Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kakyPLNEJvPZyJDjl4Ag1BezWfU.cer
File: kakyPLNEJvPZyJDjl4Ag1BezWfU.cer (raw, json)
Hash identifier: 2M1bnTC8H76skw05MwGWqWACwNmz6PEzguJ9bNzIqi8=
Subject key identifier: 91:A9:32:3C:B3:44:26:F3:D9:C8:90:E3:97:80:20:D4:17:B3:59:F5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02237E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 19 Dec 2024 00:08:51 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 132695
IP: 202.6.84.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140158 (0x2237e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 19 00:08:51 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A9151265
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:8e:72:ad:6e:f0:ef:bc:01:dc:a8:f1:a5:8a:
78:bd:fe:29:35:3b:38:e9:b1:fb:9c:80:77:7d:9d:
38:86:2d:8f:3a:c1:51:75:15:f6:ed:2e:32:3b:df:
1e:71:c3:03:53:55:55:d9:39:94:95:1b:04:63:f0:
aa:b3:0f:56:8e:42:c7:ff:3a:d1:67:c8:7a:71:42:
d0:f9:15:fe:2b:96:f3:cd:eb:44:b1:fe:70:9a:e0:
65:e1:0f:23:86:08:dd:cf:d6:ac:2c:db:08:d0:5f:
39:2f:2a:86:92:38:65:43:39:d6:22:53:6c:e9:d7:
1e:13:0b:ae:1d:f5:77:eb:06:51:44:7a:45:3b:b8:
b1:bd:0d:79:7f:29:78:80:ea:f8:40:28:fe:a6:47:
43:b6:a2:27:d6:f0:0f:f4:9a:03:86:45:29:e7:02:
f0:b5:8d:43:21:fd:54:0a:5d:81:45:f1:64:12:50:
c4:fa:f5:cb:4c:64:51:19:e1:2e:35:b1:31:d5:ca:
2f:a2:77:cb:b7:e1:80:80:8a:3d:61:df:ed:8b:0e:
64:62:8f:7a:99:fe:e2:5f:5d:5f:0a:aa:5d:27:62:
44:1e:38:68:d3:a3:4f:3a:b6:1b:63:4d:34:3c:3a:
bb:2a:ab:72:aa:40:25:d3:38:ef:3c:13:de:c5:0c:
79:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:A9:32:3C:B3:44:26:F3:D9:C8:90:E3:97:80:20:D4:17:B3:59:F5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132695
sbgp-ipAddrBlock: critical
IPv4:
202.6.84.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:b9:ba:69:46:31:85:22:38:38:84:9d:aa:03:8a:cc:b2:e3:
7c:9d:3d:ce:1e:e9:aa:45:b5:b3:d7:d2:fd:e5:4e:4a:51:e3:
8e:87:7e:d9:ca:30:0b:cd:50:41:62:48:f4:74:e3:28:31:47:
89:4a:1e:ef:8f:7d:df:11:f4:39:1f:fe:71:1e:2c:0d:7e:e2:
d8:03:a3:83:e3:cb:8e:99:90:84:8c:31:c2:1f:e4:4b:c3:8a:
c7:5f:54:a7:e5:8c:f9:8d:9c:12:70:6b:76:fd:30:1d:e6:c5:
a8:24:ae:6d:7c:79:f0:42:01:6a:ad:11:b1:da:a2:62:6c:a1:
93:f5:54:1e:94:90:0f:3d:b4:e4:9f:f7:d8:1d:7a:84:76:95:
04:f2:89:db:45:ab:14:06:74:45:4b:33:70:c3:c7:de:f4:76:
1c:77:1a:44:8b:d2:03:9c:55:da:9e:fc:71:67:ef:3e:91:cc:
24:c0:b7:fa:9e:9d:f2:a9:c0:c1:27:51:d0:ab:0e:86:dc:5e:
39:66:87:d5:74:ee:9f:e2:0e:ce:ff:40:ff:2e:62:6f:4f:76:
01:02:0b:4e:9d:21:e4:79:14:73:23:3a:9c:72:90:b5:e4:76:
e9:32:56:bc:70:8d:f9:ff:6d:ed:f4:97:e3:ca:cd:8b:20:66:
7a:f4:9a:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:19:15 2025 by rpki-client