Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oC73fAXKEwwiKYXNdK6TjaeaT78.cer
File: oC73fAXKEwwiKYXNdK6TjaeaT78.cer (raw, json)
Hash identifier: yf3Uvw+vpH4ahda8qzXrl+AFSYvSvLdLbPEpdb35gEU=
Subject key identifier: A0:2E:F7:7C:05:CA:13:0C:22:29:85:CD:74:AE:93:8D:A7:9A:4F:BF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023290
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/oC73fAXKEwwiKYXNdK6TjaeaT78.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 21 Feb 2025 13:18:28 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 136465
IP: 103.89.48.0/22
IP: 2400:e9c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 12 Apr 2025 00:59:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144016 (0x23290)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 21 13:18:28 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A91398E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c0:eb:47:08:4d:e3:29:49:b0:2f:de:73:3e:
10:d3:66:e0:6c:6a:9f:23:2f:89:05:a8:80:3d:ad:
e1:0f:36:e9:54:d0:fa:ae:db:69:94:04:20:fa:1e:
0f:66:b3:75:1a:a1:c1:17:59:8f:b7:fb:37:9c:36:
08:f2:45:f7:07:f4:7c:a7:35:62:0d:7b:1b:50:d5:
96:41:95:ce:f5:85:2c:71:ed:5a:7b:a5:e5:52:e9:
af:89:c5:86:0f:63:65:66:75:b7:0f:2c:ca:ad:65:
9c:0b:d0:4f:80:48:5f:d2:bf:90:04:c7:4a:3c:e6:
69:15:c6:18:43:f0:0a:b5:c7:91:99:f5:f0:70:2c:
8f:1a:51:36:0f:99:c4:03:e4:32:93:09:00:64:75:
68:41:4c:51:f4:69:0e:f1:ea:74:ad:06:85:1b:4b:
aa:22:55:b7:46:25:f4:96:e5:df:f9:5e:94:dc:a4:
33:8d:e8:b7:dd:5a:ca:97:bc:92:d9:dc:80:52:d6:
18:b4:23:6c:68:33:18:58:33:86:e2:22:fe:cf:77:
59:3f:87:52:42:90:b1:c7:5d:12:1d:f4:ed:75:f6:
da:70:54:fa:0f:7b:ac:54:97:e6:54:a5:65:c8:65:
4a:85:e7:ae:92:26:5c:a1:d1:79:30:53:20:fe:17:
46:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:2E:F7:7C:05:CA:13:0C:22:29:85:CD:74:AE:93:8D:A7:9A:4F:BF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/oC73fAXKEwwiKYXNdK6TjaeaT78.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136465
sbgp-ipAddrBlock: critical
IPv4:
103.89.48.0/22
IPv6:
2400:e9c0::/32
Signature Algorithm: sha256WithRSAEncryption
5a:89:c3:e5:47:e2:b2:35:f9:8a:7d:e8:11:87:ec:df:a7:01:
e7:e7:34:00:4b:de:f9:50:df:8e:55:28:2b:16:f6:2a:ee:dc:
01:75:73:40:3a:be:16:8a:74:96:72:3b:d7:af:1d:1b:b6:71:
c0:90:31:2f:d6:16:4d:d5:2a:2d:48:fc:27:76:be:6f:58:2d:
6d:d7:05:7b:03:9b:48:65:ed:22:3c:1a:b2:68:be:2d:73:6a:
01:70:44:42:8c:d5:fa:e0:4a:c0:5f:9f:82:45:f1:96:fb:97:
55:63:17:7e:ed:d6:74:2e:fa:48:5d:91:0a:54:ff:f8:d2:14:
56:fa:ee:63:75:21:5b:51:53:29:e8:3e:5e:40:de:09:9f:fa:
bb:08:04:57:b0:d5:0c:cd:55:fd:30:f7:82:78:d2:58:aa:c3:
09:db:ec:2d:05:97:15:db:38:84:58:72:e7:49:1e:c8:59:78:
78:e8:3c:cc:1f:85:1b:df:ad:7f:81:64:17:2a:38:8b:78:0c:
22:72:68:65:07:97:1a:e1:50:17:6c:ae:24:37:02:c2:f6:f9:
c5:1e:f3:2a:09:bf:dd:53:c0:09:96:e1:aa:b8:82:ab:1a:f5:
d4:c6:bd:7a:49:4b:27:d6:5b:79:e6:51:01:36:9b:27:d0:ba:
ee:aa:89:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:57:05 2025 by rpki-client