Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer
File: jo3VssEBuYOnmck4qg5AplH8vgc.cer (raw, json)
Hash identifier: g9hBMI4etBiOCa+VrmeDONvjS6UoKd27hstxC3dB5F0=
Subject key identifier: 8E:8D:D5:B2:C1:01:B9:83:A7:99:C9:38:AA:0E:40:A6:51:FC:BE:07
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0223D0
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 20 Dec 2024 14:53:55 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 135544
IP: 103.174.192.0/23
IP: 2400:14e0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140240 (0x223d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 20 14:53:55 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A9156334
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c5:d7:47:82:07:f1:dc:5e:c5:4c:e3:73:73:
20:91:b2:d1:c4:8c:ba:ec:32:e1:c6:5a:1a:5c:ba:
19:42:43:ac:d7:ef:a3:02:40:c0:d2:8d:46:ae:3b:
08:08:de:0e:cc:f2:93:7b:75:1c:a1:ac:47:08:f3:
7b:4b:04:d1:2b:a8:3a:0d:e1:5b:00:1c:c7:71:4f:
a7:59:fa:46:7b:cc:e1:ec:ad:64:4b:42:b9:2a:4f:
22:cd:b6:a9:75:a8:ba:76:c3:4b:14:37:34:0e:79:
d1:18:47:f5:b2:57:2f:35:19:ab:a5:6b:49:88:d5:
f2:1d:92:6b:65:5c:66:4e:68:10:fe:d7:1e:4e:ae:
c0:65:2e:dc:de:cc:07:7d:9c:a1:f9:67:44:15:e6:
64:07:ec:c9:76:9c:24:11:db:4f:c0:89:97:c6:a7:
5b:19:56:18:1b:9b:84:ae:1c:d2:80:eb:02:c9:12:
0b:b7:7b:83:53:c5:9c:3e:1a:1d:5e:d3:45:55:ec:
9c:a0:d1:ad:c8:9e:05:fe:e0:c5:34:d2:3a:03:d1:
3e:79:eb:cc:e3:23:2a:a2:af:f8:0f:3b:1e:91:94:
8e:0f:3d:9d:d0:e4:c3:5c:d0:dd:06:ec:a4:3d:d1:
15:01:04:f6:b5:aa:3b:2f:ed:fb:50:d5:4f:79:b2:
11:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:8D:D5:B2:C1:01:B9:83:A7:99:C9:38:AA:0E:40:A6:51:FC:BE:07
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135544
sbgp-ipAddrBlock: critical
IPv4:
103.174.192.0/23
IPv6:
2400:14e0::/32
Signature Algorithm: sha256WithRSAEncryption
0d:f2:cc:d2:11:58:54:d6:ab:2c:e6:97:83:5f:19:86:ae:8f:
f7:40:5b:72:32:8b:00:f8:fa:a7:1c:f6:bb:32:33:cd:75:28:
fa:f2:7f:01:25:60:ba:38:12:17:48:df:2f:25:a7:41:eb:46:
58:83:f2:ad:66:e8:d7:cb:d2:0b:e9:67:70:d0:bc:9e:1a:e4:
c1:7a:95:16:24:53:75:2a:4a:27:0d:61:d0:2e:9d:91:a4:be:
ea:ef:23:ec:b8:ee:c4:23:ec:f0:26:24:41:69:30:7c:36:e5:
08:7f:ea:07:dc:94:8e:f8:43:2b:d6:4c:16:3f:0f:4e:92:2f:
18:00:7c:80:73:79:0a:1f:d8:bd:b2:c8:2a:36:00:d1:37:7c:
c3:4d:e4:bd:4b:6b:4b:58:d5:92:51:26:6b:46:66:72:e8:b8:
c0:35:ac:8b:82:e4:de:b6:4e:b4:22:1b:a1:af:6d:05:66:a2:
24:ce:77:62:34:fc:70:43:cf:fb:fb:ca:00:cb:4f:cf:31:2d:
df:d7:ca:3b:f7:36:10:75:ef:35:2d:0a:e6:24:e5:41:1f:59:
c0:5c:35:74:f8:a2:43:4a:53:02:8c:0a:4f:72:e1:e6:71:26:
f2:1b:03:82:97:7a:f4:01:42:42:9e:97:66:1a:25:57:f5:34:
8d:7d:e6:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:18:54 2025 by rpki-client