Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDTzNZTMO-PAfo54N2v8QzJjFUg.cer
File: LDTzNZTMO-PAfo54N2v8QzJjFUg.cer (raw, json)
Hash identifier: chkXdpBHpGpVNiGbu/t6GoUX4FYLPkj01IdO5AnA1ZE=
Subject key identifier: 2C:34:F3:35:94:CC:3B:E3:C0:7E:8E:78:37:6B:FC:43:32:63:15:48
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021DED
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 27 Nov 2024 14:30:13 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 17554
AS: 38864
IP: 202.68.192.0/20
IP: 2001:4480::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138733 (0x21ded)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 27 14:30:13 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A914ADD8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b8:5b:7a:cf:8b:51:f8:c7:6e:8e:fe:63:bd:
34:35:e1:1e:bc:47:ab:d0:f4:71:3f:db:49:5b:a9:
6c:5a:90:92:20:55:87:4d:21:89:1f:ef:4c:0e:f2:
f4:c4:0e:fb:ab:16:7a:16:8f:88:59:8b:bf:58:23:
07:68:0d:67:b8:08:5d:f6:eb:ca:58:d7:78:2c:b3:
09:65:47:4d:40:b0:92:56:21:af:eb:d3:5c:6a:8e:
c9:ba:f5:1b:92:c9:6b:9d:b7:d3:90:e1:bb:22:d5:
f1:92:98:96:e1:ec:77:1f:63:f0:49:eb:8a:20:e4:
ca:3c:7d:66:8c:e7:9f:43:62:41:86:84:b6:46:80:
b1:0e:d1:05:07:86:bd:0a:79:20:87:19:bf:cf:59:
df:b4:29:e1:bf:46:a8:56:7e:1d:b1:c5:03:e5:6b:
13:44:6b:a9:5c:50:be:7a:a9:f6:3b:a9:a7:be:35:
ec:82:11:f8:c3:f4:3c:7f:40:b3:10:fc:58:78:88:
fd:1b:24:20:b6:69:c9:b0:da:bd:79:fc:57:70:90:
a6:86:86:d1:95:00:32:2a:b1:d9:81:c6:66:4c:9d:
fb:66:29:1e:49:d2:6f:df:68:19:4a:e0:11:6a:12:
56:2f:f6:d5:61:4b:53:c2:e1:c3:9a:91:f8:d4:0a:
85:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:34:F3:35:94:CC:3B:E3:C0:7E:8E:78:37:6B:FC:43:32:63:15:48
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17554
38864
sbgp-ipAddrBlock: critical
IPv4:
202.68.192.0/20
IPv6:
2001:4480::/32
Signature Algorithm: sha256WithRSAEncryption
7b:ac:e2:d5:36:93:d2:2d:43:ae:74:51:71:2c:bb:1a:e4:ee:
b1:91:19:1f:62:71:4b:c1:50:12:b4:04:d4:32:d6:a0:fa:06:
cf:63:71:b7:94:fd:5d:7f:75:61:96:0c:17:74:5c:d5:52:a3:
bc:c7:72:a3:34:a4:6c:9d:ea:13:9e:e2:e2:18:94:55:ef:00:
9d:8b:35:2b:54:db:ec:03:14:60:0d:99:7a:72:21:64:28:13:
a9:67:8a:e5:78:51:a7:bf:a6:45:8e:fd:65:c3:4b:af:fa:8d:
9a:e0:42:2f:ee:f2:cf:fb:ba:1b:32:8d:e6:20:b0:a6:af:22:
33:8e:f8:c7:d3:da:4c:aa:95:d1:8a:bb:fb:d2:27:27:c1:c7:
33:c6:31:2b:44:58:23:70:5f:8e:e8:e1:92:2d:f5:a2:61:b3:
a2:17:70:69:8a:c5:49:34:1f:cd:78:12:4f:b4:89:38:ef:99:
6e:80:b0:ea:fd:99:c6:9a:05:44:ab:08:ea:f1:79:cd:ef:9e:
cb:11:1c:c3:61:bc:26:52:c5:f0:bf:6c:d8:77:09:e3:c3:d8:
f5:01:2f:8f:84:ce:83:ff:61:f2:82:89:4f:1a:e1:92:8a:bd:
8d:c3:7e:0f:98:c2:7c:74:ca:37:94:e3:89:f3:6b:00:85:d3:
32:da:71:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:12:32 2025 by rpki-client