Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIptgpdqVdxXC6WAN3Csat272IY.cer
File: RIptgpdqVdxXC6WAN3Csat272IY.cer (raw, json)
Hash identifier: l4j9N0ZNBrJcbkFmNGgs6wBSepZuVytUicq9N/tEZsE=
Subject key identifier: 44:8A:6D:82:97:6A:55:DC:57:0B:A5:80:37:70:AC:6A:DD:BB:D8:86
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021DAF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9194590/36355952919F11EDB48E534DC4F9AE02/RIptgpdqVdxXC6WAN3Csat272IY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9194590/36355952919F11EDB48E534DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 26 Nov 2024 17:00:44 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 103.174.202.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138671 (0x21daf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 26 17:00:44 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A9194590
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:21:79:a0:0d:76:69:b8:1d:c7:ce:82:c9:23:
f5:c9:bd:b0:e9:ed:06:32:73:6b:65:ef:66:36:b7:
6a:96:c4:4c:68:f8:f4:3f:fb:27:b4:6c:7c:63:09:
8d:7a:e4:5f:0b:37:5b:0a:c7:41:14:89:77:53:bf:
b6:f0:6a:bb:c3:78:21:c0:d3:d8:80:66:56:ea:20:
44:42:6f:24:47:32:c0:e5:c6:17:92:1f:ea:d7:0c:
a3:02:ef:2d:76:f2:84:a8:5a:4a:9b:a3:cb:b1:bc:
36:5b:12:55:a7:63:66:cb:68:c3:f7:9d:9a:52:d3:
97:3d:0e:a8:68:8d:cc:1a:27:5c:08:a6:05:7d:79:
5e:b4:86:6b:51:83:4f:64:4d:6c:5b:b5:c5:c9:be:
6d:8f:d2:95:e9:68:c3:58:23:37:47:21:7a:c8:de:
e3:b0:1b:f4:dc:ed:0a:55:6d:9d:df:92:36:62:83:
b9:95:c4:49:37:1d:e8:57:79:9f:96:29:11:0c:95:
f7:09:f1:74:f6:5b:43:e3:70:c4:30:7b:f4:8f:3a:
e9:8e:43:29:dc:49:f2:26:61:ba:3c:0a:f7:d2:83:
da:4b:ad:3e:38:c2:d9:65:13:83:1f:db:c9:8c:65:
33:a7:fc:26:d1:1a:11:f3:49:c7:82:bc:13:d5:e5:
b7:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:8A:6D:82:97:6A:55:DC:57:0B:A5:80:37:70:AC:6A:DD:BB:D8:86
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9194590/36355952919F11EDB48E534DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9194590/36355952919F11EDB48E534DC4F9AE02/RIptgpdqVdxXC6WAN3Csat272IY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.174.202.0/23
Signature Algorithm: sha256WithRSAEncryption
0a:70:5d:a8:ab:c4:4a:0c:e9:fd:6a:d8:54:14:91:7a:05:fa:
5d:52:1d:a4:99:b5:59:66:c8:ac:84:f9:9d:8a:14:08:1d:54:
c1:53:69:32:9a:6d:42:6a:e7:c7:78:97:8b:dd:8c:14:6c:87:
a7:0b:ce:9d:bf:58:6a:4d:f3:70:aa:fe:f5:99:a7:27:ca:31:
44:54:46:37:09:71:8e:c3:e5:58:27:e4:0c:ed:bc:40:2e:b9:
8f:be:d2:ad:e4:58:f2:fd:04:1d:19:5a:f7:65:c0:1c:f9:51:
f7:b8:e4:61:6f:a6:6d:0b:f9:9c:2f:e7:02:41:07:5f:45:be:
f0:88:5b:4d:be:d3:79:39:51:fd:82:65:27:f9:82:8c:1d:f4:
eb:bb:fb:8a:07:52:11:d8:59:ab:7a:a3:34:26:6e:bb:7f:a8:
cf:07:a1:ad:15:5e:c2:87:ec:26:2b:87:75:46:2e:be:1b:65:
34:cd:41:ac:02:03:f8:89:22:07:b4:30:57:42:e8:4e:cf:ec:
5c:29:44:ca:13:82:c5:13:c9:9c:af:cd:8c:e9:aa:20:a9:80:
2e:40:e6:02:2c:f3:94:0b:89:34:af:29:73:c9:b0:32:bf:0d:
8a:52:2f:3d:5f:64:02:b8:92:8c:8c:29:17:f0:30:cd:ca:97:
eb:53:1a:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:10:14 2025 by rpki-client