Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer
File: UoaLCQH1W0B4uRpzRRym0iMSyKs.cer (raw, json)
Hash identifier: RcsbP46Ykz2aEQjvLfnxQdqGIo1qLYa9OFRpeEM65Bk=
Subject key identifier: 52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023542
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 04 Mar 2025 14:48:20 +0000
Certificate not after: Thu 28 May 2026 00:00:00 +0000
Subordinate resources: AS: 138608
IP: 103.134.152.0/22
IP: 2404:6740::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 29 Apr 2025 04:32:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144706 (0x23542)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 4 14:48:20 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=A913E2B3, serialNumber=52868B0901F55B4078B91A73451CA6D22312C8AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:58:e8:b6:81:99:8d:40:28:8d:ed:7f:b5:31:
38:a3:c8:e3:9e:68:24:a2:b8:64:11:d9:71:de:a7:
f9:78:bc:eb:7d:57:69:a5:34:6a:a9:c0:a9:6d:95:
36:5b:7d:54:d7:8d:7a:64:6f:2c:b9:db:35:6d:0b:
d9:4e:86:cf:51:06:32:0e:fd:5b:06:a9:0f:94:6f:
9c:90:00:1c:37:9e:db:e9:39:eb:fd:e0:ec:c5:85:
05:b5:f2:87:0a:3f:40:3c:2b:60:54:85:dd:58:60:
e8:f4:5a:a9:27:9e:c3:74:75:6e:d7:f2:6f:5a:3d:
78:4e:4c:4c:f9:42:46:24:eb:34:cd:7d:c6:6a:9a:
5d:3c:79:5f:e0:bf:b2:8d:e1:61:a7:ff:16:6a:ce:
02:dd:01:ab:bd:57:b0:8c:ad:6b:3e:18:a7:f2:7a:
72:35:e0:1b:1c:9f:6d:35:b1:41:25:b1:4d:7d:b7:
6a:e4:3d:be:ba:70:96:40:6f:31:2d:b6:ea:6b:6b:
ad:91:1d:a7:8a:69:7e:0c:ef:e3:73:ea:79:d7:4a:
31:a9:a6:9f:a9:75:15:63:d3:cf:87:6d:99:cc:50:
0d:ad:5c:32:8a:02:ce:96:71:d3:c4:57:72:25:bc:
d1:5e:4e:3d:c3:d2:17:31:e8:8d:28:20:23:23:09:
b2:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138608
sbgp-ipAddrBlock: critical
IPv4:
103.134.152.0/22
IPv6:
2404:6740::/32
Signature Algorithm: sha256WithRSAEncryption
21:f4:52:81:03:23:40:27:ce:ea:88:f0:da:56:9f:36:9a:bb:
3c:77:c7:e6:86:de:f8:d8:03:be:cb:b2:ec:e1:a9:81:44:d8:
31:9e:98:22:01:7b:52:f7:00:5b:42:3f:5c:f6:75:c4:9d:9d:
11:13:e9:46:28:94:74:f9:24:78:85:5c:03:83:33:17:dc:a3:
71:6c:58:a6:d8:46:c6:44:b0:16:e6:60:9a:94:e2:ea:67:26:
a0:51:45:d5:4c:d9:ef:8e:10:cd:a2:03:e4:43:66:d3:e7:55:
7f:8b:00:56:6e:ea:f3:1c:8f:be:2d:74:38:0f:25:e0:24:d1:
cb:7a:74:41:c3:11:4e:a9:ff:2d:b3:66:e4:23:d9:ef:7d:3c:
17:9b:6c:d8:96:13:29:ac:0f:e3:1d:86:b4:62:54:df:dd:94:
89:48:dd:fe:e6:ca:94:35:54:78:af:ec:a0:77:30:a2:19:2a:
cb:5f:22:57:c4:f6:07:17:4e:6d:de:29:33:46:70:27:0b:15:
35:28:39:32:9b:b0:22:ab:d8:e4:68:f3:c9:da:3e:bf:3a:c9:
6b:f9:e6:d2:d8:35:94:d5:d6:12:0a:c1:d2:ca:25:84:d2:f5:
ff:4e:5b:f8:ba:fa:f2:58:7c:87:0b:1f:7c:e3:a0:df:27:e1:
e8:dd:c8:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 05:43:25 2025 by rpki-client