Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wr7NjqrTfqV665OfLAsUKXSEH4o.cer
File: Wr7NjqrTfqV665OfLAsUKXSEH4o.cer (raw, json)
Hash identifier: 1EprhguC/UCHeR2i2OdzXJDSHchbUp6IE6ZXl2dFEAE=
Subject key identifier: 5A:BE:CD:8E:AA:D3:7E:A5:7A:EB:93:9F:2C:0B:14:29:74:84:1F:8A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023972
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A5A82/BB98A45E090811F0A493E922C4F9AE02/Wr7NjqrTfqV665OfLAsUKXSEH4o.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A5A82/BB98A45E090811F0A493E922C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 24 Mar 2025 23:36:01 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 153598
IP: 203.24.49.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145778 (0x23972)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 24 23:36:01 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A91A5A82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:db:49:39:17:7d:7d:2e:ff:b9:bd:8e:53:a3:
87:90:f3:3a:fe:1e:c1:66:d7:c5:40:7b:97:0b:b9:
ec:cc:45:72:5d:51:a2:9c:a5:c7:14:4f:a8:f1:eb:
9d:f7:0a:90:af:09:7a:2e:1a:e9:ec:70:48:6c:52:
92:8b:3f:9c:6a:06:2c:de:b4:58:a8:c0:79:6a:29:
e7:dd:e7:39:69:30:1a:3b:cb:3c:29:10:fd:5a:18:
33:10:03:83:3b:e5:23:f7:17:56:a1:69:de:55:7b:
bb:0b:58:aa:b7:e4:ed:92:06:94:ec:3f:a4:7f:93:
16:35:8b:a7:34:f4:a9:08:3c:5f:ab:2e:fb:b6:1a:
26:d1:a3:13:bb:c2:95:a9:bb:4e:9d:55:c3:4c:a5:
96:bd:b3:7f:30:3f:b1:f6:70:fe:99:dc:d9:1f:5b:
41:7f:66:76:dc:08:24:50:b7:f7:9d:2d:cd:32:a3:
47:73:e5:72:59:10:8c:74:36:af:a5:8e:c2:d0:d3:
23:55:ac:69:02:20:86:14:5e:92:f0:9b:7f:3e:d5:
48:2d:af:68:38:36:1b:bc:45:0f:9a:f1:f2:5b:9b:
39:18:b2:87:c7:1f:3c:80:51:03:6c:20:da:7e:c2:
16:70:ec:8d:37:8e:33:01:7f:61:c9:88:6d:6b:17:
9d:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:BE:CD:8E:AA:D3:7E:A5:7A:EB:93:9F:2C:0B:14:29:74:84:1F:8A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A5A82/BB98A45E090811F0A493E922C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A5A82/BB98A45E090811F0A493E922C4F9AE02/Wr7NjqrTfqV665OfLAsUKXSEH4o.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153598
sbgp-ipAddrBlock: critical
IPv4:
203.24.49.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:a4:13:36:01:8c:99:fa:25:19:62:74:15:65:12:7a:31:2f:
d9:b4:50:a5:f5:33:70:c2:db:ed:35:e6:52:88:60:dd:6d:cb:
8a:56:0d:5f:9c:2b:02:de:38:7a:a1:df:10:59:2a:4b:fa:17:
a5:0d:9c:d8:be:bd:45:f3:de:a9:f1:31:23:a1:15:26:9e:42:
a8:99:48:52:81:66:01:8d:b7:1e:a6:dc:c5:66:8f:bc:3b:d9:
f6:45:81:e4:d4:6c:07:31:e8:ed:04:f6:b9:10:1f:7c:e1:27:
16:c0:ff:b2:a0:4f:45:24:e5:70:64:25:a8:5a:6c:54:b2:2f:
b6:03:48:06:cd:77:35:ab:29:85:29:1e:47:81:07:7f:4b:4e:
6d:24:90:35:79:9c:ab:be:9b:9c:57:a6:9a:c9:dd:50:96:b6:
69:c2:38:e7:4c:de:10:73:08:72:2e:74:e3:b2:f8:c8:21:9d:
ee:04:e4:5a:b1:76:50:34:c1:0a:26:ba:9c:5d:ce:3b:0e:83:
e1:05:77:a9:cb:6c:f6:7d:55:14:a2:26:47:3c:4a:c1:4a:12:
15:6c:01:59:e9:a5:84:03:15:5f:bf:65:81:ba:2d:6d:f5:b5:
ef:30:20:80:84:4f:3f:34:7d:34:03:b4:e5:0b:ba:79:c1:0a:
13:fc:06:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:09:01 2025 by rpki-client