Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer
File: YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer (raw, json)
Hash identifier: dTXNmxOgYxdaX6ZSMLRF4ArFTyJ0F0/FJQbPV/oegeM=
Subject key identifier: 62:C6:B1:A0:B2:C3:A6:14:F3:CB:43:FA:BB:31:BF:81:61:6B:54:B4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022914
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 14 Jan 2025 12:40:40 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 58768
AS: 151353
IP: 103.140.116.0/23
IP: 203.190.8.0/21
IP: 2400:fa40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141588 (0x22914)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 14 12:40:40 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A9120FD4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:5b:42:69:06:ec:4b:de:6b:ba:74:44:7c:b7:
a2:10:55:36:d0:c8:f7:a2:be:78:35:99:f8:a5:23:
2e:2b:cb:91:5c:37:b5:35:ed:80:29:94:ea:db:ec:
76:4f:5b:53:53:4f:74:33:2e:b9:8b:c1:dc:49:f1:
5d:d1:2c:06:3a:2b:82:d2:00:c4:4e:32:2d:62:c2:
a3:0c:e2:b7:70:57:a9:d6:b1:39:52:58:5e:f3:40:
1f:7a:6c:7b:9c:c4:69:3b:22:6c:a3:01:df:26:3e:
46:c2:55:e5:92:27:c5:dc:40:84:0c:ff:0a:c9:22:
c8:79:61:bf:11:bb:95:d3:8c:f2:e6:94:ce:10:98:
1e:77:88:b3:f7:fc:94:4b:8f:b6:58:64:c6:35:5a:
d5:5a:72:3f:ff:d2:7a:73:d7:e8:6a:3f:46:14:f5:
f2:4e:bb:74:c2:6b:4b:cb:5b:14:f7:13:b5:47:aa:
23:f7:53:74:c0:3a:89:10:f7:74:a4:25:00:4a:10:
65:8f:5d:f2:78:21:71:c8:8e:40:da:dc:8e:59:96:
1d:39:71:a7:02:e4:9e:37:62:b7:e1:06:80:3c:31:
63:c6:44:88:20:a3:2f:a9:90:09:a6:43:cc:52:b0:
e9:6f:e9:fe:d4:12:3e:66:1a:fb:90:2e:d9:b1:53:
7e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:C6:B1:A0:B2:C3:A6:14:F3:CB:43:FA:BB:31:BF:81:61:6B:54:B4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58768
151353
sbgp-ipAddrBlock: critical
IPv4:
103.140.116.0/23
203.190.8.0/21
IPv6:
2400:fa40::/32
Signature Algorithm: sha256WithRSAEncryption
34:f4:db:86:84:8e:95:a1:e2:19:56:ac:f5:3e:df:d6:53:dd:
95:93:4c:27:ee:c8:d5:8b:52:5d:5a:a9:26:41:5b:ff:52:0d:
d8:af:e0:9a:eb:db:65:a1:92:25:f6:03:82:b9:0d:4a:26:ab:
7e:e4:fc:95:2a:af:cf:fc:09:fd:f4:b2:a1:cd:62:e9:46:e7:
6d:a3:99:ff:13:cc:62:26:44:fe:1a:b1:99:93:72:4c:9c:33:
ee:df:c4:f2:e0:7f:66:95:86:a1:38:18:d3:85:ab:75:19:58:
43:20:c1:54:37:43:eb:24:ef:9f:b3:a3:40:61:06:f6:66:47:
1d:bf:f0:8b:55:4a:11:98:68:7e:96:1a:25:9f:f0:9c:af:ec:
da:29:71:24:52:d1:87:b6:9a:9e:ae:ad:40:90:99:a3:c0:ba:
8c:28:2a:91:8b:4e:96:81:0d:d5:92:a3:59:bd:21:b2:e1:2e:
ea:6b:b3:df:77:34:2a:b4:ef:14:52:dd:6a:78:55:31:f1:43:
dd:09:a1:21:3c:53:76:8a:4c:54:45:32:8f:c5:63:ad:22:1a:
49:ce:a7:6d:09:b2:7c:0f:85:3c:bf:42:d3:41:84:d8:fe:74:
cc:f6:0e:b7:de:9c:01:3a:04:94:52:7e:e6:ff:e0:0b:84:4d:
ef:48:c7:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:09:07 2025 by rpki-client