Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YGWA927TklN9X8ollpTPkmFBfEE.cer
File: YGWA927TklN9X8ollpTPkmFBfEE.cer (raw, json)
Hash identifier: gcLdZiqXYziIp1JY3RHbQSDS1Gz1CP77RkfMZNuxYOE=
Subject key identifier: 60:65:80:F7:6E:D3:92:53:7D:5F:CA:25:96:94:CF:92:61:41:7C:41
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022A18
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911F1E6/627EF142CDE911EBB7E6BE1CC4F9AE02/YGWA927TklN9X8ollpTPkmFBfEE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911F1E6/627EF142CDE911EBB7E6BE1CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 19 Jan 2025 12:37:40 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 142430
IP: 103.168.66.0/23
IP: 2001:df6:d080::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141848 (0x22a18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 19 12:37:40 2025 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A911F1E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f8:14:10:6f:8f:95:d6:34:f9:9b:21:05:e3:
56:b6:fb:36:4c:27:30:0f:3f:34:e6:b2:cf:c6:53:
b6:1d:49:49:d1:75:38:a7:41:43:63:33:35:b1:d1:
ec:cf:73:5e:5c:38:2b:2a:f0:af:27:1a:96:4f:3b:
4c:12:f5:7d:0a:10:08:67:c0:fd:8b:da:5a:35:b7:
81:4f:e5:ad:df:f2:05:91:bb:b0:1d:45:3f:04:bc:
82:a4:ab:e4:ca:96:47:d2:a4:a3:d4:6f:80:20:00:
d8:c4:99:f2:27:46:5b:f5:8c:2c:b2:ba:20:19:23:
65:39:16:75:0a:1e:c8:f0:3d:e3:dd:4e:43:cb:65:
16:39:26:57:ed:2a:d2:fe:64:b8:59:c4:ac:c7:3b:
de:01:6a:17:64:57:0f:0c:00:a1:fb:f6:9e:a3:3a:
83:51:6c:4a:5d:af:e5:e0:08:74:31:67:cb:be:bb:
6b:f5:f5:4e:d1:ce:74:b9:64:05:24:54:1e:23:b8:
6a:f5:7c:37:8a:0a:c7:2f:2b:f9:f5:d5:8c:f6:e2:
e7:56:fc:54:c6:ae:80:04:b9:34:4e:e3:fb:69:a0:
fd:b7:e3:38:1b:8f:1b:27:23:58:22:4f:57:92:09:
61:09:58:98:95:28:e4:c3:fe:1a:80:9e:d6:85:a7:
7f:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:65:80:F7:6E:D3:92:53:7D:5F:CA:25:96:94:CF:92:61:41:7C:41
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911F1E6/627EF142CDE911EBB7E6BE1CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911F1E6/627EF142CDE911EBB7E6BE1CC4F9AE02/YGWA927TklN9X8ollpTPkmFBfEE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142430
sbgp-ipAddrBlock: critical
IPv4:
103.168.66.0/23
IPv6:
2001:df6:d080::/48
Signature Algorithm: sha256WithRSAEncryption
4f:b2:4e:21:d1:7b:34:ae:ba:ea:21:07:f1:5d:7f:17:ef:4f:
66:40:68:ab:e4:79:5d:51:6b:3a:2e:46:b5:59:ba:73:19:2a:
9a:80:f8:34:71:ca:41:13:c0:90:75:44:b3:a9:b8:38:36:ed:
ef:5d:42:07:ea:18:1f:31:69:a5:aa:9b:18:58:07:db:dd:ea:
11:aa:3a:e6:49:84:b9:ea:f4:72:70:f4:7f:b8:14:b6:f6:b3:
2d:80:6f:38:fc:4b:b2:06:78:99:68:9c:0a:ec:a8:39:b5:d1:
73:53:1b:da:f5:e0:91:d6:5c:a1:db:f5:6f:05:0b:56:4b:e0:
ea:73:42:e1:9d:d0:39:cd:97:53:3e:a2:c0:67:75:9f:66:94:
ff:e9:12:a3:d6:24:cc:0e:0e:e0:b6:40:33:16:68:4f:a5:10:
c6:24:54:eb:7b:ac:8e:cc:a2:bb:e2:cf:48:6b:c2:c1:18:34:
04:6c:34:75:24:b0:17:bc:28:6a:ea:ec:ad:70:07:64:fa:6b:
d2:15:73:b8:f8:e8:e3:fe:72:84:76:ed:ac:6b:01:e6:2c:ec:
e9:04:b8:0b:a3:ca:4f:33:31:18:1f:1e:ff:99:3d:14:df:93:
4f:53:29:84:f9:7a:f2:84:8c:26:61:91:5d:26:ac:13:5d:82:
6b:18:b0:0f
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 02:04:40 2025 by rpki-client