Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jyLR9WKgUHsRNY8FPaQsgFLUuVU.cer
File: jyLR9WKgUHsRNY8FPaQsgFLUuVU.cer (raw, json)
Hash identifier: QQ/4V2VNmdoUr3pbuVWoGxnvEdHuUMZW5E0eGRkOBRw=
Subject key identifier: 8F:22:D1:F5:62:A0:50:7B:11:35:8F:05:3D:A4:2C:80:52:D4:B9:55
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022E87
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9116C90/31B45FECE21D11EF8A651B7DC4F9AE02/jyLR9WKgUHsRNY8FPaQsgFLUuVU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9116C90/31B45FECE21D11EF8A651B7DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 03 Feb 2025 10:54:13 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 153547
IP: 163.61.22.0/23
IP: 2001:df5:240::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142983 (0x22e87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 3 10:54:13 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A9116C90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:27:5a:85:97:4a:b4:76:5a:fd:a1:21:84:21:
ce:d0:bd:10:b0:5a:b4:e7:9a:cb:b0:7c:89:f0:48:
50:7a:6f:a8:43:6e:fa:e6:06:5b:0a:a6:48:ee:70:
91:75:fc:b6:29:85:68:b3:90:28:ee:18:09:0d:ea:
eb:b2:15:ba:75:52:86:20:a2:5c:c5:a4:90:46:8b:
2c:f4:72:34:a3:81:98:a0:51:32:e1:33:05:30:3f:
69:f4:66:3f:cd:f7:8d:fe:94:dd:bf:9b:5b:77:c7:
b5:43:e1:a0:51:18:1f:b9:78:6a:97:68:bb:fc:df:
7e:31:32:b8:a0:61:ea:0e:2e:da:b1:3c:12:7b:cd:
bc:0c:96:23:30:97:77:7c:77:39:94:f1:e0:39:53:
16:84:f7:8e:ec:9c:d1:77:20:00:54:ea:b8:49:0f:
e7:a6:d5:75:15:7a:12:0c:6a:31:65:2b:3a:97:36:
fe:e2:d1:6d:79:56:13:17:87:6a:a2:34:d2:a1:d4:
af:27:93:6c:f2:c7:bc:d1:36:ce:dc:3f:de:59:17:
5a:1d:b1:67:64:52:c1:88:02:a3:10:74:03:26:3f:
3f:94:94:5c:5f:cf:db:4d:65:e3:53:53:11:1a:f7:
a5:21:2b:ab:8c:88:77:70:8d:91:fd:bc:11:32:71:
3e:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:22:D1:F5:62:A0:50:7B:11:35:8F:05:3D:A4:2C:80:52:D4:B9:55
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9116C90/31B45FECE21D11EF8A651B7DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9116C90/31B45FECE21D11EF8A651B7DC4F9AE02/jyLR9WKgUHsRNY8FPaQsgFLUuVU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153547
sbgp-ipAddrBlock: critical
IPv4:
163.61.22.0/23
IPv6:
2001:df5:240::/48
Signature Algorithm: sha256WithRSAEncryption
b9:d7:41:af:38:9c:df:e5:ee:f0:a6:35:a9:93:58:c5:4f:7c:
55:be:2f:0f:d4:5b:17:17:b4:2d:9e:57:04:1a:83:4a:78:f4:
d4:cf:48:dd:0e:ed:86:68:3f:ec:2f:07:66:33:fe:49:af:18:
6f:cd:5b:be:11:de:de:ed:54:c8:38:96:d9:91:bc:ab:42:59:
fe:f6:89:b7:09:85:bf:ae:05:40:3f:49:ba:6c:e6:1e:41:53:
97:4d:f7:64:d0:be:e3:4f:5b:94:49:21:41:14:75:7b:fb:b9:
46:4c:c2:e2:3b:64:23:99:3f:96:27:00:d7:5e:9c:98:41:2f:
3a:dd:9c:b2:c7:88:1a:e6:a5:48:3d:1a:b2:b4:62:a8:c1:bd:
28:83:9f:85:85:4d:00:f7:7d:45:8c:c5:9f:53:91:ee:0d:40:
b9:d9:03:37:c6:94:9f:16:39:51:d5:ea:d6:7a:74:64:72:68:
27:5b:6d:48:bb:26:7d:b1:88:fd:81:f3:f5:aa:e0:83:41:77:
2f:83:d2:96:53:93:31:25:68:eb:f1:c6:f8:ea:81:2f:5a:16:
62:4d:ad:44:10:e3:9e:56:b4:45:6a:fa:cc:6f:e4:db:f4:66:
7e:3b:56:51:9f:39:10:df:a5:43:2e:60:4a:04:47:61:6b:f1:
4f:b3:91:ac
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 4 02:10:23 2025 by rpki-client