Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer
File: ficJop5GIOVCf3NfN8A0c-NrWXo.cer (raw, json)
Hash identifier: +e39xdeduPogIOicmQ3qAXtXj9dyJzwxKlSy05o7TSg=
Subject key identifier: 7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0229CE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 16 Jan 2025 20:10:49 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 138663
IP: 43.239.204.0/23
IP: 103.106.6.0/23
IP: 103.117.164.0/23
IP: 203.78.162.0/24
IP: 2407:6540::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141774 (0x229ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 16 20:10:49 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A91DD0A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ab:d8:02:8f:21:31:df:ad:0f:cb:12:a8:aa:
58:7f:1f:82:e2:f9:c3:5a:5f:b4:85:f9:ab:a2:10:
79:e4:fe:c7:33:07:c3:e4:b7:04:93:b6:f3:69:27:
cb:40:01:22:32:5e:f4:58:0b:52:5d:a9:14:41:69:
f8:6f:83:d8:bf:0a:01:db:4a:ac:32:61:48:5c:1e:
2d:4e:4a:39:9a:19:4e:8f:58:b9:ae:55:d3:4e:ec:
1a:38:01:26:df:8b:fe:a3:9a:a0:98:a7:79:b5:1c:
46:90:6d:c9:c6:78:99:c5:5a:a4:2f:21:5f:48:b2:
84:81:48:81:c2:f5:80:f0:27:04:26:bd:bc:b8:61:
2c:ad:0b:82:a4:60:7c:14:ab:ec:56:69:1e:47:bf:
e7:22:5f:f6:29:29:72:35:31:4d:eb:c0:dd:0f:d6:
dd:31:95:0b:87:38:55:49:2c:dc:6a:ab:66:4b:7b:
4b:7d:39:d4:af:8a:7b:46:ec:29:78:2c:ec:3a:33:
51:65:0b:58:4f:99:cc:78:0d:64:82:be:91:15:c3:
a2:e6:5b:3a:bb:bb:83:83:6d:c2:03:ec:b9:55:36:
dd:85:a8:05:28:3e:b5:22:55:01:58:bf:e6:4d:68:
80:09:31:b0:d4:d4:d6:53:9e:31:2b:74:63:74:94:
43:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138663
sbgp-ipAddrBlock: critical
IPv4:
43.239.204.0/23
103.106.6.0/23
103.117.164.0/23
203.78.162.0/24
IPv6:
2407:6540::/32
Signature Algorithm: sha256WithRSAEncryption
00:dc:02:65:7a:54:40:e1:05:e3:aa:2e:74:ed:10:38:a9:ef:
21:6b:cd:b8:de:50:d5:90:39:70:a0:5a:88:63:59:88:13:c0:
e6:67:5b:07:1b:96:b7:98:af:f2:4f:6d:49:d7:c0:ab:2e:45:
15:11:d6:2d:9f:1c:fa:ea:e6:6f:e3:46:b7:15:29:06:b4:f2:
68:7b:c9:98:45:88:b4:5c:81:46:df:fa:f8:74:b2:0e:f6:bc:
d1:40:f8:64:38:26:a4:fe:a4:50:96:fc:0a:57:72:29:88:52:
0a:75:0f:12:4c:fe:32:cd:60:a0:03:20:9d:7c:52:c3:a5:81:
95:b1:d0:ee:7d:b5:5f:eb:d5:2e:c1:72:e2:da:f0:10:ca:5e:
fc:f7:73:7d:32:2c:18:c4:e4:a4:83:1b:9b:45:3e:91:fb:21:
c9:8f:ee:b5:44:16:52:a3:22:53:b1:47:d9:c1:aa:e4:6b:f0:
32:e0:06:06:9a:68:4f:17:f5:0f:72:74:b0:c4:79:86:de:04:
34:9b:9e:7b:be:33:69:cd:42:51:5b:99:d5:99:fc:8c:9f:5f:
ac:07:61:57:78:08:14:f4:a9:bb:00:21:7f:06:eb:16:dd:ad:
17:7e:c2:a9:b5:94:9c:08:be:a0:e0:5b:22:77:d9:40:b6:74:
08:c6:4d:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:05:10 2025 by rpki-client