Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer
File: a-Q-axOWQ8tMGebfcyO1A8STEds.cer (raw, json)
Hash identifier: EzJp2uL7ba22g7PBg/pSqBaQJdMNhylRFzj21pcjHsk=
Subject key identifier: 6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022691
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 01 Jan 2025 18:17:54 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 58779
AS: 59237
AS: 59337
AS: 132790
AS: 133027
IP: 43.243.224.0/22
IP: 43.252.168.0/22
IP: 103.241.16.0/22
IP: 103.244.52.0/22
IP: 2405:ef00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140945 (0x22691)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 1 18:17:54 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A91E8D27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f2:ab:3b:1b:a1:38:36:1f:22:4f:8f:53:fb:
ca:cb:3b:72:9f:4f:27:2f:c4:09:46:37:27:5b:0e:
21:3e:82:87:82:2f:ed:27:ef:c7:44:5c:79:91:53:
03:3c:9a:36:2a:52:c5:84:d9:52:53:5d:4b:d7:6b:
1d:f7:8e:f2:64:82:04:d3:de:4e:7a:df:c0:62:55:
a1:78:81:be:44:ab:56:74:20:0c:49:28:f2:de:50:
6a:03:3f:9c:75:4d:2c:dd:80:01:c4:51:6f:fa:8b:
18:25:ad:4b:ad:cc:bf:5f:20:63:70:5a:ef:26:0c:
6e:fb:e2:3d:af:67:c1:ad:de:77:18:8a:eb:b8:17:
77:4e:59:a3:19:7b:17:f5:19:f0:b9:7e:bc:9d:28:
8f:1e:c8:51:22:d9:33:75:cf:8d:0c:a3:f7:5b:02:
81:94:73:ed:d5:c9:ce:70:8f:3f:85:9b:1d:d8:17:
2e:0c:a6:0c:a7:08:ca:4a:cc:f3:68:a9:e2:3f:de:
72:26:55:0e:25:fd:8b:67:ba:b3:fc:40:3e:8c:10:
86:fd:b5:de:48:e7:4a:95:36:4b:b9:e4:79:71:0d:
61:db:41:6d:de:66:5f:2a:13:0c:4e:2d:1f:4c:95:
97:5f:a0:44:ef:f1:86:e0:58:14:92:bc:f6:ab:85:
8c:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58779
59237
59337
132790
133027
sbgp-ipAddrBlock: critical
IPv4:
43.243.224.0/22
43.252.168.0/22
103.241.16.0/22
103.244.52.0/22
IPv6:
2405:ef00::/32
Signature Algorithm: sha256WithRSAEncryption
40:ab:d1:1e:0e:8c:09:7a:95:a7:78:bd:70:0c:fd:eb:73:1a:
bf:9a:c2:e4:f2:24:4d:60:ff:2b:75:dd:e9:19:07:f8:b9:0e:
cf:25:0d:55:cf:85:4a:f0:d1:c2:b2:e7:a6:5a:75:77:24:ab:
0e:16:af:03:48:c7:7f:16:bf:1a:ef:e6:d5:1d:dd:04:b8:14:
ba:84:90:25:4b:0b:bd:de:7e:a2:3f:c4:8f:f4:13:f6:15:3c:
c2:ee:30:9d:9a:9f:c6:7b:42:d7:7d:70:32:e3:cc:8f:ec:b2:
a9:3a:0b:c9:5e:d2:f6:71:e2:00:81:46:45:3b:7c:c6:fd:a3:
94:32:8c:33:96:da:9b:5e:c1:35:69:fe:2d:26:a9:29:bb:7c:
a6:02:dd:14:b3:1c:0b:a9:fb:b9:e3:3c:6f:b5:f2:85:b8:7e:
b8:c5:ae:ee:11:3f:da:de:79:f6:63:f8:9f:e8:6d:15:87:b6:
db:ac:5a:0d:d8:08:bb:f4:e2:a8:bc:0f:bd:ce:8d:64:5a:a7:
83:df:f7:c2:c9:8a:37:bd:4c:de:2b:a3:61:86:b5:ba:15:71:
55:6c:52:b2:04:46:b5:45:02:e3:b4:71:60:21:80:a2:0d:4f:
a0:3a:ed:47:41:c8:01:f4:b0:ad:e1:cf:fb:84:c1:90:f0:30:
19:e9:49:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:29:15 2025 by rpki-client