Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jAof_xqjHOpswMiLZ6wi1ZRjnHU.cer
File: jAof_xqjHOpswMiLZ6wi1ZRjnHU.cer (raw, json)
Hash identifier: bDy1PNr9k4oM8eBxC2/dHP7MSW/JMvNx9eBj1iKOkKs=
Subject key identifier: 8C:0A:1F:FF:1A:A3:1C:EA:6C:C0:C8:8B:67:AC:22:D5:94:63:9C:75
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02210F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/jAof_xqjHOpswMiLZ6wi1ZRjnHU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 06 Dec 2024 13:53:47 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 137239
IP: 103.105.212.0/22
IP: 2403:240::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139535 (0x2210f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 6 13:53:47 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91385F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:00:6f:f5:d9:49:0b:61:88:fe:1f:7b:51:1b:
13:ca:d9:fd:0e:9b:7b:ed:40:70:74:56:91:af:ed:
e7:03:62:c3:45:b1:e4:1a:8a:25:57:8d:46:3c:15:
d6:3e:fd:1c:6c:2b:84:06:19:f2:17:a1:3e:27:e3:
59:3a:1d:92:33:39:62:63:2c:07:10:9b:5e:3e:87:
6d:be:2d:46:11:6d:8a:9b:d0:42:77:29:7e:2e:5d:
10:b7:fa:aa:f4:db:25:21:b7:68:a5:13:e5:be:d9:
fd:0b:cf:ed:1c:d5:bd:20:a9:26:be:15:8d:a0:a9:
39:d1:b5:a6:7b:b4:75:0d:f2:e4:a1:cd:a1:07:7e:
10:f0:01:86:90:b9:b0:11:b7:b8:32:da:51:cd:27:
45:48:21:ef:be:a7:d0:f4:5e:0d:56:f8:d0:89:33:
d5:ab:b5:ec:96:ff:51:a1:e7:18:6b:ab:1d:88:e3:
dd:fa:a4:e5:4f:43:42:1f:28:c6:6e:6f:77:da:7d:
82:1d:3a:a1:58:32:a1:35:f5:bd:49:cd:02:c4:12:
34:46:ad:fe:96:f0:a0:dd:c1:4e:4e:7f:56:36:63:
4f:9d:2a:d1:1e:fc:40:c8:c6:fc:de:f0:94:0d:79:
8d:f8:a2:80:18:03:57:cb:82:76:77:76:93:74:6a:
36:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:0A:1F:FF:1A:A3:1C:EA:6C:C0:C8:8B:67:AC:22:D5:94:63:9C:75
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/jAof_xqjHOpswMiLZ6wi1ZRjnHU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137239
sbgp-ipAddrBlock: critical
IPv4:
103.105.212.0/22
IPv6:
2403:240::/32
Signature Algorithm: sha256WithRSAEncryption
c8:8c:7b:3e:e8:49:94:e2:be:66:1f:4e:f2:aa:9d:74:62:c3:
3e:a3:7f:34:39:d4:72:5c:e8:24:3e:12:84:4f:ed:b0:16:f5:
d9:01:47:47:bf:0c:5d:8d:a6:cc:c8:bb:4b:e4:1e:9b:2a:e9:
ea:45:18:03:96:c5:94:2e:c7:fd:a9:43:46:ed:6a:52:b8:ab:
ef:b4:6b:e1:9a:02:ca:7e:5b:3d:18:c9:de:8f:ee:24:69:b9:
0d:3e:ae:a6:ec:64:1e:21:95:8b:ab:0c:c5:e2:36:41:25:81:
97:b9:40:f8:95:68:7c:7c:35:47:71:74:04:b8:89:7a:23:29:
67:0b:c7:0e:69:55:5d:ee:b7:58:ed:5c:47:51:f7:8b:32:4a:
ef:05:1c:b9:ba:21:f6:63:7c:8a:cb:b0:e2:f5:6b:7b:57:b7:
94:b9:49:3e:ec:62:41:b8:b7:28:82:6b:46:a7:da:4e:3b:4d:
bd:eb:72:2c:03:ea:3f:88:66:0a:7a:d6:6c:08:5c:1c:0f:9b:
fe:f3:97:b1:d5:a5:20:e0:05:59:45:90:13:e2:33:e2:9c:b4:
be:b4:58:f0:36:d1:c3:53:c3:1d:d5:b1:76:cb:d1:83:11:e3:
89:8a:c1:cd:f0:ef:48:73:f9:84:28:01:9c:c3:ec:7f:6b:58:
b8:f4:49:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:09:06 2025 by rpki-client