Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z_KbNaiUKqa39Brvs0oGdv1pUJc.cer
File: Z_KbNaiUKqa39Brvs0oGdv1pUJc.cer (raw, json)
Hash identifier: /EV4P3Jxee+bPu4ET6+znKIVBT5evczPSVqqMWG5i84=
Subject key identifier: 67:F2:9B:35:A8:94:2A:A6:B7:F4:1A:EF:B3:4A:06:76:FD:69:50:97
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0230EA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91180E8/3A9FAC54E9D611EF8D04B677C4F9AE02/Z_KbNaiUKqa39Brvs0oGdv1pUJc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91180E8/3A9FAC54E9D611EF8D04B677C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 13 Feb 2025 06:46:24 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 55754
IP: 27.121.112.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143594 (0x230ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 13 06:46:24 2025 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91180E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c1:94:de:ae:94:41:bf:1d:37:1c:8c:07:c8:
3c:9a:5e:f0:79:63:79:1f:ed:cc:05:9f:98:6e:5b:
b7:fa:d0:bd:39:09:24:e2:b4:af:e8:27:34:dc:de:
35:ca:ac:d7:b5:90:ad:aa:23:31:8c:7b:3c:7b:db:
65:24:88:2b:b1:f5:ec:9d:f4:bb:c3:79:b5:c9:5e:
63:e3:87:e1:52:f9:4d:b2:28:59:77:56:0f:dc:dc:
d0:0b:e9:d7:11:75:ca:5b:c2:e9:65:14:82:22:6c:
19:a7:fd:96:fd:b8:37:27:76:db:bf:37:dc:40:13:
8a:10:9e:75:11:ac:e2:b5:c6:da:24:89:88:5d:31:
fb:68:92:3e:a4:b3:0e:72:13:ba:6a:0f:4f:20:f3:
59:22:a3:18:42:fa:07:83:68:f1:c3:d3:74:43:5f:
18:a2:86:9b:1b:a6:49:af:8d:0b:3f:66:53:29:05:
8b:1e:5d:15:6b:18:e3:5f:59:30:f7:94:67:7f:a9:
7a:f5:fd:07:08:74:80:9d:65:61:0c:73:e2:3a:4f:
a4:47:cf:4c:ff:b5:69:02:4d:54:94:4f:2e:39:b7:
8c:98:ef:7d:19:92:96:36:d0:8f:73:b9:c4:06:59:
16:fd:77:31:bb:1c:5b:b4:be:8c:92:aa:ab:03:b8:
7a:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:F2:9B:35:A8:94:2A:A6:B7:F4:1A:EF:B3:4A:06:76:FD:69:50:97
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91180E8/3A9FAC54E9D611EF8D04B677C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91180E8/3A9FAC54E9D611EF8D04B677C4F9AE02/Z_KbNaiUKqa39Brvs0oGdv1pUJc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55754
sbgp-ipAddrBlock: critical
IPv4:
27.121.112.0/23
Signature Algorithm: sha256WithRSAEncryption
d4:d9:a6:df:9d:4c:93:f5:7f:42:21:97:bc:f7:ab:34:91:56:
fc:8d:3d:87:d1:36:65:af:88:b2:86:9a:34:9f:5b:70:1a:ed:
b8:55:87:6c:b0:62:e4:1e:a0:cc:3b:a2:0a:dd:de:91:1a:b1:
d5:c8:ce:b2:62:67:57:f5:04:49:9d:e3:1f:63:87:9c:ca:b8:
a9:fd:cb:72:df:90:e5:2e:f9:8c:e5:97:a8:9f:88:8f:0b:2b:
66:e2:21:79:96:88:d5:a1:70:c1:1a:91:08:f9:41:07:bd:f8:
74:17:5f:66:f8:04:18:80:0a:7e:15:d6:33:00:fa:69:0b:48:
40:9f:3b:3a:03:ac:a8:f7:dc:f1:5d:93:b5:10:81:3c:9a:49:
c5:30:bd:08:49:6f:d9:70:47:6b:b4:4a:e2:70:bd:20:e2:5e:
9d:db:d8:3c:d7:cd:94:4b:ad:69:ce:57:c4:1e:2a:29:ce:30:
2a:06:c8:95:6c:3d:50:15:50:ae:cd:a4:12:5c:f1:ea:c7:66:
90:50:51:fd:d4:98:68:f9:19:25:65:a8:60:e2:0f:cf:00:4b:
ee:9e:55:66:00:f3:65:1a:e2:56:8c:78:cb:17:52:88:e8:a6:
ff:6e:d6:35:f1:61:77:dc:ce:33:e1:e6:6b:41:cf:ce:8b:4b:
aa:4a:e2:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:12:39 2025 by rpki-client