Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0H2TqslF-qZON3k-wqBTly7fnc.cer
File: c0H2TqslF-qZON3k-wqBTly7fnc.cer (raw, json)
Hash identifier: YLAfU+oLycAIM96yc8Q6uPvgQ0wr5JYHTmq3Yhe8rv4=
Subject key identifier: 73:41:F6:4E:AB:25:17:EA:99:38:DD:E4:FB:0A:81:4E:5C:BB:7E:77
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0226A5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912184B/136487FA8C8C11E6B0B7C528C4F9AE02/c0H2TqslF-qZON3k-wqBTly7fnc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912184B/136487FA8C8C11E6B0B7C528C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 02 Jan 2025 13:15:11 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 133749
IP: 103.76.40.0/22
IP: 2407:6180::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140965 (0x226a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 2 13:15:11 2025 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A912184B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:05:bb:55:61:a7:de:8e:17:16:ef:50:47:af:
d0:d8:ed:dc:d4:dc:fb:c6:66:2c:d3:76:31:31:2f:
0f:46:2b:3f:93:bf:93:18:20:30:68:6e:2b:88:3a:
32:43:0c:4d:47:81:38:d5:a0:de:6d:e5:a2:56:c0:
3f:e0:1c:a0:5c:33:21:32:79:a9:16:4b:9e:2d:e4:
8d:86:48:d6:a1:1a:74:45:75:41:41:b5:7a:69:a3:
c7:03:cc:0c:95:8e:9d:58:cb:06:9a:f4:ed:a2:4d:
c0:64:bf:e7:f2:e8:7d:03:29:4b:44:ad:21:a4:da:
2a:86:2d:d3:21:03:e8:89:d5:94:db:aa:1c:1e:75:
79:c3:3e:cb:ed:0b:2e:94:18:bb:fe:99:a6:fb:9d:
e2:b2:8d:fa:ef:27:f1:59:0c:f6:5e:8b:76:f1:67:
75:96:a4:6c:a2:63:fb:c4:93:6a:9e:ca:9a:22:73:
00:36:e7:06:2b:3c:38:89:02:81:d5:f7:a5:db:47:
7c:cc:e4:41:b3:52:f8:47:48:37:24:0e:f3:d5:29:
2f:64:fd:60:6a:bc:3d:21:0a:64:eb:95:d8:0d:e1:
15:f6:15:18:f9:c0:08:e0:0b:33:63:70:2f:01:84:
fd:8a:69:ca:be:d9:33:80:13:df:08:b7:2c:3f:52:
2b:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:41:F6:4E:AB:25:17:EA:99:38:DD:E4:FB:0A:81:4E:5C:BB:7E:77
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912184B/136487FA8C8C11E6B0B7C528C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912184B/136487FA8C8C11E6B0B7C528C4F9AE02/c0H2TqslF-qZON3k-wqBTly7fnc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133749
sbgp-ipAddrBlock: critical
IPv4:
103.76.40.0/22
IPv6:
2407:6180::/32
Signature Algorithm: sha256WithRSAEncryption
92:bf:ea:65:c0:f0:af:7c:32:c6:c2:17:49:cb:77:d9:c7:09:
0b:cf:68:66:77:24:ab:03:6d:bc:b1:a0:a2:de:4a:0b:7f:df:
76:c7:d9:6b:4c:44:08:e8:77:31:d2:6a:c0:2b:c9:85:a0:da:
57:92:66:cb:e9:b0:fc:d3:6e:9a:3d:8d:8e:67:23:2b:c8:fb:
75:24:21:71:f5:97:83:f3:be:b6:bb:37:c3:77:a0:af:bd:6e:
32:8a:5a:4a:fd:9b:81:13:fe:b5:d9:8e:68:bb:5b:85:7b:59:
c8:70:b1:25:f8:c4:a8:a4:10:c5:70:b5:ab:e4:4d:ab:aa:68:
16:6d:19:8a:cd:d6:d3:25:25:68:65:9a:87:2d:5b:6d:e3:26:
a6:48:a9:f8:ea:57:13:5a:95:3f:4c:a1:2a:4f:0f:99:66:ca:
e4:f3:3b:f4:3b:fc:7e:41:2c:a0:2e:79:f5:a9:73:a8:fc:24:
a4:e6:8f:f4:d3:d2:4b:4c:7e:7c:98:a7:b6:2e:68:a5:f3:18:
76:1f:14:2b:60:99:ee:5d:49:7d:c3:cd:c6:d0:38:01:4c:39:
4c:14:08:8f:95:17:1e:3f:ee:90:62:18:8a:79:50:f8:bd:37:
24:31:10:5f:55:c5:02:de:22:3d:67:3d:70:ec:fd:94:ac:75:
4d:df:e1:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 23:06:37 2025 by rpki-client