Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer
File: ihuLzV7XzXIsUwBJjkqTZdBGo04.cer (raw, json)
Hash identifier: WIG2QNsZkuK4UntSJ2Q601iz6fj7Xf8mpiNhY0Dha2U=
Subject key identifier: 8A:1B:8B:CD:5E:D7:CD:72:2C:53:00:49:8E:4A:93:65:D0:46:A3:4E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F73F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 04 Jun 2024 22:28:56 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 136778
IP: 103.94.76.0/22
IP: 2401:36c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128831 (0x1f73f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jun 4 22:28:56 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91E01C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:79:9b:e9:cc:61:ab:b2:70:0c:7b:d5:de:5b:
5b:13:37:fc:55:78:33:a1:85:4b:03:4b:92:b4:2a:
ed:35:6a:92:e0:7c:3b:be:1b:96:7a:02:c3:82:d0:
59:dc:60:cc:58:4a:31:4f:c8:9d:43:cf:e5:e5:28:
fd:c5:1a:a4:8e:0f:47:e6:8d:10:b9:24:b6:96:86:
54:1c:99:d9:44:7c:24:cc:3e:3a:28:cc:57:f3:26:
91:05:5d:2d:95:f4:a7:7f:c1:7d:5d:fc:57:f9:5a:
aa:5b:d8:d1:dc:8e:46:bc:54:0b:8d:d1:88:64:c0:
77:f4:ee:ce:c8:28:84:1a:2b:ce:d1:1d:73:a5:cf:
39:d6:6a:fa:f6:ff:e5:0d:37:8c:8f:d9:e7:bd:0f:
16:9c:79:e8:b9:fd:5c:d7:ef:55:2f:67:bf:6f:fa:
5c:72:01:38:89:66:c2:56:33:84:90:5f:6b:4d:65:
b9:35:ff:40:39:7b:d1:03:e8:6e:cc:9f:61:b4:07:
28:c1:22:34:8f:4e:85:01:93:af:0d:32:ef:e2:6a:
f8:7d:f7:3c:6d:f1:07:89:e6:75:6f:15:08:d9:9b:
14:c2:d8:34:0b:c6:e4:84:38:f0:36:a0:ab:a4:88:
4b:c4:7e:5a:86:51:76:5a:a8:3b:41:cf:22:ef:87:
51:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:1B:8B:CD:5E:D7:CD:72:2C:53:00:49:8E:4A:93:65:D0:46:A3:4E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136778
sbgp-ipAddrBlock: critical
IPv4:
103.94.76.0/22
IPv6:
2401:36c0::/32
Signature Algorithm: sha256WithRSAEncryption
32:1e:d6:90:ea:5d:41:99:63:65:94:09:b2:21:eb:8f:32:ea:
5e:7b:1a:e7:d5:dc:7c:76:a9:c6:32:28:d8:86:20:34:48:61:
76:77:74:46:af:fd:ee:56:0f:c6:b5:42:bc:67:fb:d2:ea:90:
5c:0d:be:7c:13:3a:ff:ae:c4:02:f0:03:6b:d4:84:95:65:3f:
54:67:10:72:b2:fd:34:d7:db:c4:d6:7d:40:18:64:85:cd:07:
eb:1c:49:c1:8d:64:83:ad:53:a6:c6:7f:ef:48:38:3c:aa:de:
ac:93:62:f8:f8:37:8e:ca:99:f5:47:6f:ec:26:fc:4c:b0:8a:
02:92:c7:cb:94:1c:75:e3:f3:d1:9c:4a:76:c1:5a:2a:72:8c:
25:ab:de:0b:fa:48:b9:af:fb:6d:f8:26:ca:78:68:e7:9a:f2:
71:86:50:ff:79:11:17:36:f4:cc:af:0e:d1:98:d9:06:92:7f:
64:3c:2d:6e:58:1a:23:b3:34:db:69:85:d6:6d:79:0d:06:7d:
f3:09:90:3f:3d:d2:e0:76:6a:74:8c:79:1d:71:c5:de:5c:99:
f1:57:e9:3f:7e:61:49:fa:13:86:03:62:5e:f0:04:81:0b:f9:
ba:63:a4:42:a2:d6:2d:3a:b2:3a:58:2a:4d:5a:2a:ea:e0:6f:
ee:fa:d7:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:22:59 2025 by rpki-client