Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.cer
File: Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.cer (raw, json)
Hash identifier: vFmaqqkS63bu2ymzNANbs6A4n/k/nqTk+313N1nV7RE=
Subject key identifier: 43:92:9D:91:6D:C9:C9:CE:34:63:FF:91:58:CC:BE:FE:9F:18:2C:3B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021928
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 05 Nov 2024 14:53:24 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 133958
IP: 103.76.90.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137512 (0x21928)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 5 14:53:24 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A9132C09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d7:10:a7:1a:26:f6:eb:b1:ca:0f:b5:18:7c:
85:63:ef:3d:d7:9b:09:80:b4:fb:04:da:4c:b6:0b:
3a:bf:45:96:e0:19:78:09:0f:09:58:c2:55:8b:39:
c8:6c:c3:7d:17:0a:05:6a:a9:da:42:ba:a7:ec:f2:
aa:00:88:7f:11:a5:63:ad:5f:a5:61:93:e4:69:20:
d0:62:15:c8:0e:50:e1:96:29:b7:3e:a1:c7:49:55:
c4:58:ea:c0:fa:a1:1b:ac:41:53:09:c2:1a:52:89:
34:7c:de:93:e5:79:e4:af:2e:90:c3:df:81:b9:39:
9f:3b:b2:59:83:83:74:3e:e6:3a:58:22:cf:7a:a0:
b6:60:b7:ca:57:17:27:aa:70:52:8b:d3:be:58:bc:
10:a2:c0:95:c2:84:cc:e7:13:77:45:36:f5:91:ba:
53:1d:71:ac:bc:52:60:ee:bd:83:e6:03:83:7b:8f:
b2:e4:68:0c:dd:27:3c:20:bc:d2:28:b2:a7:b5:c2:
46:4a:68:86:17:37:b6:43:bd:34:62:4e:01:b8:ea:
af:d1:42:4f:04:5d:c6:67:00:d2:52:9b:61:eb:a4:
6b:02:cc:57:18:89:5b:63:fa:58:2e:c3:2f:fb:89:
55:64:12:39:a2:24:1f:ce:71:b4:67:25:8f:f1:68:
7d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:92:9D:91:6D:C9:C9:CE:34:63:FF:91:58:CC:BE:FE:9F:18:2C:3B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133958
sbgp-ipAddrBlock: critical
IPv4:
103.76.90.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:9e:64:86:a6:e1:2f:c9:0e:38:92:d1:7c:d0:d0:33:25:ad:
e5:45:95:7a:7c:b1:80:9d:95:d5:05:87:47:5a:cb:41:be:2a:
28:50:af:76:0c:9f:e6:31:a2:63:7b:d7:25:6f:fb:87:40:23:
d0:85:33:24:36:cc:65:dd:05:3e:58:f2:d2:c0:11:8a:bd:40:
a9:e1:90:e5:86:11:bb:98:78:b8:bb:3a:8e:93:83:b5:b0:16:
c1:72:b3:d2:19:6a:83:c8:2a:76:b9:c7:7a:e2:e8:16:db:a1:
94:56:ae:41:2b:5a:80:38:08:ee:dd:a8:9a:9e:db:75:74:21:
49:9b:85:ed:74:05:e5:d4:a0:f4:c6:4e:ca:5b:2e:70:b7:55:
18:a4:43:f2:26:b5:70:f4:b2:c1:90:15:57:49:77:5b:2a:ac:
00:94:64:10:26:bf:72:27:3d:a8:ae:07:35:da:83:e9:5b:5b:
cc:69:f8:52:e6:fe:78:d8:06:08:6a:4a:34:1a:7a:e4:cb:9c:
85:24:a2:53:63:96:f0:6a:58:e0:47:e7:d5:43:f9:22:f7:f5:
7a:78:e2:01:0d:d3:f8:17:54:c4:fd:17:7b:dd:1e:f5:5d:2c:
03:47:75:ab:34:81:a2:42:e7:a6:41:f9:03:17:f0:5a:dd:d9:
9b:49:f7:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:08:04 2025 by rpki-client