Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iZOTjIV1ACgOj15T3As-kweu1Kc.cer
File: iZOTjIV1ACgOj15T3As-kweu1Kc.cer (raw, json)
Hash identifier: uQtPWXAjqGInMiAam3Qyfqj7MgQuq2XBFXm/HlzPCBA=
Subject key identifier: 89:93:93:8C:85:75:00:28:0E:8F:5E:53:DC:0B:3E:93:07:AE:D4:A7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0236C2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 10 Mar 2025 19:35:19 +0000
Certificate not after: Thu 28 May 2026 00:00:00 +0000
Subordinate resources: AS: 140211
IP: 203.28.46.0/23
IP: 2001:df2:d880::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145090 (0x236c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 10 19:35:19 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=A91BD3E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:78:5a:97:6b:2a:cc:29:3a:bb:16:f0:9c:97:
22:b3:c3:ff:c2:c3:31:bc:0d:68:93:8d:e0:c6:48:
0d:53:db:a3:94:4b:0f:f5:83:bc:32:ad:07:9b:69:
65:9e:96:c5:68:e0:7b:26:71:c9:96:11:29:5a:5a:
3b:51:04:ff:8f:e7:17:73:4a:a5:28:ad:64:ca:8b:
c3:35:86:b5:c3:d2:a7:a6:5c:77:bb:de:b1:a2:7f:
3c:2c:23:34:75:64:e0:56:9c:0c:56:f1:f6:5c:32:
e2:3e:c5:3c:05:d7:b8:33:fe:a7:ec:56:6b:57:d4:
6b:92:87:d2:2b:12:19:1c:ac:03:e0:01:cd:6d:5f:
a8:c1:2b:d7:34:1b:93:be:21:3b:aa:19:19:4c:1f:
3f:26:69:62:3d:8b:f4:0a:ea:bd:74:06:c5:ed:64:
b1:b6:ca:5c:ca:82:69:57:45:55:04:ed:7c:46:08:
34:c5:d0:d0:88:9e:77:73:a6:45:0f:3e:6d:d6:4b:
82:d3:52:f0:61:d6:e6:f8:2e:5e:c6:b2:3a:e3:eb:
90:f6:d4:f2:87:8b:35:0e:69:68:0a:a2:b0:03:54:
2d:bc:f6:d8:00:f9:cb:6d:ba:9c:ab:df:6f:e1:cb:
2a:8b:b3:e8:0a:c4:7c:59:e2:12:6c:fa:d9:87:59:
0c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:93:93:8C:85:75:00:28:0E:8F:5E:53:DC:0B:3E:93:07:AE:D4:A7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140211
sbgp-ipAddrBlock: critical
IPv4:
203.28.46.0/23
IPv6:
2001:df2:d880::/48
Signature Algorithm: sha256WithRSAEncryption
92:54:ff:35:5a:81:91:5f:0c:52:ce:ca:ce:23:25:eb:46:0c:
36:48:c3:36:cf:06:de:6f:e3:46:4e:c0:77:df:5c:ab:3c:9c:
7e:83:f3:dc:f6:0e:48:9f:bd:21:48:a5:d1:3b:44:7f:1a:b6:
a4:30:dd:d9:32:3c:7b:e0:d3:0a:3b:fc:f8:2c:ab:6f:b3:14:
31:ed:4b:66:03:56:3e:a1:61:bc:be:28:28:b1:fc:af:d0:df:
1a:30:71:4f:89:15:34:55:26:22:70:a9:1d:5e:9c:20:81:dd:
65:7f:ef:37:ec:f5:5d:de:75:a8:83:f2:96:b0:89:81:0f:94:
d4:54:f5:c9:86:a7:a2:d3:cc:9e:24:89:7c:9b:33:72:41:2c:
4b:50:d4:95:16:40:05:c1:54:15:0a:32:d0:2a:53:ab:74:05:
07:ef:73:ce:af:73:0b:04:d5:13:86:6e:74:2b:8b:46:78:63:
d8:89:0d:3e:5b:5e:6e:58:ec:6c:61:e5:11:31:8d:44:86:95:
01:5e:a8:2b:be:cc:25:32:da:e3:51:6d:fb:84:83:5d:f0:1e:
0b:66:d3:c9:0d:a7:5c:72:25:fc:b4:76:68:fa:e4:10:68:9e:
b6:d3:b4:59:44:d8:45:cc:ca:ce:c3:00:e1:48:1a:95:5e:a3:
bf:04:0a:39
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 02:09:00 2025 by rpki-client