Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eOQpC8zJmRWAsnbcDCyXv7CGINg.cer
File: eOQpC8zJmRWAsnbcDCyXv7CGINg.cer (raw, json)
Hash identifier: 0Js+8VVk4tYV99VA4RY2sm3L8uBNNUxZpUuguSAYvsw=
Subject key identifier: 78:E4:29:0B:CC:C9:99:15:80:B2:76:DC:0C:2C:97:BF:B0:86:20:D8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022F8F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914B79F/DA6837F04E2911EE945C394FC4F9AE02/eOQpC8zJmRWAsnbcDCyXv7CGINg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914B79F/DA6837F04E2911EE945C394FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 06 Feb 2025 14:05:53 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 139900
IP: 103.146.206.0/23
IP: 2400:b020::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143247 (0x22f8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 6 14:05:53 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A914B79F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:61:ce:3c:b2:1b:2c:0a:85:63:28:0b:ca:18:
1d:d8:e5:be:d3:27:f2:71:f7:bc:b7:de:5d:81:32:
ae:da:45:13:73:a1:ff:8a:f4:b9:c5:9f:04:4d:44:
80:79:a5:28:45:b3:2f:8e:9d:36:f2:74:54:f9:59:
c8:03:2b:8f:3b:9b:59:c8:96:bf:99:a2:98:03:9e:
44:be:b7:ce:ab:15:d4:fd:39:26:63:6a:ca:53:98:
ab:7f:2b:25:fa:cf:dc:9a:81:cc:9b:72:78:67:37:
ed:82:45:85:2d:96:07:a8:29:e3:2d:a3:e3:77:bd:
05:d2:05:aa:0c:a9:f9:f3:6f:da:45:a7:ec:3a:d2:
b3:26:9b:2c:8a:d5:a8:92:3c:0d:63:bd:c0:5e:38:
f8:b3:eb:5e:a9:d1:f4:5e:11:fc:fd:06:c2:ca:fc:
61:5a:92:3f:b9:35:55:d7:46:10:99:3a:83:85:5c:
c8:ed:5c:e1:d6:c9:22:6e:3d:b3:8b:05:98:6b:4f:
6e:67:f9:d3:19:86:3f:2a:4a:2e:d2:48:2c:c5:db:
ad:3f:cf:04:b2:a4:69:88:6f:34:c8:32:ff:f7:0e:
ef:17:9c:39:04:d2:ec:1d:10:15:a9:f3:e0:b7:af:
e7:fe:de:47:0b:d4:b4:42:23:91:c2:2e:af:ad:27:
36:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:E4:29:0B:CC:C9:99:15:80:B2:76:DC:0C:2C:97:BF:B0:86:20:D8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914B79F/DA6837F04E2911EE945C394FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914B79F/DA6837F04E2911EE945C394FC4F9AE02/eOQpC8zJmRWAsnbcDCyXv7CGINg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139900
sbgp-ipAddrBlock: critical
IPv4:
103.146.206.0/23
IPv6:
2400:b020::/32
Signature Algorithm: sha256WithRSAEncryption
64:93:7f:a7:37:6c:94:6c:52:3e:b5:50:2a:96:1c:19:5b:8d:
9f:bd:bf:3d:13:5b:04:39:50:11:14:b6:de:91:99:25:1c:93:
0e:69:6d:5a:d2:6d:9b:23:40:06:2f:3b:37:b5:e7:2c:db:98:
89:1b:e9:ce:3f:cc:b9:ae:e0:c4:1a:3c:2c:0c:3c:26:4f:83:
dc:33:04:91:a7:e3:88:7a:8d:52:11:50:86:69:a1:6e:b6:32:
f4:9c:38:3b:ad:b6:8a:46:b2:60:94:8b:5d:e3:6c:07:79:c4:
0e:6b:2d:f3:00:6c:da:56:df:e6:24:6b:30:3a:80:13:38:16:
ea:6b:69:04:5d:5d:0b:ff:23:32:f4:5a:d9:69:31:ef:29:9d:
d1:25:92:b8:5a:13:89:2b:6f:99:e0:ed:c5:8b:8a:07:cd:80:
fe:ba:ad:6f:a0:3e:25:b1:a7:bf:30:f8:06:74:85:6c:92:57:
14:bb:b7:d1:7c:5b:9b:fb:6d:70:4f:5b:6b:79:cd:eb:f3:23:
b8:5e:5f:7b:fe:e0:f2:90:ed:31:61:00:63:36:b1:33:8f:44:
04:c5:d7:eb:05:88:55:17:2a:8b:e6:fd:c8:c8:95:b9:90:ec:
e4:b3:10:59:b7:a0:4f:a5:fd:c4:f8:9d:cf:17:b9:7e:ee:c6:
6d:7c:06:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:05:12 2025 by rpki-client