Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer
File: _thOn-AVmpk3ohk6C326I7bCZbg.cer (raw, json)
Hash identifier: zcYEVr8OpVgW9lF7lbn40/xZQcKudw0jDvMLwiGnNhI=
Subject key identifier: FE:D8:4E:9F:E0:15:9A:99:37:A2:19:3A:0B:7D:BA:23:B6:C2:65:B8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023917
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 23 Mar 2025 13:51:25 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 153691
IP: 163.223.90.0/23
IP: 2401:f520::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145687 (0x23917)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 23 13:51:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A91EDBB0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e5:0a:d9:5b:a8:1d:1f:ce:fd:11:cb:14:73:
58:e3:ad:52:06:d6:f4:54:34:88:de:67:4e:76:75:
a5:0a:f9:eb:7a:9c:50:2f:1e:a8:15:b6:16:b6:f1:
c4:2b:a5:34:3a:f6:5a:68:3a:6c:b1:a3:1e:67:94:
49:9d:39:25:f9:af:ac:9b:be:97:94:89:86:b8:6e:
72:2d:d9:f3:d9:37:fd:38:de:52:95:55:b9:eb:6c:
73:11:ae:4c:54:ec:90:b0:be:66:8c:c1:a3:ba:2d:
b5:6a:1b:be:c7:07:72:20:ca:52:d9:ad:e1:3a:c7:
02:dd:8a:ae:e5:32:e5:03:c0:06:34:ea:f4:7e:1d:
0c:f7:2c:da:91:67:51:3b:1f:d3:81:66:9a:ad:f7:
c5:b7:8b:5c:40:a1:a4:13:40:7e:69:c1:ce:11:3c:
c0:9e:db:7b:e4:f0:68:ee:34:a3:50:b9:58:cd:ce:
cc:1d:40:b8:03:05:be:cc:5d:bd:02:3e:72:bd:ec:
0e:c2:f8:d5:4e:56:90:4d:7a:8c:5b:54:13:37:f0:
b7:55:14:73:51:a3:23:e0:7c:ba:92:1d:1f:ee:a5:
54:cd:e6:71:54:f2:6c:69:f7:62:a9:04:52:08:65:
7c:02:fc:17:5c:bc:20:d0:32:23:52:71:22:5f:e5:
54:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:D8:4E:9F:E0:15:9A:99:37:A2:19:3A:0B:7D:BA:23:B6:C2:65:B8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153691
sbgp-ipAddrBlock: critical
IPv4:
163.223.90.0/23
IPv6:
2401:f520::/32
Signature Algorithm: sha256WithRSAEncryption
da:ad:3a:d2:e7:16:95:92:6b:57:71:2b:73:51:98:f9:04:5a:
8c:5c:f0:17:a3:e7:e4:ca:15:3f:aa:39:81:d8:d1:b8:58:c7:
45:16:a4:aa:d7:ab:31:02:8e:58:f5:2c:1c:42:46:9b:66:eb:
03:17:9a:b9:5e:82:d0:c5:32:df:3b:1e:04:ea:52:04:ec:90:
e1:aa:4f:2c:a7:16:67:5b:b3:7f:1a:30:c5:ce:92:d2:e7:7e:
8d:2c:dc:9f:c1:6e:9b:c4:ba:b1:f7:f0:e8:bc:27:d0:19:8a:
b8:c3:cb:d8:8f:68:d5:85:e9:d0:f5:cd:71:04:95:82:21:86:
0b:e8:4d:2a:30:f9:ee:41:58:7a:2d:1c:58:ac:48:3b:7f:23:
d5:e3:9e:72:5a:b5:83:3a:26:36:30:e3:77:63:19:1d:ff:a3:
20:a8:d6:f2:67:de:49:03:ea:5c:2a:56:6d:3b:42:c8:16:a6:
ee:10:f1:d2:46:44:07:fd:93:a6:2f:9e:6c:dc:9b:5f:88:bd:
ca:b6:24:cd:83:0f:36:c1:e0:c1:0c:a9:ab:16:5f:c1:86:3f:
3b:c5:87:19:94:ae:3e:32:5a:eb:c2:97:ff:a7:91:2c:88:a0:
57:d6:6e:a1:47:dd:e6:e6:a8:91:d0:26:77:ee:55:89:2c:90:
d0:22:2a:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:05:27 2025 by rpki-client