Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chMb8CkEqEkfuTxB1F376UKq1nE.cer
File: chMb8CkEqEkfuTxB1F376UKq1nE.cer (raw, json)
Hash identifier: Aml2LSPb678R1aBHoshWckeZycZ98uMOo8zKOuba1ic=
Subject key identifier: 72:13:1B:F0:29:04:A8:49:1F:B9:3C:41:D4:5D:FB:E9:42:AA:D6:71
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021194
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9128EED/283E4E52553A11EF9EC3B738C4F9AE02/chMb8CkEqEkfuTxB1F376UKq1nE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9128EED/283E4E52553A11EF9EC3B738C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 02 Oct 2024 13:19:45 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 139581
IP: 103.141.248.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135572 (0x21194)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Oct 2 13:19:45 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A9128EED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:af:de:5f:64:a1:ea:cd:5e:9f:0b:9d:13:77:
91:66:bf:eb:d1:b4:68:80:11:85:6e:28:dc:0c:46:
73:cf:d2:4b:5f:35:14:d3:cf:cf:bd:d5:d0:88:9a:
0b:c4:69:7c:f0:b2:43:fd:31:8d:e0:3d:99:45:09:
63:ae:34:58:a3:08:80:f4:57:93:d8:83:28:38:c8:
7d:3f:ad:2d:7c:36:3d:42:b5:d1:13:9c:f0:38:49:
60:a3:62:71:48:76:69:7d:5c:55:67:fb:7e:d2:b7:
9a:02:8b:39:58:94:fc:e9:2f:e3:95:e4:f8:ab:92:
c3:4e:26:c2:2b:9b:08:72:1e:7a:80:7b:b3:b4:05:
00:ed:0e:3a:45:a3:b2:e4:87:55:7b:49:34:84:ce:
a2:b1:04:f5:9a:1e:ea:89:23:4a:ea:10:c6:40:fc:
ef:a5:9a:88:22:47:a6:07:60:e7:29:51:51:3e:c2:
38:a3:10:7f:10:45:92:b4:56:cf:a5:a5:f5:cc:5d:
34:aa:32:f9:38:42:ed:de:b2:ba:b1:f6:0b:42:a3:
bd:8f:fa:39:2e:4f:42:14:cb:84:60:7f:19:1f:ba:
9b:2f:cf:c4:bf:c7:d5:70:28:39:dc:3e:30:48:27:
f4:35:df:a1:fe:79:36:ee:46:c5:7d:9e:49:58:86:
12:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:13:1B:F0:29:04:A8:49:1F:B9:3C:41:D4:5D:FB:E9:42:AA:D6:71
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9128EED/283E4E52553A11EF9EC3B738C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9128EED/283E4E52553A11EF9EC3B738C4F9AE02/chMb8CkEqEkfuTxB1F376UKq1nE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139581
sbgp-ipAddrBlock: critical
IPv4:
103.141.248.0/23
Signature Algorithm: sha256WithRSAEncryption
ba:1f:90:b0:11:10:d8:6c:c2:40:83:78:20:26:8f:ed:69:b1:
7a:fb:dd:56:9c:97:4e:d2:53:43:d4:df:60:10:43:06:41:0d:
dd:90:83:79:b5:3c:0c:0e:c9:5b:69:ca:88:7d:c7:47:fd:e9:
28:c5:ab:76:4d:9b:fa:fe:7d:a8:9f:e7:bd:c5:97:36:a7:4d:
78:d5:a3:10:14:9d:d8:ef:6e:f8:dd:2b:dc:0a:02:0e:e8:de:
f3:fe:bb:ec:06:42:db:59:c5:6e:74:be:b4:db:e5:83:24:55:
b2:b9:77:31:80:7f:2b:16:77:9b:9c:89:33:26:db:00:af:b8:
1e:8d:80:95:81:f6:fe:cc:0c:a2:55:21:33:9e:59:07:df:c4:
be:ff:20:34:ac:a3:49:a9:41:21:c0:0e:1c:c4:0b:34:57:9a:
19:07:5a:98:47:0b:c0:93:6b:3e:08:f2:53:ee:46:8f:c8:47:
00:ce:44:4c:27:5a:e6:78:7d:e7:95:72:f8:9f:37:14:16:a0:
e3:18:44:0e:90:e7:a4:80:15:16:29:21:c7:9b:68:4f:2c:f7:
f6:7e:31:ce:10:01:4f:40:59:8b:c4:14:43:97:2f:73:a5:b3:
d6:21:c6:80:d6:76:3a:ed:11:63:46:eb:9c:4f:7a:ae:87:e8:
df:0b:45:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:07:11 2025 by rpki-client