Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZApCIKLAzHpSNRu2zgl_2A9uYY.cer
File: hZApCIKLAzHpSNRu2zgl_2A9uYY.cer (raw, json)
Hash identifier: cdAznmI3MDdQ3oRWYQmbj7itOM5mbVZjNDOXVvtkMWY=
Subject key identifier: 85:90:29:08:82:8B:03:31:E9:48:D4:6E:DB:38:25:FF:60:3D:B9:86
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0231BA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EEE1B/206DFC28643811EB94683B4EC4F9AE02/hZApCIKLAzHpSNRu2zgl_2A9uYY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EEE1B/206DFC28643811EB94683B4EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 17 Feb 2025 21:16:32 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: IP: 45.249.44.0/22
IP: 103.208.252.0/22
IP: 2001:df0:aa00::/48
IP: 2402:ce40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143802 (0x231ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 17 21:16:32 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A91EEE1B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:13:17:77:fc:51:3a:73:d5:6d:63:52:8f:13:
3e:29:69:0a:30:f0:01:5a:1e:05:e9:67:ac:4c:14:
76:4f:98:30:e9:95:82:37:dc:6b:9c:ca:88:96:d9:
b1:62:7d:e1:92:d9:94:a2:f7:37:08:00:79:e7:89:
2a:6f:8c:2e:83:0a:a3:53:d6:26:4c:a3:5b:97:10:
b0:4c:f5:39:e1:c5:ea:3f:9f:48:4f:bd:8b:b6:1e:
3f:b6:fc:23:44:2f:88:2c:c7:a3:7c:7a:7c:19:24:
26:2e:a8:c7:b6:8b:f0:73:31:3e:77:7d:f4:7c:b8:
de:29:27:ac:d5:64:d4:99:ec:a8:be:16:0c:5e:a1:
61:e3:87:f2:ba:fa:37:75:e9:9d:2b:1f:76:04:57:
34:88:66:bc:dd:b8:05:f7:36:57:86:87:54:47:15:
31:55:f5:59:d3:a0:32:c7:5d:2d:47:b9:30:02:53:
11:0b:59:d0:dc:aa:bd:6e:b9:5e:7b:85:ba:c8:93:
7a:6c:e4:c8:c3:52:b9:88:f8:db:3e:28:fc:de:c0:
cc:da:73:67:21:05:b5:cd:97:4e:33:6d:5b:98:05:
eb:19:ca:fc:02:50:53:1e:80:d5:bf:43:cd:9c:e7:
f4:99:87:c6:19:40:4e:c6:97:3f:a8:9a:43:4f:df:
ed:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:90:29:08:82:8B:03:31:E9:48:D4:6E:DB:38:25:FF:60:3D:B9:86
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EEE1B/206DFC28643811EB94683B4EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EEE1B/206DFC28643811EB94683B4EC4F9AE02/hZApCIKLAzHpSNRu2zgl_2A9uYY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.249.44.0/22
103.208.252.0/22
IPv6:
2001:df0:aa00::/48
2402:ce40::/32
Signature Algorithm: sha256WithRSAEncryption
37:8b:c2:f7:d1:97:a7:d3:6f:24:4a:0f:f6:74:a2:dc:f4:ed:
57:52:a8:91:90:46:c6:20:f4:1e:52:6b:09:4e:2c:30:90:92:
59:73:33:73:d6:4e:a2:c1:12:5c:fd:92:8d:9f:e7:7e:10:16:
d0:75:7d:32:cd:18:85:cf:be:75:c7:70:0f:cd:80:e8:46:d4:
9e:53:37:47:a9:e4:58:ba:c7:d5:10:a9:a9:bc:e2:88:7a:c6:
b6:d9:0b:c2:50:cb:82:0b:a0:f9:1c:84:b2:ed:70:58:31:8b:
d9:93:1f:1b:69:53:45:99:7d:15:ad:12:36:d0:96:6a:6b:9b:
be:16:82:90:4c:e8:b0:11:8d:e3:54:b4:28:03:e1:ef:f5:b0:
7e:16:57:02:73:a7:ff:a4:b4:eb:67:06:4c:40:0e:e8:03:7f:
7e:34:b1:07:c3:34:03:ec:6a:31:ac:12:a1:59:b8:bc:0e:5d:
4c:0e:3b:24:2a:4e:ef:bf:40:08:22:8a:a8:3f:67:c5:8e:c5:
0c:32:d0:00:1e:97:6d:8a:ef:d5:e2:2c:dc:d9:f7:26:57:4f:
e6:81:63:0b:da:ba:35:71:80:a1:fc:15:f7:92:d5:65:43:c0:
96:4d:ed:69:00:f4:71:a5:99:ad:2a:02:9c:fd:01:0a:4c:ed:
ea:3c:b8:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:05:27 2025 by rpki-client