Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLC5W0vcIzFPKD73OalqfGWMCmw.cer
File: TLC5W0vcIzFPKD73OalqfGWMCmw.cer (raw, json)
Hash identifier: wgl5URZjbBmuU8fSq4ICh5kV0IXr+vaCo8waFQqWBQI=
Subject key identifier: 4C:B0:B9:5B:4B:DC:23:31:4F:28:3E:F7:39:A9:6A:7C:65:8C:0A:6C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02290E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911E660/01C52A30D24311EF88C5BC11C4F9AE02/TLC5W0vcIzFPKD73OalqfGWMCmw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911E660/01C52A30D24311EF88C5BC11C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 14 Jan 2025 06:44:35 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 137248
IP: 2001:df4:e5c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141582 (0x2290e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 14 06:44:35 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A911E660
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:cb:15:4e:e5:52:0b:f4:5a:d1:36:96:9d:8c:
3b:79:ca:a7:56:b2:d5:8c:77:7c:de:07:31:ec:55:
9a:c7:a5:bc:51:2a:83:32:c5:d4:21:38:cc:e8:5f:
c3:c0:f6:15:0b:9b:cc:f4:a8:15:10:0c:64:e1:e2:
24:c6:23:13:32:32:05:f7:24:e8:e0:28:ac:c6:ae:
27:e4:13:b1:e3:74:90:5f:96:4c:10:c9:7e:08:02:
9d:4b:b5:9a:6b:a3:4d:34:8c:d6:d1:ff:ff:5f:f9:
91:d2:a1:c4:b1:25:60:37:91:23:7b:a0:b0:eb:aa:
7a:c4:9b:90:c8:74:70:37:dc:69:42:39:4c:e9:d0:
5d:ee:ab:a7:6c:9b:86:b5:c5:0d:a5:b0:b4:67:4f:
8b:f0:24:1f:5f:07:a9:9c:62:3b:ed:cd:a3:7e:e3:
5e:9c:9c:1e:2c:8e:33:c8:cf:01:20:2c:2f:12:30:
9a:03:2e:06:da:6d:9e:6e:00:d0:e1:ff:b5:7f:72:
3e:61:e4:76:58:35:3f:33:28:8a:5b:25:92:97:d8:
ea:9e:c8:42:0d:74:9a:e3:bc:eb:1e:53:e9:25:6f:
9f:b9:65:bc:da:b6:18:05:c9:65:5d:53:45:b9:92:
9b:01:2c:6c:e2:35:82:55:ce:23:61:5c:1c:b1:af:
24:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:B0:B9:5B:4B:DC:23:31:4F:28:3E:F7:39:A9:6A:7C:65:8C:0A:6C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911E660/01C52A30D24311EF88C5BC11C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911E660/01C52A30D24311EF88C5BC11C4F9AE02/TLC5W0vcIzFPKD73OalqfGWMCmw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137248
sbgp-ipAddrBlock: critical
IPv6:
2001:df4:e5c0::/48
Signature Algorithm: sha256WithRSAEncryption
aa:e4:0f:c8:70:d4:72:71:df:10:88:c2:db:6e:d0:82:f6:e9:
34:b9:11:d8:f9:cb:07:2a:09:e0:d1:3f:d4:b3:97:28:69:5e:
1a:2d:9d:b4:d4:db:57:f2:cf:20:13:3d:00:35:36:92:02:87:
d5:5d:a3:50:93:67:c2:1e:70:91:0a:9e:a0:b8:9e:45:45:47:
94:d0:53:75:27:1f:f6:22:de:09:fa:5c:fb:37:fb:8b:fb:77:
64:12:d5:63:2c:f9:eb:bb:d8:e1:d9:02:7b:d4:47:75:8a:c2:
f1:8d:8f:ab:f1:ac:61:4c:7f:82:e5:0b:63:7e:69:ef:e6:fb:
dd:11:d2:14:1d:d6:c9:a4:d7:93:01:dc:9d:f9:bc:75:7e:71:
38:02:0a:ce:7b:f9:1b:5b:53:09:99:8a:2e:e0:24:cc:de:01:
7f:5c:2a:9c:d6:88:62:52:5e:6b:40:40:5e:2c:7d:df:eb:9c:
6e:05:cb:63:59:10:04:52:68:45:52:85:70:05:7c:dc:c2:ff:
21:8c:50:a7:46:34:13:b6:8e:7b:7f:31:41:53:5c:5c:a7:8b:
6a:01:14:3f:3b:13:16:af:12:e7:44:5d:14:b4:24:a6:75:e0:
0b:35:44:95:cb:03:70:3b:45:30:01:df:90:ac:83:54:17:3f:
84:f6:85:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:06:11 2025 by rpki-client