Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer
File: ZeF3DniFUQoYzpDYqt2e3n1bNVM.cer (raw, json)
Hash identifier: O+rYd5L9WmkY54JAWeom23AIUGmHc/EhR7aDS9gJdY4=
Subject key identifier: 65:E1:77:0E:78:85:51:0A:18:CE:90:D8:AA:DD:9E:DE:7D:5B:35:53
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022764
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 06 Jan 2025 04:32:57 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 153325
IP: 203.19.243.0/24
IP: 2001:df4:4140::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141156 (0x22764)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 6 04:32:57 2025 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A9151932
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:3a:2f:97:04:43:b3:4c:fc:11:6c:b0:ae:fe:
06:33:b5:91:70:c2:33:9c:6c:92:81:51:54:6c:69:
c4:9d:99:47:5f:29:ce:d4:1a:b6:85:c2:63:32:d2:
b7:c6:64:ec:48:47:b8:9e:85:7e:d2:d3:8c:60:4d:
94:2b:41:93:9f:e6:df:c6:ec:df:c4:a8:93:5a:42:
82:14:05:e8:06:ad:d0:a1:63:e5:03:31:eb:80:76:
4a:fe:f8:d1:2f:65:94:94:63:c6:41:85:14:51:5b:
a3:cd:36:21:79:41:87:f0:c5:be:89:da:cd:e9:f9:
0b:a9:2a:ed:4f:5f:62:59:6d:a1:e5:96:e6:21:8c:
81:1e:e1:a0:a6:81:3a:0b:32:a1:d4:98:82:bc:5a:
c5:8e:e7:f9:5e:51:04:66:bc:cb:c5:d1:c0:c2:c8:
b6:06:44:7b:20:00:87:ae:52:f9:df:91:82:1e:f6:
39:6d:79:3a:31:f5:93:32:ce:b6:70:47:2c:e2:79:
88:24:9a:36:37:e2:0b:68:27:36:bf:f1:82:a6:e9:
65:b8:bb:0f:09:79:3f:2d:86:e0:19:4d:34:5b:85:
16:85:d7:f4:02:38:aa:ae:e1:af:14:50:f0:81:0d:
b3:33:44:b5:95:b4:61:6f:db:da:ed:c7:e3:67:db:
d8:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:E1:77:0E:78:85:51:0A:18:CE:90:D8:AA:DD:9E:DE:7D:5B:35:53
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9151932/521C8E5C720711EF9DC8BA21C4F9AE02/ZeF3DniFUQoYzpDYqt2e3n1bNVM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153325
sbgp-ipAddrBlock: critical
IPv4:
203.19.243.0/24
IPv6:
2001:df4:4140::/48
Signature Algorithm: sha256WithRSAEncryption
cc:61:e0:ef:cf:30:dd:c5:a9:c5:6a:bb:4b:36:8e:ca:6f:dc:
cf:dc:30:9d:4b:78:1a:01:26:78:2e:dd:b7:3d:81:9a:be:6a:
65:c1:e4:0b:df:4a:1a:ee:43:73:6b:e3:06:64:3a:2b:97:8d:
04:1f:18:d3:fa:f9:a4:5e:c3:1b:18:f9:f8:4f:cc:9d:6c:ae:
66:41:40:d7:6b:af:08:8d:0a:1b:6a:4a:05:8a:59:d2:2c:f7:
d8:66:c0:a6:03:87:d3:c0:84:2f:63:54:92:23:51:d3:a0:fd:
cb:6c:f8:ed:32:5e:8c:8a:15:3e:8b:a8:38:c9:dd:34:d7:55:
0e:0d:df:3d:db:ab:7c:c4:fa:30:bb:71:36:d9:fc:f1:42:fe:
83:71:1e:af:56:89:00:99:4a:8f:a8:fc:39:37:50:1d:3d:c0:
3c:73:33:8a:92:79:3b:20:0b:78:f0:40:65:9a:e4:02:b4:c7:
2f:0d:d5:7c:e6:a2:36:6d:e5:a9:79:31:58:5c:48:1e:68:19:
ab:d4:07:8c:36:d3:f5:3f:f2:f5:ac:2c:1d:eb:46:57:90:07:
37:dd:b0:7e:25:4d:64:a5:3d:41:8d:f4:80:cd:0a:4a:c4:5d:
e8:b2:4b:09:85:a7:f0:73:da:e2:19:92:48:dd:53:a7:3e:47:
dc:d9:e7:58
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 02:09:08 2025 by rpki-client