Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShevZqBI_IHa6FRffjXZ2qvUAnE.cer
File: ShevZqBI_IHa6FRffjXZ2qvUAnE.cer (raw, json)
Hash identifier: Pax/Vx6KZn3p1x2wRGy21JyV1QGOVI8kAuGTjJCn+/o=
Subject key identifier: 4A:17:AF:66:A0:48:FC:81:DA:E8:54:5F:7E:35:D9:DA:AB:D4:02:71
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0224A0
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/ShevZqBI_IHa6FRffjXZ2qvUAnE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 24 Dec 2024 17:09:38 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 64087
IP: 103.200.112.0/22
IP: 124.108.20.0/22
IP: 2403:a280::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140448 (0x224a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 24 17:09:38 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91B6E73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:75:8c:ac:ce:d3:20:85:6c:6f:4c:f4:17:28:
a3:d5:93:91:f4:f4:1e:14:24:35:31:fc:36:54:8d:
13:e3:a1:6b:73:85:d7:8e:db:1a:99:21:50:c6:b9:
5e:b5:4f:e9:e5:c3:ae:a2:f2:90:7e:35:3b:c9:30:
06:0a:23:a4:30:dd:cc:f3:27:e2:1a:ae:06:8c:7d:
22:06:68:39:8a:4e:31:29:5c:26:8c:23:e3:b5:8a:
11:ae:c1:4b:93:22:75:c8:2d:a5:1a:09:52:8d:0f:
f5:cb:46:c2:89:d8:ac:3f:2e:60:03:eb:de:77:4e:
89:8c:e4:b0:2a:2c:21:54:1e:34:9f:cf:c7:bc:c6:
58:30:a1:22:8f:99:02:1c:26:05:9b:4c:87:5c:27:
44:f0:f9:eb:8c:6f:5c:82:8c:90:3e:a2:26:93:93:
2f:eb:2c:8d:dc:c9:8d:e0:df:08:31:99:d7:53:97:
22:2a:cd:9f:39:1d:8f:e3:fe:62:2d:f5:df:b6:c4:
93:b2:ed:03:f7:61:ae:68:d6:c2:2c:ac:02:33:9f:
12:16:02:d8:d3:f5:9a:ab:22:f4:b5:b7:58:94:9f:
4d:42:db:1f:d5:c1:3e:af:0d:dd:7a:ff:10:8a:ef:
73:64:e6:c6:90:aa:c2:33:3f:49:44:63:66:98:1b:
dd:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:17:AF:66:A0:48:FC:81:DA:E8:54:5F:7E:35:D9:DA:AB:D4:02:71
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/ShevZqBI_IHa6FRffjXZ2qvUAnE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
64087
sbgp-ipAddrBlock: critical
IPv4:
103.200.112.0/22
124.108.20.0/22
IPv6:
2403:a280::/32
Signature Algorithm: sha256WithRSAEncryption
03:ae:62:37:c3:f3:b5:24:f4:67:79:4e:43:d7:0e:ad:37:f7:
4a:44:2f:b4:f3:5b:41:15:fb:06:88:20:9f:da:44:5b:2f:c2:
5b:95:fb:1b:31:41:1a:aa:40:39:20:01:d9:0c:c6:29:56:24:
e2:81:25:d5:f1:65:6c:cf:ae:68:cf:1d:49:14:26:96:9e:38:
57:65:ec:14:f2:8d:18:54:c2:8d:cd:06:3a:26:91:8e:2b:3e:
0f:78:e7:88:99:9d:49:3c:f4:c9:9c:11:df:be:27:a9:eb:85:
1b:cb:dd:d5:63:fc:23:07:53:30:7b:8f:79:e2:d9:13:29:7e:
b2:c2:e3:c9:6f:cb:41:3c:b8:11:a0:ec:cb:aa:37:2d:95:8c:
e3:64:b1:7b:aa:a9:b8:ce:9a:05:4b:a2:13:45:97:03:7a:87:
9e:7f:24:ca:4b:01:03:c6:83:1f:da:f9:f9:69:6f:84:2d:94:
79:11:92:79:1e:38:4d:ff:c1:41:41:b6:db:b4:f5:c3:2f:2a:
3d:a5:04:42:af:ea:1b:42:17:8c:91:00:80:ee:c1:ae:c9:d9:
85:48:6f:79:10:ec:6a:2c:53:e6:23:3f:3b:fe:12:f6:ae:48:
ab:2c:4f:91:d9:09:79:22:27:9d:ff:a8:6b:26:cc:09:02:ff:
2f:19:a7:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:13:18 2025 by rpki-client