Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gw3Py1qaoMf6fXq5mJ2iND3tLCI.cer
File: gw3Py1qaoMf6fXq5mJ2iND3tLCI.cer (raw, json)
Hash identifier: WdisM44W5tzGrXWvcHLTfClvblqI2ahpjip9pLBzTY4=
Subject key identifier: 83:0D:CF:CB:5A:9A:A0:C7:FA:7D:7A:B9:98:9D:A2:34:3D:ED:2C:22
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022ED1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/gw3Py1qaoMf6fXq5mJ2iND3tLCI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 04 Feb 2025 12:44:49 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 9474
IP: 202.140.64.0/18
IP: 2403:fa00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 17:46:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143057 (0x22ed1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 4 12:44:49 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A911C005
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:4a:ca:ce:10:29:9b:ce:b3:08:d0:fd:90:1a:
cb:cc:4c:f3:92:ff:9e:ef:20:ee:c1:11:33:28:de:
d7:13:17:a8:47:5f:cb:35:d5:ea:a6:05:41:5f:09:
4c:bc:02:83:e5:92:f0:22:7b:a5:e1:7d:74:1b:df:
76:b8:fd:27:16:21:32:a3:a6:51:84:33:52:d5:f8:
ac:f6:b3:a7:b3:7b:0e:f6:d6:ef:31:d3:65:68:c3:
12:57:d9:0a:63:39:a9:6d:73:d5:4b:9f:c4:81:e4:
35:ea:32:c2:15:24:6d:ce:35:36:8d:01:cd:53:a2:
e0:d3:bb:31:b0:0e:13:26:ab:5e:19:d9:25:5b:d2:
9b:6d:9b:84:c6:15:37:db:66:19:41:86:10:6a:cc:
4e:74:88:e9:a6:16:2e:8e:4b:4e:f5:4c:bb:9a:e8:
40:47:8f:ac:92:3c:79:86:97:87:e7:d8:dc:c7:d0:
f7:e6:2e:16:38:20:c4:87:77:2a:df:3a:57:dc:84:
a7:5d:76:8a:41:36:1b:ae:76:6e:b6:de:18:5c:52:
6e:ed:f8:7a:1b:37:bf:52:19:e4:3c:9a:6c:77:ee:
5c:16:75:6e:15:1c:d2:ff:76:75:e9:0b:ea:f8:9b:
a6:ff:c2:b0:08:f1:df:76:9e:61:80:42:f9:56:39:
27:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:0D:CF:CB:5A:9A:A0:C7:FA:7D:7A:B9:98:9D:A2:34:3D:ED:2C:22
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911C005/8CA68276AAE711EAA9122B0EC4F9AE02/gw3Py1qaoMf6fXq5mJ2iND3tLCI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9474
sbgp-ipAddrBlock: critical
IPv4:
202.140.64.0/18
IPv6:
2403:fa00::/32
Signature Algorithm: sha256WithRSAEncryption
5f:00:04:96:44:07:e7:19:79:83:68:1a:1e:2d:1c:8a:c7:e2:
68:c8:37:c1:d7:fb:49:84:53:5c:65:d2:35:06:e8:c9:8b:1e:
1e:e7:cd:e0:b0:e4:85:ca:25:69:c2:c1:a7:9b:e0:a3:75:62:
86:37:0a:fe:77:53:cf:63:5d:69:fe:96:2f:43:76:14:a9:1b:
e7:90:47:44:dc:b6:e5:78:c0:48:56:1a:e3:be:40:20:58:81:
d8:38:3f:87:3c:3a:89:36:5c:36:b5:91:b6:ab:26:f5:09:5a:
79:cf:ee:6b:49:2e:2f:d4:a6:06:40:48:4c:d9:bf:d4:52:28:
be:69:20:2f:ac:4c:85:ed:41:d5:22:fc:dd:10:59:60:42:e7:
16:df:8a:52:35:a2:b0:ba:87:2d:c8:ea:7c:8b:c4:b3:af:b2:
44:cf:14:d6:db:88:35:c9:e1:82:1f:a2:da:de:a7:cb:26:bc:
07:e6:b6:cd:02:c7:39:7e:ae:46:53:9a:2f:73:41:60:6a:1f:
18:33:3f:ee:b8:87:c2:f9:e9:36:03:01:26:d2:13:f3:51:58:
78:b5:87:c0:e3:77:e4:f3:9d:69:1c:73:65:af:c9:96:79:6c:
de:0f:46:36:06:93:d3:db:47:f2:98:dd:da:3d:c4:1d:1a:0c:
4b:7a:46:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:23:04 2025 by rpki-client