Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uw_NKZ53W4rLJ1KgOvqn0YHlAO4.cer
File: Uw_NKZ53W4rLJ1KgOvqn0YHlAO4.cer (raw, json)
Hash identifier: f42EAxdQbc3cT8QJCNzJ12J/Lifpgxikp0KVcWuZxPg=
Subject key identifier: 53:0F:CD:29:9E:77:5B:8A:CB:27:52:A0:3A:FA:A7:D1:81:E5:00:EE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02367C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913DC32/840A16B0FCFD11EFADB86115C4F9AE02/Uw_NKZ53W4rLJ1KgOvqn0YHlAO4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913DC32/840A16B0FCFD11EFADB86115C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 09 Mar 2025 15:45:29 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 4848
IP: 202.88.200.0/21
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 12 Apr 2025 00:59:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145020 (0x2367c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 9 15:45:29 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A913DC32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:de:58:46:02:35:d3:55:75:a1:dc:0a:46:ce:
b1:97:aa:7c:81:e7:66:55:9d:ab:a8:27:7f:44:e1:
7a:54:82:a0:45:18:c0:d6:4f:cd:66:02:4f:c4:b8:
41:ef:2f:a1:8d:50:ea:c5:f3:39:4c:d4:08:2c:22:
cc:b1:9d:e8:a0:95:92:5f:4b:63:6c:d9:43:55:11:
8e:9e:ef:11:57:1d:f2:72:c2:7f:6f:8d:03:47:3f:
09:11:4a:0c:2c:63:f7:10:f6:7f:89:1d:de:a7:31:
95:28:83:4c:23:ff:51:5d:07:9c:d1:27:74:45:56:
db:d1:cb:74:18:c9:2b:bf:17:3b:17:d1:e1:8d:c5:
59:b2:46:58:9b:47:98:b0:e3:ea:ed:3d:98:91:97:
b4:03:f4:52:88:63:db:ba:9e:89:39:de:cb:ff:24:
aa:1a:af:bb:7f:98:49:dc:d3:cb:2d:3d:26:92:b8:
1b:b1:fb:90:16:05:52:2d:93:de:b1:de:78:d3:f6:
6c:1a:44:be:34:b0:1b:54:d2:74:7c:1f:fa:65:43:
68:ec:ec:9a:7e:f0:7b:fd:42:25:f7:fa:a3:8b:0a:
15:e5:29:04:a5:28:c8:77:04:4f:15:5a:f4:36:16:
85:48:36:c5:2e:fc:23:6b:a3:b8:1d:1b:d8:4c:1d:
f5:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:0F:CD:29:9E:77:5B:8A:CB:27:52:A0:3A:FA:A7:D1:81:E5:00:EE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913DC32/840A16B0FCFD11EFADB86115C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913DC32/840A16B0FCFD11EFADB86115C4F9AE02/Uw_NKZ53W4rLJ1KgOvqn0YHlAO4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
4848
sbgp-ipAddrBlock: critical
IPv4:
202.88.200.0/21
Signature Algorithm: sha256WithRSAEncryption
b6:1d:a5:45:cc:cf:c0:70:aa:02:f1:5a:01:b8:c5:e1:65:a5:
2a:77:ec:9c:12:4c:c1:73:f9:b7:c9:4f:ff:07:b1:fd:91:dd:
1a:96:0c:16:f6:37:70:2b:66:ad:96:aa:17:b4:63:3f:cd:4f:
1a:16:ef:4e:c3:a4:0d:f9:c3:16:b0:da:93:10:f4:b4:0a:97:
9e:73:5a:01:ad:e4:be:4d:ae:08:58:44:2b:dc:ff:c5:67:03:
27:10:9f:7a:70:57:17:30:f4:82:e2:f9:2d:09:64:cb:36:ca:
c0:61:c5:59:4b:6f:55:5f:25:16:30:77:14:f3:7c:51:75:aa:
5d:fb:09:5c:37:a4:1f:a7:75:d7:65:63:fd:eb:69:5c:7e:4f:
7b:9f:7c:cb:91:57:78:fa:96:bd:0c:7b:0e:15:2b:b5:2d:be:
87:06:6c:97:50:b8:2a:e8:a5:80:1e:8c:22:fe:1a:61:af:26:
68:8d:0f:df:c1:35:2f:3a:54:6a:94:6c:6e:2c:07:29:66:d6:
96:af:be:e1:db:67:ab:19:b5:61:7b:71:03:39:64:cf:9c:ec:
ba:0c:46:05:0d:26:57:b4:01:12:e7:68:52:bc:79:1b:6b:d6:
15:7f:78:09:18:60:c1:12:d3:29:8f:2b:55:67:41:6c:0e:13:
94:1c:7f:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:58:23 2025 by rpki-client