Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer
File: opgFnwZTffjAi4klX3lZQaMcGAA.cer (raw, json)
Hash identifier: ragfhrqw9KKlB5iBgi+x/oIZV7dOj/A+6JgmshBB16Q=
Subject key identifier: A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022DF4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 02 Feb 2025 15:01:20 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 134476
IP: 103.160.218.0/23
IP: 203.119.15.0/24
IP: 2001:df5:a980::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142836 (0x22df4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 2 15:01:20 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A9144CB7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:0d:e8:9d:8e:9e:ed:84:d7:58:e2:e6:48:fe:
63:c5:3d:d4:17:c0:5a:67:bb:1d:da:bb:f0:c9:f8:
2f:ed:ff:5b:f9:12:86:58:d9:0b:84:9b:84:2f:47:
ab:e5:cb:27:4d:47:a6:7f:85:9a:15:98:3e:65:ca:
a6:64:3c:e0:76:84:12:df:55:4e:2a:9a:5e:9a:66:
ad:b4:68:35:16:c3:cd:12:36:2b:80:d9:60:12:31:
77:23:17:45:4d:2b:33:39:d9:d1:59:33:f9:cd:a0:
3f:15:21:74:58:67:7e:8d:3e:86:c4:04:19:b5:23:
0c:e3:3b:31:f4:93:2a:48:57:3d:4f:ee:4f:f2:66:
4a:6f:47:1a:03:d7:80:b4:12:3a:e4:ab:91:15:64:
92:13:67:d6:cf:fc:32:90:3a:90:36:cc:b6:53:99:
b1:1b:56:a5:58:fd:05:4f:03:22:d3:ba:cd:37:b2:
b3:66:b4:56:48:d7:ef:8f:7f:35:a6:7e:80:00:4e:
d4:01:ce:ac:e1:ad:53:b0:ff:47:ca:08:ff:13:2d:
c4:bd:c6:5a:0a:3c:92:d2:b5:36:60:0f:bb:63:ea:
fd:26:c4:59:90:71:2f:50:64:3f:19:fd:09:e8:01:
e0:40:77:19:92:64:95:41:19:34:fa:28:d8:b9:57:
1d:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134476
sbgp-ipAddrBlock: critical
IPv4:
103.160.218.0/23
203.119.15.0/24
IPv6:
2001:df5:a980::/48
Signature Algorithm: sha256WithRSAEncryption
9d:9d:f6:4c:19:e4:8b:88:e4:2e:27:27:df:75:96:45:4b:59:
da:89:24:41:95:ff:81:c0:17:5d:8f:20:a4:58:64:b0:60:4d:
2c:c7:07:cd:b8:78:9f:bb:91:4a:15:26:06:ed:fe:fa:7e:8f:
65:fc:db:d9:e8:1f:38:ca:a6:8c:d8:fb:19:37:1b:0e:54:7c:
6e:12:00:72:ae:ee:8e:72:bd:1d:e2:19:e7:90:b6:d8:c1:93:
62:f9:75:50:20:72:43:67:28:16:e1:27:2b:87:c6:cf:5d:b0:
e9:b6:e1:22:97:da:c7:43:44:91:21:cd:88:14:d3:31:34:d5:
83:e2:37:51:dd:9b:4c:17:5f:b7:fe:3b:2e:a1:79:d5:66:c1:
87:d0:ae:25:bb:60:9e:32:e8:6a:5e:1d:9f:08:92:59:70:93:
c3:cd:67:1e:b8:52:fa:26:4c:d9:14:fc:0d:c4:d1:df:c1:30:
7b:9f:4d:d9:1a:17:d2:1d:45:e3:2e:df:ac:24:51:94:c9:f3:
91:52:cd:ee:b3:a9:a7:d4:23:ee:92:9f:79:41:88:82:f9:2d:
6c:36:bc:1b:7a:21:aa:ba:c4:28:35:6f:09:ec:4f:c9:c6:c6:
c2:85:bf:82:2c:8b:4c:4d:fd:2f:e8:b9:05:d2:70:d3:9e:db:
64:e2:b2:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:14:27 2025 by rpki-client