Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TIHwGTocVyRFf1LgThHyUnPm_uA.cer
File: TIHwGTocVyRFf1LgThHyUnPm_uA.cer (raw, json)
Hash identifier: jLtFvxtcJutpbSXDFeeJI37sdCT3AZL1JDpqiD/CIEI=
Subject key identifier: 4C:81:F0:19:3A:1C:57:24:45:7F:52:E0:4E:11:F2:52:73:E6:FE:E0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022648
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 31 Dec 2024 18:49:09 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 139837
IP: 103.145.234.0/23
IP: 2001:df2:3180::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 14:25:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140872 (0x22648)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 31 18:49:09 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91A5533
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:68:05:2c:84:b5:87:6b:e3:90:a8:8d:b9:56:
cd:bc:22:88:7b:24:20:bc:c5:7a:bf:52:c9:c1:c8:
41:62:ba:6d:09:3b:bc:de:d6:62:40:0b:ef:88:31:
d4:33:20:63:43:a3:99:e4:ec:c7:30:9d:62:29:2b:
a4:2f:93:bd:34:fe:e3:9f:10:74:18:fd:78:78:70:
d3:0a:93:9c:e4:f6:11:b2:ad:15:43:15:25:49:d9:
1e:63:95:c8:3e:df:68:4a:3d:e4:c9:97:55:22:80:
7a:fd:d3:10:b0:da:32:91:0e:34:5f:bf:75:ee:d4:
87:34:61:7d:ed:bf:ef:2e:23:54:0e:dc:ea:e8:b4:
20:84:39:be:f7:f7:02:6e:a4:78:2e:82:43:17:5a:
e2:34:8e:e8:f8:50:e8:e5:64:d3:65:29:37:f6:2b:
34:6c:78:b6:f3:09:b0:95:5b:4e:bb:db:68:54:08:
94:42:63:84:16:95:fe:f9:ca:5b:28:39:5e:ef:7e:
69:19:f7:3a:28:44:fc:92:3b:b1:ce:c2:5b:c8:de:
30:d3:ac:2e:c0:65:76:65:f6:b4:2c:5f:05:b7:0a:
68:b3:11:2e:a2:89:16:1a:73:7b:88:27:71:cd:14:
b2:c0:a3:59:55:1b:bb:b4:8e:9d:b1:52:f0:bc:c4:
4d:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:81:F0:19:3A:1C:57:24:45:7F:52:E0:4E:11:F2:52:73:E6:FE:E0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139837
sbgp-ipAddrBlock: critical
IPv4:
103.145.234.0/23
IPv6:
2001:df2:3180::/48
Signature Algorithm: sha256WithRSAEncryption
c2:6b:e3:94:5d:ec:ad:8a:41:c5:18:fb:a5:1e:14:b6:5d:7d:
aa:e7:f5:17:25:a4:9a:13:15:ee:69:b6:a2:03:e8:8c:09:fe:
bc:21:2a:1c:2a:0b:f1:08:df:89:8f:3f:1b:d2:76:c5:5d:27:
85:14:07:28:0d:d8:b1:21:96:30:a4:a7:eb:a7:89:62:fe:38:
e5:f9:9b:0d:54:29:24:b9:cf:8a:de:a6:5b:f7:c5:69:16:fb:
92:1b:84:ea:67:be:50:d1:10:88:0e:37:47:97:da:26:4b:5b:
45:c0:fc:e8:63:35:78:0e:66:16:fe:b4:2e:c9:ba:f8:04:5e:
cb:37:78:a6:0c:17:61:58:7e:64:29:58:4b:8a:ea:77:0b:7d:
ef:dc:0d:7d:41:a5:6e:4c:62:85:7e:53:40:08:7c:0b:6c:cd:
44:bc:e2:cc:a2:2f:58:ad:2b:83:14:ef:75:4a:cf:96:b6:cf:
02:39:3d:52:7a:77:e3:73:37:46:40:ff:b9:ff:58:0f:87:f0:
88:ef:9b:96:ce:41:c7:ab:b8:e6:ea:d3:f7:1c:2a:bd:25:2c:
49:15:37:68:e6:29:be:77:5e:35:96:0d:64:4b:30:a2:71:cc:
28:9d:1e:94:c9:e8:3b:4f:5c:8b:df:57:4f:02:30:f8:bf:48:
85:c6:ec:ff
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 16:27:58 2025 by rpki-client