Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer
File: LzabRI0hcVlrosk82-JY6vMxdZQ.cer (raw, json)
Hash identifier: 4YkMrftlv3Lc4yBnyr8PpWNd9Dctjnd6ogW0g1uR1w8=
Subject key identifier: 2F:36:9B:44:8D:21:71:59:6B:A2:C9:3C:DB:E2:58:EA:F3:31:75:94
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022599
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 30 Dec 2024 16:35:17 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 141416
IP: 103.158.204.0/23
IP: 2001:df5:6480::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140697 (0x22599)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 30 16:35:17 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A9161A5A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:af:82:ba:65:7e:b0:5c:16:d5:b5:66:40:85:
28:a5:94:0e:10:72:8b:85:9f:27:67:aa:06:03:26:
4b:dc:82:f1:da:f0:82:81:94:5d:40:8d:13:dd:32:
b4:b6:e5:ad:81:78:41:91:0b:32:bc:85:2a:21:39:
3b:cf:0b:49:de:a4:a7:da:40:73:93:c5:0b:f8:d2:
ec:3d:63:6d:f1:e4:a4:e7:d4:4e:11:a4:2e:e8:8a:
d7:c9:23:66:16:11:20:e9:f4:0b:33:92:4c:91:77:
e7:c8:46:99:8a:d0:24:80:7e:6a:91:6d:d1:22:91:
b1:8c:ed:e1:e8:1d:1a:c7:77:83:d7:a7:ec:e8:7f:
13:a5:8d:71:3e:05:d6:9d:f9:0e:84:4a:14:06:62:
cb:f3:06:8a:0b:68:0e:69:4a:c6:0f:22:e5:14:8e:
07:99:be:13:14:48:fe:6a:d5:9a:74:91:85:ae:6e:
27:55:17:9b:e4:82:70:88:aa:e6:b0:8c:5f:fb:59:
f4:2b:b7:96:69:ec:58:c8:29:84:97:cc:e4:cb:29:
b9:ab:14:ec:e4:c8:a2:23:ee:95:e3:74:24:1a:f1:
fe:f1:e3:e6:17:69:09:56:aa:e1:ea:d3:57:79:7b:
e4:e1:7e:01:68:f2:ad:6c:5e:99:84:2a:23:35:93:
69:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:36:9B:44:8D:21:71:59:6B:A2:C9:3C:DB:E2:58:EA:F3:31:75:94
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141416
sbgp-ipAddrBlock: critical
IPv4:
103.158.204.0/23
IPv6:
2001:df5:6480::/48
Signature Algorithm: sha256WithRSAEncryption
54:e2:f5:99:e8:ec:59:6f:12:84:28:44:a5:5b:41:1c:85:14:
90:39:ca:98:9c:3f:d9:98:12:66:0a:41:4c:90:37:64:ec:bc:
82:e6:ac:41:7d:66:76:7d:3d:31:11:d6:d9:ca:4c:64:22:72:
66:75:bb:ef:3e:b4:11:75:8d:0a:64:7c:12:05:f8:e3:41:17:
97:9f:fd:d0:41:42:f9:65:e9:0c:e2:4d:af:2f:1a:eb:b1:63:
16:64:0d:98:d7:80:47:7a:43:f9:12:d9:23:0d:da:f4:ea:00:
41:e0:7c:e3:40:43:c4:75:de:a4:6d:1c:42:92:04:8d:13:02:
7d:dc:59:ac:bc:08:f8:7d:34:0c:16:a2:f4:74:9e:b9:2a:36:
77:4d:36:0e:d2:32:f0:f6:81:6f:ab:36:95:c4:b3:89:91:cf:
d8:59:c0:3b:50:31:73:26:51:1e:7d:3e:8d:58:07:41:f6:18:
80:62:78:c0:86:67:f7:73:8c:9b:9d:8e:33:a9:6a:17:d2:00:
c1:5f:cd:ae:4e:6f:73:fb:32:2a:79:a6:b6:1a:e7:5f:ac:4b:
c4:c5:88:2e:d5:ce:c1:87:ae:55:50:00:c6:d7:40:3b:76:f4:
29:cf:cf:2c:e5:0d:b6:de:13:11:56:15:e9:bb:9c:d2:7a:5f:
f7:3e:c6:ed
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 02:15:37 2025 by rpki-client