Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIWuE0tjOKEnZXKD67wWwS8guGI.cer
File: QIWuE0tjOKEnZXKD67wWwS8guGI.cer (raw, json)
Hash identifier: sZcyWTTE0v/yx74aP99iLgXpp21UaodR53UfQ48jQBs=
Subject key identifier: 40:85:AE:13:4B:63:38:A1:27:65:72:83:EB:BC:16:C1:2F:20:B8:62
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0232FA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/QIWuE0tjOKEnZXKD67wWwS8guGI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 24 Feb 2025 20:42:27 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 141688
IP: 103.162.4.0/23
IP: 118.91.190.0/24
IP: 202.89.73.0/24
IP: 2407:bc0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 14 Apr 2025 18:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144122 (0x232fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 24 20:42:27 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A91E80FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:3a:09:58:92:62:b5:d9:e4:55:2c:89:6e:54:
59:99:be:ea:c2:53:4b:bf:86:07:72:75:27:26:7e:
15:b4:a4:cf:2a:6a:22:10:b3:0d:89:3f:c0:8a:9f:
e6:c2:99:fd:cd:76:d3:04:f0:1b:c2:f7:06:d5:05:
41:02:72:b2:e2:1e:bb:14:b7:f3:e6:bb:11:1c:fa:
a2:48:31:0f:8e:02:f6:bb:a3:9d:05:6e:08:60:0a:
d7:a3:46:e4:39:df:43:43:46:dc:3f:d0:97:9a:cf:
e3:09:96:fe:96:57:15:d8:4c:cb:25:23:dc:20:17:
93:cf:a3:92:32:40:5c:19:9b:79:10:6f:73:73:b6:
da:06:ca:c7:ee:05:cd:e8:51:0c:e9:2c:41:fa:90:
d1:3a:c9:db:22:13:2c:7a:e2:96:62:cf:3f:24:a4:
27:d8:69:c3:13:53:18:28:50:7c:6c:c5:57:56:4f:
b4:fa:f1:fc:3b:07:c5:f9:45:30:de:2a:c2:51:f3:
48:2d:e7:57:80:b2:1c:f9:81:9c:84:07:46:8d:f1:
6e:80:67:95:01:82:ce:df:84:f4:9b:5a:8c:eb:f6:
87:e3:9d:ba:b3:a0:54:0f:ec:4a:0c:c1:0a:98:c4:
95:46:67:33:62:7c:d3:c6:d9:05:e8:1f:32:d9:41:
80:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:85:AE:13:4B:63:38:A1:27:65:72:83:EB:BC:16:C1:2F:20:B8:62
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/QIWuE0tjOKEnZXKD67wWwS8guGI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141688
sbgp-ipAddrBlock: critical
IPv4:
103.162.4.0/23
118.91.190.0/24
202.89.73.0/24
IPv6:
2407:bc0::/32
Signature Algorithm: sha256WithRSAEncryption
43:b3:da:be:e2:da:cd:26:eb:63:7e:53:83:60:77:95:be:de:
ee:36:c4:ae:f6:b1:41:5a:ed:fa:85:80:42:c8:ef:a3:2a:c8:
fc:25:11:bb:a7:91:b7:8a:ae:94:58:79:f7:4b:83:70:10:1d:
96:7c:91:62:7e:ba:98:d6:14:88:e7:71:12:75:5a:73:62:bc:
c1:b7:6d:9a:ba:a4:9a:ea:d4:e2:d9:a5:5e:22:13:ac:ba:69:
69:25:60:cd:19:ee:54:2a:27:76:db:2e:bd:ff:fa:ff:45:e9:
0b:72:35:28:e9:ad:dd:a9:2f:23:a0:59:50:b5:93:c2:16:4d:
63:ce:ec:f5:af:52:bc:f8:84:72:e5:08:f1:d3:23:3a:ac:1a:
61:d2:78:15:f7:5a:6d:8e:f8:ac:b9:98:e7:c1:7e:7e:d5:b1:
0c:8f:40:75:f6:ff:3b:6d:8e:9d:12:d6:23:cd:3c:d8:76:d8:
74:79:c4:dc:d8:f1:23:fd:24:ea:3f:dc:7b:42:83:d6:39:55:
d1:5d:98:e1:36:cd:1c:c2:90:0a:32:aa:a7:c8:46:c9:2a:39:
74:5b:ca:e5:5f:a6:30:7c:42:0f:b6:aa:47:01:40:ea:3c:b9:
5c:3d:a7:dd:b5:0e:d0:0b:8d:52:d9:5b:6f:00:07:96:51:34:
ef:a8:09:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 21:02:20 2025 by rpki-client