Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer
File: b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer (raw, json)
Hash identifier: GHUtalu9j4UVnGW5lawmoeXmZP0nSYI1PxCVidnhElU=
Subject key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0237FB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 18 Mar 2025 01:24:51 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 7721
AS: 132479
AS: 132623
AS: 133555
AS: 134413
AS: 134477
AS: 134488
AS: 134708
AS: 136535
AS: 136591
AS: 136725
AS: 137436
AS: 137835
AS: 137908
AS: 138211
AS: 138401
AS: 138535
AS: 139231
AS: 139317
AS: 139791
AS: 140572
AS: 140682
AS: 140731
AS: 140915
AS: 140961
AS: 141429
AS: 141445
AS: 141776
AS: 142164
AS: 142418
AS: 142433
AS: 142438
AS: 142553
AS: 142586
AS: 142642
AS: 149163
AS: 149510
AS: 150141
AS: 150173
AS: 150184
AS: 150373
AS: 151187
AS: 151193 -- 151194
AS: 151202
AS: 151331
AS: 151418
AS: 151490
AS: 151494
AS: 151673 -- 151674
AS: 151785
AS: 151814
AS: 152118
AS: 152134
AS: 152186
AS: 152598
AS: 152631
AS: 152697
AS: 152892
AS: 152911
AS: 152920 -- 152922
AS: 152930
AS: 153033 -- 153034
AS: 153057
AS: 153168
AS: 153170 -- 153172
AS: 153185 -- 153187
AS: 153189 -- 153190
AS: 153195
AS: 153330 -- 153333
AS: 153376
AS: 153458
AS: 153633
IP: 103.150.214.0/23
IP: 2406:840::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145403 (0x237fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 18 01:24:51 2025 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A917ED5C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f8:91:d2:ce:e4:fc:55:88:67:f0:8f:e5:23:
45:e6:c9:51:01:0c:71:82:5b:d8:d4:12:3c:65:90:
19:bc:7e:7d:eb:7b:96:7c:bf:f6:6e:c7:d9:34:97:
b1:90:9e:27:3b:1b:1e:64:62:d9:35:23:92:74:38:
1c:8c:29:67:36:20:1b:2f:b1:5c:d7:0d:46:0f:a6:
3e:c5:a1:d2:da:d9:83:c0:84:02:73:d5:f1:d1:4d:
f4:76:ab:6c:ea:ff:08:87:a5:4f:20:71:df:de:30:
82:15:85:1d:a9:e1:63:b5:0a:86:82:55:93:33:76:
5f:d3:1a:6d:9c:11:a4:94:b5:97:65:9f:ea:55:90:
50:54:33:1b:f5:e1:ac:d5:0d:c8:20:01:12:a1:dd:
7d:4b:b2:93:76:4f:58:db:df:92:0f:5e:6d:fd:0d:
97:db:32:93:ed:1b:77:a7:d2:ef:5f:79:88:6e:b3:
7d:60:29:29:13:b0:66:4f:c7:37:f6:39:d1:68:6e:
23:45:bc:52:89:fc:6c:20:a5:04:0f:f7:08:5e:49:
ac:6f:58:70:db:2d:83:a7:80:a9:20:88:c2:cf:1f:
40:ee:f2:3d:f0:61:48:69:d4:e3:68:5e:d0:c5:52:
00:e3:10:09:97:5c:ef:ec:8f:74:30:76:74:20:2f:
52:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
7721
132479
132623
133555
134413
134477
134488
134708
136535
136591
136725
137436
137835
137908
138211
138401
138535
139231
139317
139791
140572
140682
140731
140915
140961
141429
141445
141776
142164
142418
142433
142438
142553
142586
142642
149163
149510
150141
150173
150184
150373
151187
151193-151194
151202
151331
151418
151490
151494
151673-151674
151785
151814
152118
152134
152186
152598
152631
152697
152892
152911
152920-152922
152930
153033-153034
153057
153168
153170-153172
153185-153187
153189-153190
153195
153330-153333
153376
153458
153633
sbgp-ipAddrBlock: critical
IPv4:
103.150.214.0/23
IPv6:
2406:840::/32
Signature Algorithm: sha256WithRSAEncryption
ae:be:d7:de:8c:ab:bc:1d:76:89:3d:03:bf:98:83:9b:b6:8c:
bc:3e:a1:09:47:26:11:81:4d:fb:78:63:7b:ad:a3:77:94:36:
fb:ba:37:85:f9:3f:61:5d:b8:a4:16:2c:97:74:ab:d4:c1:d5:
73:3c:97:2d:8d:13:d2:26:b9:63:ac:dc:a1:4a:3a:d3:0f:aa:
66:a5:93:a9:4c:31:92:e1:47:55:89:b7:1a:57:e7:d0:bf:e4:
67:b9:10:2a:d4:81:59:0f:15:66:44:16:d8:92:c7:6f:f0:3a:
9e:3d:db:25:e1:2c:d3:e3:2b:c9:57:af:07:3a:e6:37:d9:81:
d5:8f:a0:0f:41:f1:24:48:1b:66:68:36:90:64:b5:db:fb:70:
95:48:99:a8:e2:f7:53:d7:1c:53:3a:86:d0:ed:de:49:fa:c3:
4f:8c:21:4a:5f:10:d0:d0:ad:9a:83:29:02:45:ee:dd:5e:38:
a7:49:d9:6e:f8:e1:74:74:2c:09:55:77:ba:79:39:f8:5a:29:
57:03:e7:90:ab:9a:8f:80:9b:96:60:01:55:84:08:99:0b:6b:
9d:04:fd:93:5d:31:1f:5e:f1:2f:99:43:1b:69:8b:c2:f7:b5:
55:68:1e:1a:d6:e6:62:ad:22:de:2d:e1:5d:83:eb:a5:c0:9f:
6e:41:a6:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:13:42 2025 by rpki-client