Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOlPucJEwgzdpE57Dop6cZqXdA8.cer
File: QOlPucJEwgzdpE57Dop6cZqXdA8.cer (raw, json)
Hash identifier: v3wZAk3LoFKiKQWEqs53fhIvvsXlN7CYnValQxLwttA=
Subject key identifier: 40:E9:4F:B9:C2:44:C2:0C:DD:A4:4E:7B:0E:8A:7A:71:9A:97:74:0F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023DD9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BA2AB/111E55E0097E11EEAE7F351FC4F9AE02/QOlPucJEwgzdpE57Dop6cZqXdA8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BA2AB/111E55E0097E11EEAE7F351FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 08 Apr 2025 19:11:23 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 151061
IP: 103.126.40.0/23
IP: 2001:df2:37c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 16 Apr 2025 22:35:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146905 (0x23dd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Apr 8 19:11:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A91BA2AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:89:7c:5a:4f:4d:8a:2e:cb:c2:c1:d5:29:1c:
4f:c3:64:fc:e3:1e:41:4f:76:5b:44:66:93:c0:bc:
16:9c:ff:47:58:f9:c0:9f:6e:1c:9a:e9:d6:ae:ce:
e5:78:5a:d8:c4:65:2a:9f:23:55:bc:e1:19:08:38:
ea:96:ef:74:d2:7a:e0:78:80:24:97:41:2b:cc:2d:
60:24:ff:c4:d1:0d:78:9c:36:b4:99:ff:5e:67:a8:
ca:8a:e5:dc:83:66:ef:a4:db:33:2b:26:6c:a2:65:
95:3f:0a:c7:9a:7d:38:e4:fa:04:06:10:d2:a7:1c:
e9:82:9b:34:8d:0d:1b:cf:54:92:11:7c:45:7b:0e:
9d:cd:94:ff:ac:8a:d7:4e:34:cc:22:ed:96:8a:e8:
d2:9f:a9:d9:b4:50:64:62:79:5f:bb:fe:71:b4:5b:
49:b1:90:b1:74:55:31:d5:16:8c:03:ee:16:33:7a:
3c:2a:5a:ec:f4:96:21:02:5b:a2:95:32:4a:82:d9:
1c:91:84:d4:ba:35:09:09:3d:e2:d6:7f:98:3a:61:
bb:5f:8f:93:76:0c:97:64:c1:25:14:16:d0:b6:de:
36:84:0c:a0:5f:94:f4:71:d4:70:e7:e3:83:d6:2f:
b0:a2:68:27:2f:74:4e:fc:2d:f5:a6:30:6d:44:6e:
16:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:E9:4F:B9:C2:44:C2:0C:DD:A4:4E:7B:0E:8A:7A:71:9A:97:74:0F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BA2AB/111E55E0097E11EEAE7F351FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BA2AB/111E55E0097E11EEAE7F351FC4F9AE02/QOlPucJEwgzdpE57Dop6cZqXdA8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151061
sbgp-ipAddrBlock: critical
IPv4:
103.126.40.0/23
IPv6:
2001:df2:37c0::/48
Signature Algorithm: sha256WithRSAEncryption
b7:62:6b:90:42:53:29:a3:4c:dc:0a:92:8f:35:85:8c:9f:ca:
ee:d7:46:2e:fd:22:de:9d:46:aa:3a:f2:a0:b0:c4:06:a4:7b:
e5:fc:39:b8:a5:41:ec:4c:b9:75:a0:7d:2d:d6:12:7c:c7:fc:
b8:1a:8f:3c:ab:de:44:63:84:e2:76:e4:87:28:8f:5e:64:eb:
f8:17:b1:e3:73:1c:18:9d:eb:50:f4:68:6a:59:4a:9f:3b:ff:
ad:da:ea:32:41:de:ac:18:fc:43:6c:60:62:9f:5e:6c:ca:c1:
4b:42:24:47:52:c5:d0:62:b3:ee:67:12:af:aa:cb:98:32:6f:
98:34:64:e9:8e:ae:f6:76:6b:9f:34:e7:e9:e0:9b:8c:0a:9d:
70:15:ce:54:9c:76:2c:7e:6d:5e:ac:54:65:82:8c:c6:56:46:
89:e1:fb:f1:ad:05:09:d6:01:63:d1:4d:cc:b4:10:88:e6:ed:
95:be:85:8b:6c:6d:5e:81:4f:3f:18:d2:83:fb:6d:51:8c:35:
54:72:93:8e:22:95:7a:11:be:0a:28:b4:6d:df:b6:4b:d5:32:
69:51:a7:bc:9a:2f:9d:1b:dd:33:44:38:08:c3:ca:b7:c5:16:
f2:a2:62:3e:91:30:f5:2b:78:08:90:c7:7c:88:30:32:ec:62:
33:a3:7d:61
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Apr 10 00:19:12 2025 by rpki-client