Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR_LclXFJQPhCuWEsRiaFc9WB04.cer
File: PR_LclXFJQPhCuWEsRiaFc9WB04.cer (raw, json)
Hash identifier: /qEbP7T+yY8Gt+FGhaQmVGhVsFpW4VH6+Kq9Fha7aiM=
Subject key identifier: 3D:1F:CB:72:55:C5:25:03:E1:0A:E5:84:B1:18:9A:15:CF:56:07:4E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0239C6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9112FE1/C456102E09F111F08B44A325C4F9AE02/PR_LclXFJQPhCuWEsRiaFc9WB04.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9112FE1/C456102E09F111F08B44A325C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 26 Mar 2025 03:24:09 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 137443
AS: 152450
IP: 43.231.184.0/22
IP: 103.50.252.0/22
IP: 2401:7b20::/32
IP: 2404:de80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145862 (0x239c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 26 03:24:09 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A9112FE1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:1c:b4:92:6a:45:2a:5c:c9:6f:09:bf:48:08:
d0:89:fd:20:31:8b:de:87:1e:fc:3c:9a:ae:9b:60:
c0:97:7e:b0:13:04:fd:13:b6:0d:82:0d:b5:dd:dc:
4c:27:d6:99:53:9e:51:60:28:33:60:ff:be:f7:48:
6c:a9:07:fe:5a:80:98:54:b2:28:64:70:00:16:89:
54:97:10:d3:26:c0:6a:3c:16:66:2a:dc:32:8d:be:
ff:20:fb:bf:9d:33:2c:bd:94:6f:b8:5d:29:b1:27:
ff:5d:84:eb:c6:72:a9:7b:66:5e:e4:c1:6c:ea:9b:
0b:0d:ca:ee:b0:df:18:72:e4:af:25:f3:9c:c9:fb:
5b:0a:a8:4a:c6:2c:20:d3:ba:6c:e3:23:51:fd:31:
48:cb:9a:cc:e3:06:82:c4:6a:90:55:b6:4c:32:98:
86:78:22:d8:1c:08:88:59:64:bc:7b:4f:25:7a:64:
00:69:86:f3:0d:ee:aa:8e:02:56:17:84:bd:ea:95:
f8:b8:04:f4:ee:a5:d9:11:7f:ab:8f:a1:6b:95:af:
60:19:ef:f6:73:2e:c0:58:45:48:54:25:91:2a:01:
79:b3:c0:02:28:e7:0a:5c:87:d0:a5:92:2e:3f:de:
3a:c7:4f:1e:23:04:a6:0d:85:47:45:f9:ac:ca:b7:
63:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:1F:CB:72:55:C5:25:03:E1:0A:E5:84:B1:18:9A:15:CF:56:07:4E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9112FE1/C456102E09F111F08B44A325C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9112FE1/C456102E09F111F08B44A325C4F9AE02/PR_LclXFJQPhCuWEsRiaFc9WB04.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137443
152450
sbgp-ipAddrBlock: critical
IPv4:
43.231.184.0/22
103.50.252.0/22
IPv6:
2401:7b20::/32
2404:de80::/32
Signature Algorithm: sha256WithRSAEncryption
da:af:4a:32:29:b1:70:f5:4e:b8:7e:37:6e:5a:32:f2:7d:11:
dd:d3:4a:f3:ba:7e:4c:20:ba:50:0f:f9:a7:ad:d3:63:3c:1d:
73:b7:46:27:c4:2f:3a:4c:f6:81:65:93:42:9e:2b:5e:37:ed:
28:c5:b2:26:45:db:65:53:b8:13:f4:4f:9c:b9:2f:9f:3a:71:
a1:ee:69:0d:4f:de:9e:6a:8a:0d:d1:26:e7:e4:f6:40:c3:fe:
7f:ac:65:66:be:c4:ad:3f:05:aa:80:72:19:ab:65:5d:da:21:
36:5f:63:e0:dd:43:f5:28:09:00:e4:90:4f:ce:b6:3a:b2:73:
dc:d5:47:e1:78:93:bb:2b:b4:ad:ae:54:e9:eb:72:45:7c:bd:
1c:e3:28:bb:38:bc:ef:a1:6f:05:c7:b1:73:08:ff:88:5d:b6:
84:2e:99:61:16:65:14:c8:92:ea:eb:63:12:2c:76:64:53:af:
53:89:6c:e2:fa:4d:b9:e4:22:ef:ce:53:ee:31:4d:a1:f7:c7:
91:87:bf:2f:b9:65:e0:bb:f1:12:3d:84:c6:d3:2d:26:14:f7:
db:25:16:82:99:b4:49:08:87:3d:b9:05:3e:d9:73:ca:8b:1a:
e4:b0:39:33:50:e6:02:7d:6b:88:c3:a6:38:ee:89:99:cd:d2:
20:ef:82:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:39:53 2025 by rpki-client