.0/23
IPv6:
2001:df5:c0::/48
Signature Algorithm: sha256WithRSAEncryption
09:2f:73:dd:ff:fc:a1:b8:cc:c1:cb:43:0b:22:12:69:e1:46:
34:0d:d2:c0:ba:6a:bd:26:8f:e9:19:be:fd:d1:3c:ad:f7:ce:
8f:cb:26:0a:17:ad:e6:4e:d7:37:fa:61:76:ba:23:59:ee:bd:
1c:9e:67:5d:f7:87:4f:b0:b0:34:f4:ea:78:50:75:f7:c4:28:
02:66:4a:16:d4:34:79:5e:74:7a:93:3a:99:54:77:73:f4:64:
f8:dc:eb:ca:2a:d6:4e:6d:a6:fc:e6:3a:6c:e3:2a:18:96:49:
41:7f:d2:b5:03:22:e0:99:8a:b0:c2:8e:9e:a7:b5:87:79:56:
2e:f4:1c:8e:e9:55:91:a3:58:2d:14:51:77:71:b2:d7:a1:c6:
20:a9:e3:86:7a:dc:2d:64:98:70:a8:4c:f4:e9:ac:14:7c:04:
cd:59:a8:54:cd:48:03:ca:82:ea:77:f8:ab:67:95:8d:10:49:
6d:f9:1e:2f:46:db:91:77:10:35:0f:2c:d7:c6:d0:58:25:d7:
c2:af:fe:09:4b:04:78:e6:76:83:1c:53:ec:a4:11:1b:11:f0:
e2:98:0d:f7:58:d7:e8:ef:41:16:24:a2:8e:ca:25:fe:f6:dd:
e6:94:94:32:58:ed:09:4e:20:1c:77:f1:a1:46:9d:9b:de:a9:
bd:b7:cd:cd
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 20:19:19 2025 by rpki-client