Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SJpvztfcY7erNmbjW9UJ2eoVdeA.cer
File: SJpvztfcY7erNmbjW9UJ2eoVdeA.cer (raw, json)
Hash identifier: +LJ4LJw8nN4scNdw8Tf029/v7TdMVCmPAreRk2mJeyU=
Subject key identifier: 48:9A:6F:CE:D7:DC:63:B7:AB:36:66:E3:5B:D5:09:D9:EA:15:75:E0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023CB7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914410E/2F03298A108611F08AEA480CC4F9AE02/SJpvztfcY7erNmbjW9UJ2eoVdeA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914410E/2F03298A108611F08AEA480CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 03 Apr 2025 12:21:39 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 152453
IP: 163.61.102.0/23
IP: 2401:ee20::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 12 Apr 2025 07:53:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146615 (0x23cb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Apr 3 12:21:39 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A914410E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f7:e0:c5:8e:14:23:99:80:a5:f5:58:1a:ff:
15:fe:7a:8b:a3:70:ff:46:bb:30:da:47:db:14:fd:
5d:3f:77:bd:7a:6a:10:6b:02:98:f2:ec:1d:c9:64:
0f:39:01:0d:7c:46:f8:96:05:be:56:0b:41:b0:a5:
58:78:06:55:b5:28:c4:c9:9e:0e:e3:61:fe:51:21:
52:9b:1b:93:c2:53:3d:00:5c:dc:41:65:f3:d8:b2:
97:e2:8e:9a:db:71:94:bd:02:68:ef:c1:dd:c3:99:
ef:97:b0:b1:27:be:93:07:28:04:09:8a:02:53:62:
5f:0c:3a:b7:13:14:2e:c5:86:41:9e:ce:29:97:15:
c5:40:4c:42:84:df:df:8c:98:cc:b2:6b:b1:5a:7b:
e0:65:0d:f7:0e:eb:9a:15:2e:75:65:68:98:27:2b:
d0:68:b7:13:bc:fd:d1:7e:f4:b4:9e:32:fb:4f:44:
25:66:c1:bc:dd:02:95:51:04:27:30:3b:1f:1e:59:
0a:fa:4e:80:7a:3a:9b:79:05:e5:85:d8:05:f3:8a:
42:70:90:d0:7c:2a:c7:a0:ec:22:23:70:8c:14:49:
3a:be:3a:27:9c:5e:d9:c1:5b:d2:01:c7:5f:c8:b3:
73:86:a9:24:0c:81:f3:13:59:4e:82:e2:19:74:21:
87:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:9A:6F:CE:D7:DC:63:B7:AB:36:66:E3:5B:D5:09:D9:EA:15:75:E0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914410E/2F03298A108611F08AEA480CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914410E/2F03298A108611F08AEA480CC4F9AE02/SJpvztfcY7erNmbjW9UJ2eoVdeA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152453
sbgp-ipAddrBlock: critical
IPv4:
163.61.102.0/23
IPv6:
2401:ee20::/32
Signature Algorithm: sha256WithRSAEncryption
a1:23:d4:3a:7b:a8:34:01:55:52:d1:05:28:4c:28:f7:71:5e:
08:3c:f7:d6:e9:cf:28:89:15:f8:7a:32:b1:16:21:03:20:f1:
ae:4c:eb:df:43:34:6b:08:9f:fc:c5:17:d6:85:5b:88:c0:2e:
92:41:45:5e:15:4e:19:9d:f8:30:6e:d9:2a:d9:6c:4c:f7:90:
68:65:9b:47:e3:79:13:23:da:3f:06:7a:58:fe:70:9f:00:fd:
a8:dc:9b:87:87:21:2a:3a:99:3b:b9:74:48:62:e9:7b:ed:ab:
38:fe:16:93:2c:64:f7:9b:51:80:f3:b6:b6:03:9a:d0:e2:79:
b8:13:8d:ba:dc:ec:56:03:5a:f8:4c:bc:1f:36:03:15:16:64:
f7:21:ad:4a:b3:b8:e2:5f:52:01:c9:6f:ba:a6:16:aa:d2:94:
e5:a4:75:a8:2d:e3:ed:85:16:c1:52:a8:06:76:86:38:18:7f:
de:34:8e:3e:cb:6d:2a:ce:cb:95:f3:6f:93:3c:86:ff:53:3a:
12:03:03:79:c3:b5:25:5f:17:93:f9:8e:b9:3d:67:93:ec:46:
da:86:79:cb:5e:f5:ad:d4:3f:02:22:7d:48:39:df:f9:8c:64:
1c:9e:78:20:36:d5:55:04:6a:91:0c:55:d0:58:96:aa:51:9a:
ae:9b:ad:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:14:40 2025 by rpki-client