Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVO6SZpE5-wQQcYO9_NprGI1eqg.cer
File: QVO6SZpE5-wQQcYO9_NprGI1eqg.cer (raw, json)
Hash identifier: ZTqJ3oFF28viTuM4gif9iTPegOglTgeuIBTHqg41+LM=
Subject key identifier: 41:53:BA:49:9A:44:E7:EC:10:41:C6:0E:F7:F3:69:AC:62:35:7A:A8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022EE1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/QVO6SZpE5-wQQcYO9_NprGI1eqg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 04 Feb 2025 14:48:36 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 152125
IP: 36.50.31.0/24
IP: 2001:df3:3340::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 17:46:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143073 (0x22ee1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 4 14:48:36 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91423C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a0:06:30:97:2e:a2:1b:ae:5e:c6:fa:f6:00:
45:ad:76:68:ce:08:f8:56:6e:1d:6f:b0:4e:03:c3:
0f:0e:40:58:00:fa:df:49:35:2b:1d:fc:98:04:87:
5c:51:99:bb:51:e3:43:80:db:2c:a9:4b:f0:5f:f6:
db:d7:27:86:6e:ae:ab:18:e3:2a:97:42:de:87:90:
b2:02:c1:43:9b:a1:06:29:f1:fc:e5:65:73:d8:a0:
50:03:cf:29:ac:d6:5b:41:80:95:91:7f:5c:f6:c3:
47:68:a5:34:ad:1c:af:7b:b6:e2:bf:f3:c8:fa:9b:
76:92:50:a9:08:51:cf:f2:16:19:e7:30:c8:1f:60:
98:b3:91:d7:c4:e6:51:4e:cd:e3:78:84:60:21:5b:
4c:d6:55:df:e1:20:26:22:83:02:55:5c:c3:bb:c0:
71:11:a2:5b:87:d5:6a:3e:73:61:83:55:02:c4:38:
a3:15:26:88:eb:86:f4:26:d9:fc:7a:27:1b:9d:e4:
3f:00:3c:87:0e:ed:8b:92:11:cb:bb:e4:1a:42:77:
5d:3c:f8:85:01:3a:ab:fa:39:dd:78:e5:69:0d:d3:
4d:39:36:fd:5b:14:eb:3d:e7:e4:4d:d5:e7:87:c6:
21:6f:9e:7f:db:92:be:37:13:c3:53:99:3b:ad:5f:
27:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:53:BA:49:9A:44:E7:EC:10:41:C6:0E:F7:F3:69:AC:62:35:7A:A8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/QVO6SZpE5-wQQcYO9_NprGI1eqg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152125
sbgp-ipAddrBlock: critical
IPv4:
36.50.31.0/24
IPv6:
2001:df3:3340::/48
Signature Algorithm: sha256WithRSAEncryption
63:c0:a8:b3:e3:1c:6a:1a:02:7e:bc:74:5c:ca:db:dd:09:cf:
2f:75:03:a7:90:2d:92:48:e0:89:dd:7f:b8:bd:d8:ef:8a:8e:
64:02:9b:9f:52:8c:83:89:7e:95:be:75:d8:10:39:cf:6b:ac:
7a:54:6e:53:f6:9e:8c:fa:e7:d0:45:65:ae:8a:54:97:f9:57:
26:83:57:da:64:4b:ab:e3:0b:88:57:66:06:d1:60:b5:07:10:
99:36:9a:39:e9:df:ba:02:11:a6:27:9b:fc:cc:81:cd:ac:4f:
95:44:3a:94:c4:30:66:4a:3b:3e:c7:dd:b9:45:48:4f:5b:6c:
80:82:d4:7b:45:32:3e:45:04:db:ed:72:e7:32:2b:66:a3:fe:
e6:cf:a9:5b:8c:35:b9:8c:5a:49:ab:51:7a:62:57:65:83:f4:
4b:22:a6:8f:b5:b8:39:17:f9:f7:6f:06:66:0a:6f:d3:9b:b2:
fa:bc:fc:d5:57:16:a7:ba:c1:5a:f3:e0:bc:4f:6a:fb:2c:88:
5e:7c:ec:f0:9a:b0:0e:63:0c:e4:13:1d:9d:6d:dd:e9:bf:da:
6c:d5:46:d9:d8:b9:20:15:89:52:44:25:40:6e:98:09:53:5a:
e2:1e:ad:c6:b8:c9:0d:c1:1a:d4:45:f9:87:07:10:82:cf:2b:
14:b3:47:8c
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 20:19:12 2025 by rpki-client