Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSPpAOai7I_ptdcDt5KA7yFAfIE.cer
File: QSPpAOai7I_ptdcDt5KA7yFAfIE.cer (raw, json)
Hash identifier: exBVkoXa4c3P1VCdMqg4D2chKFXaVB9uV37Xdkh8vY4=
Subject key identifier: 41:23:E9:00:E6:A2:EC:8F:E9:B5:D7:03:B7:92:80:EF:21:40:7C:81
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0226F4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 02 Jan 2025 23:28:12 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 149023
IP: 103.176.246.0/23
IP: 2001:df0:16c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 12 Apr 2025 05:11:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141044 (0x226f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 2 23:28:12 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91F3B2E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:6e:f6:08:42:44:67:33:68:99:29:37:6f:0e:
a3:a2:bc:eb:04:4e:d3:a5:95:eb:73:30:3b:a6:52:
e3:ed:22:11:6d:36:3a:34:8b:83:a0:61:8a:b1:5a:
da:7a:62:e3:0d:c7:5f:11:6f:e1:5b:33:95:d5:a7:
82:fa:b1:2f:3f:61:59:0c:c0:cc:1b:93:36:f3:55:
97:11:c8:9c:fa:02:06:93:31:2e:38:02:18:f3:e6:
50:94:27:4d:81:91:4a:20:72:df:28:4e:a4:86:68:
46:3e:77:66:fa:e7:bc:53:43:cd:02:46:9a:f7:bb:
ba:c4:ef:f1:98:29:db:2f:63:b1:46:31:85:30:45:
57:40:b6:21:17:d3:d7:6e:5e:85:11:8a:36:04:03:
0c:25:3e:41:bd:4c:9f:f3:b5:48:b3:98:ef:ba:e9:
e9:6f:9c:d4:d5:e7:ea:1b:0e:32:69:cf:be:92:0e:
5e:e9:0b:86:48:db:12:14:62:b0:18:a2:1f:48:fb:
6e:3d:56:a2:6c:a4:61:12:e2:2b:34:7d:09:4c:1e:
b4:62:91:0b:cf:68:3b:bc:30:b1:0c:b1:9c:6e:ee:
13:80:a1:b2:34:85:54:bb:8b:5b:1b:26:f9:b1:8a:
cb:23:1e:50:1b:9e:fa:5a:e6:e9:05:e7:6a:ff:08:
6d:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:23:E9:00:E6:A2:EC:8F:E9:B5:D7:03:B7:92:80:EF:21:40:7C:81
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149023
sbgp-ipAddrBlock: critical
IPv4:
103.176.246.0/23
IPv6:
2001:df0:16c0::/48
Signature Algorithm: sha256WithRSAEncryption
a8:4b:8b:f9:82:53:2f:55:b5:98:6d:f7:96:49:a7:96:a1:74:
41:ed:2c:37:ce:ab:47:db:0e:82:af:ff:0c:9b:97:23:ac:c1:
ee:9c:f9:29:2e:be:2f:c6:15:35:36:36:22:ed:ad:9b:9f:1b:
71:89:98:fa:fb:f8:24:4e:0d:58:4d:65:f0:a7:ba:a0:90:2b:
19:24:39:d4:e5:b6:70:fb:7a:24:71:84:71:47:0b:65:76:62:
a4:d0:14:d0:9e:5e:fa:5d:9e:f6:88:c8:90:1b:4d:de:bb:01:
2d:94:16:75:51:96:ec:2a:e5:e6:4e:65:16:a1:00:51:31:d1:
72:8f:33:b8:aa:ea:c2:41:5d:14:7c:7c:25:33:19:be:c7:f1:
47:99:64:6b:b7:3d:05:e2:90:35:8d:41:f4:40:74:17:53:ba:
80:fe:5b:a7:f9:b2:6a:e6:9a:bc:94:bd:40:28:a1:61:d0:b5:
61:e9:82:84:94:cf:cc:17:27:cd:50:48:8d:4c:e7:50:16:9e:
09:06:df:ec:22:14:61:9a:a0:a9:65:18:cd:6b:11:6b:c1:88:
17:4e:f0:5c:cd:8a:3b:2b:03:10:c9:30:1d:a2:89:6f:9b:a2:
62:ba:51:a3:82:bf:d1:e5:d2:eb:30:3c:a7:49:28:95:14:28:
5c:4d:57:c0
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 5 07:31:19 2025 by rpki-client