Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEWtAAu9UKcPk6XLcLZmgKUo7cA.cer
File: XEWtAAu9UKcPk6XLcLZmgKUo7cA.cer (raw, json)
Hash identifier: spuIfpg77l0Rfh0+sBx1xzKpxjeGYufMMdlL5PNHxkA=
Subject key identifier: 5C:45:AD:00:0B:BD:50:A7:0F:93:A5:CB:70:B6:66:80:A5:28:ED:C0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E8F4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9142812/C1E5DD1E807B11EBA83AC01DC4F9AE02/XEWtAAu9UKcPk6XLcLZmgKUo7cA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9142812/C1E5DD1E807B11EBA83AC01DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 02 Apr 2024 17:17:19 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: IP: 103.162.102.0/23
IP: 2407:1740::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125172 (0x1e8f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Apr 2 17:17:19 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A9142812
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:0e:9b:08:1e:09:47:17:bc:f0:2a:8c:87:e3:
c1:41:8f:e9:77:20:c3:a3:fb:28:fe:9a:fa:13:d2:
05:cb:5f:19:7e:0a:d3:db:9b:94:91:ca:1d:f2:95:
a1:8c:95:f7:da:a3:3a:21:aa:21:b4:75:87:f3:8e:
ec:26:26:bd:ac:cd:7e:50:41:42:64:cf:0b:1d:1e:
71:3c:10:79:d1:05:9e:51:05:2b:82:82:73:71:e4:
18:1c:bf:b5:11:63:83:fa:8a:c5:07:e9:d9:1d:3b:
b2:ea:ae:49:40:d3:aa:9a:8f:72:68:63:a2:f7:dd:
04:1d:3b:f5:c4:07:c9:ff:33:88:75:6d:e3:26:da:
70:00:62:86:a6:52:71:6b:c1:96:d6:d6:48:52:41:
62:de:76:0a:27:b9:e6:39:bc:c7:b7:00:ed:5d:29:
51:03:17:6b:5e:28:f7:e0:e6:b4:3c:47:52:f6:78:
81:ef:e0:9b:0c:31:fc:1f:59:49:e5:9a:74:e9:c3:
79:f1:d2:ed:ba:6a:7a:ac:92:d7:7e:f1:01:59:9d:
cb:96:e7:a2:d3:d6:b5:57:48:ee:4e:e0:70:d6:6c:
0d:81:17:9c:73:0b:a1:d7:d5:3b:38:d7:9d:ae:83:
53:45:26:08:16:fb:b0:c0:d0:53:2c:dc:aa:48:47:
54:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:45:AD:00:0B:BD:50:A7:0F:93:A5:CB:70:B6:66:80:A5:28:ED:C0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9142812/C1E5DD1E807B11EBA83AC01DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9142812/C1E5DD1E807B11EBA83AC01DC4F9AE02/XEWtAAu9UKcPk6XLcLZmgKUo7cA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.162.102.0/23
IPv6:
2407:1740::/32
Signature Algorithm: sha256WithRSAEncryption
47:f1:7e:cb:d1:41:5a:c3:68:73:21:f5:94:5d:8a:21:ef:1d:
d3:82:d9:48:a3:04:52:e5:e2:10:ac:0d:fe:71:b2:00:2e:6e:
45:b2:44:71:7b:71:3e:04:3a:ac:92:5a:c9:3e:72:9d:2b:3e:
0f:2e:57:c8:16:40:cf:04:0c:19:5f:0e:50:7f:45:e0:b6:2a:
79:86:16:8d:ec:49:f3:0f:07:8d:ed:4e:62:2c:98:80:a7:fe:
87:55:3f:22:9b:9c:25:07:1c:4a:a3:46:c4:e4:c7:71:4f:fd:
48:3c:01:86:f9:29:15:a3:3a:e2:03:26:2d:da:ff:89:cf:a3:
71:16:07:6f:9e:1a:ca:68:0e:56:2f:30:91:3c:75:7c:35:53:
ba:ac:16:78:f4:c7:d6:9f:c3:4a:72:c3:29:7b:d5:97:0b:c8:
0d:02:6b:fc:ca:fb:57:3a:c0:76:68:41:2d:d2:3e:72:23:08:
25:12:2d:d4:2f:79:4e:ac:c4:52:b4:c8:c3:ca:49:2f:39:65:
ec:12:2b:2e:72:88:00:65:d1:49:a5:5b:0c:db:41:6c:f7:e2:
ce:f5:e4:32:22:00:a8:53:8e:03:51:a3:d8:84:92:ab:f3:0e:
95:6a:66:8a:62:4f:4c:c7:1a:b5:ab:19:eb:17:b0:5e:36:dd:
4a:26:94:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:10:14 2025 by rpki-client