Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBoPBuMQs4EwEx14gpcL8WLdDWY.cer
File: oBoPBuMQs4EwEx14gpcL8WLdDWY.cer (raw, json)
Hash identifier: KXkHCeRvr2kQdX/7mEEQJkp1BHD7zQcSH0oIjUS5C4M=
Subject key identifier: A0:1A:0F:06:E3:10:B3:81:30:13:1D:78:82:97:0B:F1:62:DD:0D:66
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02156E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 23 Oct 2024 14:45:14 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 131451
IP: 43.243.64.0/22
IP: 103.38.168.0/22
IP: 2402:2040::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136558 (0x2156e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Oct 23 14:45:14 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A9150E55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f2:64:ba:b4:43:86:c5:3a:b5:c7:64:92:29:
43:59:79:a5:4e:02:95:ed:ba:7f:a8:d6:b4:ad:77:
39:4d:6a:ec:df:8f:e6:44:09:99:fa:0b:6a:32:06:
f8:9a:59:53:68:27:c9:5b:f0:88:1e:9f:aa:95:9f:
8a:82:ce:ec:0b:6b:75:49:18:9f:52:4d:1c:c4:c6:
25:46:96:1f:24:b1:7d:65:54:46:aa:80:b0:bc:29:
33:b7:d1:12:01:26:2b:e4:45:ba:9f:73:e8:4e:2f:
65:7c:ff:c9:95:89:cf:c0:94:4e:4d:04:ee:2b:45:
f5:13:7d:e0:78:ac:4d:75:f2:24:0a:0c:8f:72:6e:
a5:b6:27:07:2f:01:13:00:76:90:dd:be:d5:83:ca:
d3:ea:2b:cd:87:b0:f3:88:a8:6f:ba:db:bb:ed:9d:
4d:6d:f0:6b:88:55:d4:a8:b2:74:73:29:bf:6c:f2:
81:35:8d:83:23:53:e1:c9:3f:00:de:85:fb:ad:35:
73:7e:c8:22:7f:eb:d3:c9:27:2b:bc:5e:b9:cd:75:
63:4f:61:5f:9a:f7:74:5a:55:ea:2e:af:f4:79:6b:
28:a1:35:a1:10:a2:a3:df:31:9a:ce:8e:4f:d9:08:
b4:3a:98:d5:44:b8:33:24:39:92:19:3a:49:bb:81:
e8:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:1A:0F:06:E3:10:B3:81:30:13:1D:78:82:97:0B:F1:62:DD:0D:66
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9150E55/7D32A74EC60011EC87005C7DC4F9AE02/oBoPBuMQs4EwEx14gpcL8WLdDWY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
131451
sbgp-ipAddrBlock: critical
IPv4:
43.243.64.0/22
103.38.168.0/22
IPv6:
2402:2040::/32
Signature Algorithm: sha256WithRSAEncryption
8a:c6:ff:8f:fd:e8:1d:f8:1b:7c:a0:25:58:1b:6d:ac:cc:8d:
0d:d6:a0:b3:59:83:2a:50:a3:91:d7:25:59:2c:97:fb:58:09:
21:6e:be:6e:c6:8e:fd:42:74:22:f9:f6:30:1e:38:d8:2a:4d:
52:52:00:8c:dc:3b:20:62:5d:40:14:2b:b1:11:1b:b1:88:82:
54:0a:6d:d1:3c:44:14:ae:47:4b:dc:ee:db:c4:ba:76:3b:99:
49:6b:ea:3c:0f:b3:2c:e3:24:78:dc:1d:5e:65:66:3a:dd:8b:
f2:b3:6b:6b:c1:89:b4:e9:4c:a4:a3:a4:eb:64:d9:9f:4b:20:
68:8f:95:0f:da:dc:06:a3:92:29:0e:55:45:e2:93:9b:1a:c1:
81:9f:83:77:91:da:33:81:eb:0a:89:c4:4b:29:68:fd:74:aa:
47:26:37:b2:a3:54:62:07:ae:6a:05:ab:aa:e4:1a:0f:ff:b4:
c9:44:73:b3:d9:55:08:5f:91:06:e4:35:a7:d1:9c:28:82:44:
45:ec:75:84:3a:60:f4:fa:d4:f0:25:e1:f9:11:64:06:77:a7:
94:68:a2:3a:18:dd:c3:2d:a5:5f:3a:e7:84:65:6d:7d:c3:e6:
7a:f8:40:0c:1c:8a:4d:f8:14:9f:37:98:6d:85:df:0d:bb:9c:
ac:3c:fc:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:04:34 2025 by rpki-client