Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer
File: OhbEBL_tNHJEowpa__ZuSZKqKCE.cer (raw, json)
Hash identifier: w10/cqXBHjYBEtIffHOtNQnQlUIjle3JBHNbr6oefWY=
Subject key identifier: 3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0223E5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 20 Dec 2024 18:36:24 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 149281
IP: 103.177.220.0/23
IP: 2001:df0:2bc0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 17:46:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140261 (0x223e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 20 18:36:24 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91A65C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d9:7d:0a:8d:d3:e8:93:96:d7:e8:42:e9:63:
3a:55:aa:32:9a:4a:1a:99:3d:b0:e4:9b:17:e8:66:
dc:e7:61:17:c8:d9:5d:8a:37:15:f5:9f:53:32:26:
17:9b:fe:1e:57:8b:a3:9f:5e:0e:1a:ec:ed:02:f5:
b9:ff:36:1d:6b:ae:80:68:ab:b7:7a:eb:61:4f:cc:
8e:fa:d3:6e:5b:be:fa:a6:62:53:37:5f:81:d5:c8:
e3:67:17:2f:b5:04:f4:76:56:11:5b:9d:8c:07:82:
2c:af:04:52:3e:d9:56:7b:6b:ad:3f:26:31:71:02:
72:81:7d:e5:4e:97:bf:49:d8:ee:90:21:a8:c5:e0:
15:21:29:fc:8c:81:62:fd:6d:d2:f7:06:04:df:7c:
83:35:90:b9:85:56:49:d9:26:45:e5:d8:ac:5a:87:
08:03:20:53:ae:c6:53:16:03:02:bb:28:ac:04:88:
38:d0:a9:30:92:31:ae:a0:ed:b8:18:2d:3a:35:79:
05:08:fd:4e:cc:3d:16:05:83:63:51:e9:d4:f2:b9:
05:d1:b0:f7:0e:18:cf:cc:6e:e5:9f:a9:99:22:89:
f2:49:cc:94:9f:79:67:71:56:c0:a1:5e:6e:ff:b6:
c1:11:18:21:b2:36:b6:75:c4:43:22:80:f6:09:a4:
e9:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149281
sbgp-ipAddrBlock: critical
IPv4:
103.177.220.0/23
IPv6:
2001:df0:2bc0::/48
Signature Algorithm: sha256WithRSAEncryption
33:f2:7b:cb:e6:d8:5f:42:a6:b7:9f:78:20:84:90:08:e6:8f:
9d:11:54:0f:12:c6:be:06:50:2f:68:22:ed:eb:4e:18:54:5a:
5f:84:4c:28:81:77:92:2a:4c:3e:66:bf:c1:0d:d3:cb:dd:9f:
d5:15:9b:5b:7f:dd:70:df:a7:ee:2e:09:29:e5:d7:eb:c7:66:
4d:6c:40:49:92:a6:ac:7c:5f:6b:fa:10:d5:11:eb:2c:e9:f6:
b3:d8:d8:2b:92:42:1d:be:b1:13:38:5f:12:c5:2b:59:53:9c:
d9:fd:c8:ac:bd:5d:6f:ee:c4:b5:54:ff:df:11:f3:32:87:15:
a2:24:6c:28:14:c5:7a:08:e3:3e:67:33:f4:83:8b:5d:63:e8:
94:12:e7:8f:54:2e:90:68:26:c3:33:6e:2c:e3:02:93:8c:dc:
43:9e:13:e4:92:e9:f2:15:3b:35:b2:0c:d0:57:62:dc:7d:ba:
72:d3:70:9e:58:f1:33:96:8c:5c:2f:40:f1:f6:3e:d6:7a:c9:
91:11:59:e8:05:22:c1:8c:3b:88:af:ea:6e:ba:7e:e3:67:96:
9f:ad:48:1a:30:c3:2d:33:09:8e:ac:0a:bc:13:b4:ba:33:8e:
7f:e3:da:c7:64:86:2a:e6:86:cf:0a:62:16:67:6a:de:0b:1c:
13:74:cc:f8
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 20:24:50 2025 by rpki-client