Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer
File: l-m99ZSsdoe6ShbKXBkjE1zfcYY.cer (raw, json)
Hash identifier: WNOEplEuiF0Dox62p/45H1Va6gz9yprDN6abq1FpP4g=
Subject key identifier: 97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0231FD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft
caRepository: rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/
Notify URL: https://rrdp-rps.arin.net/notification.xml
Certificate not before: Tue 18 Feb 2025 20:59:47 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 63911
AS: 133183
IP: 43.245.48.0/22
IP: 59.153.12.0/22
IP: 103.6.84.0/22
IP: 103.84.152.0/22
IP: 103.254.160.0/22
IP: 2400:6b80::/32
IP: 2400:a1c0::/32
IP: 2403:2500::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 07:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143869 (0x231fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 18 20:59:47 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A91D85A20000
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:f2:7f:0a:ef:90:de:10:b3:7e:c7:6a:c2:5f:
65:bb:73:4d:43:02:cf:8a:5a:9c:19:4c:1a:08:26:
d7:0a:cb:60:0b:de:32:13:f6:8f:d4:b4:e6:3c:f2:
e2:9c:2a:ae:9d:b6:68:23:ca:da:63:1e:da:c0:dd:
45:e0:a8:13:74:c1:e3:fa:9e:51:a5:38:ea:a8:52:
98:0f:91:fe:1e:c4:7f:a0:40:32:bd:7b:c4:31:8b:
0f:7b:e6:94:d6:5f:de:b4:b5:99:50:c1:f0:82:f6:
57:3c:41:3c:9a:3b:f9:1f:fb:6a:42:56:53:62:38:
c8:8e:7a:55:6e:66:f3:bf:24:79:c4:cc:2e:d5:f6:
0a:ee:4d:ae:ff:93:c8:31:37:cd:fa:d6:0f:d2:07:
7a:91:58:e7:78:d5:20:06:ee:60:d4:c2:db:0c:8a:
a6:fa:d2:a2:7f:5f:c0:49:19:d8:7e:24:c9:85:de:
66:3e:dd:5b:84:7c:d0:52:0c:b5:0d:f1:b8:a7:87:
0f:38:02:d3:da:64:96:63:f4:a7:71:68:1b:81:0e:
80:3f:f0:8e:73:3e:12:c6:2a:47:1d:0e:cb:6c:cc:
5a:31:82:d0:44:e1:2a:5c:b3:ed:94:6e:aa:1e:b9:
e4:0e:4c:a1:a9:64:de:d0:96:16:97:f7:a7:0a:00:
85:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:E9:BD:F5:94:AC:76:87:BA:4A:16:CA:5C:19:23:13:5C:DF:71:86
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/
RPKI Manifest - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de410183f68661084b86/3/97E9BDF594AC7687BA4A16CA5C1923135CDF7186.mft
RPKI Notify - URI:https://rrdp-rps.arin.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
63911
133183
sbgp-ipAddrBlock: critical
IPv4:
43.245.48.0/22
59.153.12.0/22
103.6.84.0/22
103.84.152.0/22
103.254.160.0/22
IPv6:
2400:6b80::/32
2400:a1c0::/32
2403:2500::/32
Signature Algorithm: sha256WithRSAEncryption
82:e9:55:ef:eb:b8:87:cb:da:14:ee:be:90:73:cf:a0:fb:98:
4b:ba:d6:3f:ff:6f:25:cf:ff:75:be:e5:df:5a:a7:8a:f7:77:
ca:13:a9:6c:b6:ef:14:c4:2d:b1:1e:ba:3f:a8:9f:20:83:6b:
2c:f2:db:6c:d5:e3:1e:ee:98:41:a5:93:f6:23:17:49:80:6e:
e4:32:73:81:ad:95:20:2d:bd:1a:1a:72:d9:ec:c6:30:d5:b0:
e7:d6:0d:06:60:f3:f5:39:b4:6f:a2:4f:f2:1c:d8:80:05:5e:
46:b8:15:0b:06:27:6f:66:4a:26:66:db:d8:73:d5:0f:27:35:
f9:37:4e:c3:4a:01:db:68:e4:2f:3d:5b:da:a0:ef:68:9c:c2:
ca:8a:e8:5e:f5:f6:e5:e8:3c:86:9f:3a:2f:1f:2d:09:bb:24:
f1:5a:e9:8f:a9:00:5b:44:f2:c4:df:ef:4c:fe:ea:23:47:aa:
4b:e5:e0:dd:d3:2e:d7:38:0d:c1:fa:14:a2:19:34:2d:c3:17:
6f:80:b7:45:63:b3:20:fe:5b:a6:37:98:63:82:fd:5a:e4:16:
2a:b9:e9:60:6b:b5:ba:74:b3:1f:0c:33:d3:26:31:1f:6f:01:
e8:d6:7b:d1:4b:07:30:b3:b9:52:a6:c7:c4:04:a6:94:6e:df:
44:5d:88:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:40:16 2025 by rpki-client