Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z0EvDHMNn0VGelJsOCXsOP5wC2M.cer
File: Z0EvDHMNn0VGelJsOCXsOP5wC2M.cer (raw, json)
Hash identifier: 0TYkdvd6xoI5xfzqzSiBaoWnwIcYr6LltQXt4/kg4Vc=
Subject key identifier: 67:41:2F:0C:73:0D:9F:45:46:7A:52:6C:38:25:EC:38:FE:70:0B:63
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0233EC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9135F86/88ED5C84EF2C11EF9C3F3C7BC4F9AE02/Z0EvDHMNn0VGelJsOCXsOP5wC2M.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9135F86/88ED5C84EF2C11EF9C3F3C7BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 28 Feb 2025 14:09:16 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 58530
AS: 58675
AS: 59250
AS: 59291
AS: 132140
IP: 103.225.156.0/22
IP: 103.247.248.0/22
IP: 103.254.140.0/22
IP: 2400:9a80::/32
IP: 2403:1700::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 17:46:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144364 (0x233ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 28 14:09:16 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A9135F86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:ec:0c:08:c3:cd:d7:e2:69:fd:67:23:fd:ce:
86:e1:bc:23:69:aa:d3:a6:b8:d3:af:02:92:42:a3:
dc:d1:35:60:17:7d:73:ff:c0:38:a8:f1:9c:7d:b0:
25:ee:c5:00:3d:c7:fa:47:e2:a8:63:f4:10:6b:d3:
14:0e:a3:1b:da:a8:19:b5:5e:f3:c2:3e:d9:7b:89:
a1:b5:27:93:42:98:ea:53:df:3c:5d:3d:d7:66:eb:
e6:23:9b:51:b5:0b:a2:1d:9f:fe:1a:31:4b:98:d5:
fb:12:e4:ae:d0:c7:96:f6:8e:a0:81:54:ab:5e:99:
8f:6e:1e:8f:46:12:dd:37:29:6e:0d:64:04:be:ef:
6e:70:d9:23:f3:81:eb:7c:a5:bf:aa:11:2d:78:2b:
55:b7:7a:15:a8:80:39:09:24:fa:6d:fc:b0:f6:f8:
bd:3f:c6:59:46:a3:e6:65:e6:56:bc:ef:be:70:60:
7e:35:b9:d3:fc:78:6a:02:33:bc:50:1b:2e:14:f5:
67:82:80:53:59:bd:e7:3e:2b:89:b4:1e:80:f8:5a:
b8:78:6c:aa:42:b7:8f:68:a5:44:9f:62:e4:d2:75:
92:1d:4e:d8:c9:20:c2:2e:08:1a:de:22:bd:06:7c:
20:9a:16:63:d5:86:a4:88:19:51:94:29:38:ff:a8:
c8:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:41:2F:0C:73:0D:9F:45:46:7A:52:6C:38:25:EC:38:FE:70:0B:63
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9135F86/88ED5C84EF2C11EF9C3F3C7BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9135F86/88ED5C84EF2C11EF9C3F3C7BC4F9AE02/Z0EvDHMNn0VGelJsOCXsOP5wC2M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58530
58675
59250
59291
132140
sbgp-ipAddrBlock: critical
IPv4:
103.225.156.0/22
103.247.248.0/22
103.254.140.0/22
IPv6:
2400:9a80::/32
2403:1700::/32
Signature Algorithm: sha256WithRSAEncryption
0e:af:84:5c:05:5e:8e:1a:49:46:92:e9:56:9a:11:af:5a:41:
d4:3b:37:82:cf:6a:1f:e2:bd:82:cc:e6:89:c7:15:d3:25:ff:
1d:2b:80:99:0b:81:27:94:70:f1:73:f0:51:81:6a:45:04:13:
4c:a5:2b:f6:de:2c:99:eb:97:29:f0:dc:b3:9a:ef:05:59:6f:
27:5f:5f:7b:d5:52:e1:da:a8:bb:9d:d1:92:57:fa:e1:91:52:
d8:56:48:44:51:73:cd:79:33:47:3f:ed:95:d9:84:4a:5f:f7:
7c:e2:49:bf:72:07:4f:db:88:13:7b:85:82:d1:e4:a0:6f:ce:
bc:1f:56:c6:a9:6e:d8:f8:be:d0:05:4f:75:54:8d:75:19:6b:
9f:cd:42:ea:80:08:d5:dc:49:95:7c:6f:99:97:52:d6:c1:8b:
ec:6c:a3:b1:95:fe:90:28:df:23:a7:0c:62:2f:ff:20:85:ca:
d8:33:9e:b5:43:bb:ee:59:78:9d:39:df:85:cf:84:df:89:0b:
64:50:af:ea:4b:13:d2:35:97:c8:e0:f0:c5:a8:3e:dd:04:bb:
0f:be:fd:6d:36:2b:c1:d6:52:87:c9:b1:ae:0f:8c:e7:ae:9d:
23:25:41:aa:a7:8c:6b:48:d3:a5:28:94:05:07:15:6e:b0:08:
a7:82:a2:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:02:41 2025 by rpki-client