Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozzKgbVeBGVdG1p-LOaIw-RvxTA.cer
File: ozzKgbVeBGVdG1p-LOaIw-RvxTA.cer (raw, json)
Hash identifier: xng8kn5arOhAIosq6jJL5FA4e6oqA/UvSE1t9LZbMZE=
Subject key identifier: A3:3C:CA:81:B5:5E:04:65:5D:1B:5A:7E:2C:E6:88:C3:E4:6F:C5:30
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0225D7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 31 Dec 2024 00:00:15 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 149034
IP: 103.177.52.0/23
IP: 2400:3820::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140759 (0x225d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 31 00:00:15 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91EDF00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:db:78:aa:52:d8:df:09:77:d8:95:12:3c:58:
c3:21:23:c4:e7:4d:0f:f3:57:be:fe:e1:fa:e3:f4:
f5:26:e0:9c:a2:d2:b5:c5:74:dc:4d:74:c8:c8:75:
98:40:bb:59:fa:bb:35:4d:c3:93:3d:d7:7c:55:21:
1f:89:bb:f4:1c:73:e8:6f:45:c5:f6:a5:ce:50:25:
85:11:77:33:b2:f1:28:1b:90:b7:ff:a7:2e:83:8e:
9c:15:94:1b:ec:02:e4:11:77:59:f7:74:c2:09:a6:
2c:54:bc:55:91:ee:ed:b3:2d:47:72:60:77:3e:65:
9b:2d:d3:0a:fd:64:b2:eb:50:2e:2c:1b:fd:c5:2c:
6f:5f:74:9c:18:0d:bf:e2:e7:10:bc:99:5c:b6:23:
83:be:e4:b9:1e:cd:77:9f:ea:8c:99:6c:9e:aa:69:
46:a9:41:8d:73:27:30:e4:e8:fb:8e:5c:73:10:76:
b2:08:2b:c6:a3:60:7f:37:51:fe:5c:8a:00:25:ee:
c4:58:fb:19:c6:dd:0c:42:57:5c:60:91:3e:3a:91:
ff:fd:5b:a4:7a:3a:3d:6b:3c:b7:92:98:6a:2d:fd:
44:1d:88:07:f3:c9:02:ea:0a:43:38:52:d3:61:aa:
e8:b7:37:7f:f3:ee:98:f6:46:5f:d5:8a:76:65:27:
1b:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:3C:CA:81:B5:5E:04:65:5D:1B:5A:7E:2C:E6:88:C3:E4:6F:C5:30
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149034
sbgp-ipAddrBlock: critical
IPv4:
103.177.52.0/23
IPv6:
2400:3820::/32
Signature Algorithm: sha256WithRSAEncryption
88:2e:04:32:a5:0e:6e:4f:c6:8e:2a:59:b1:8b:83:a1:db:e3:
c7:12:b5:43:75:f6:a0:8b:10:f9:37:44:dd:8f:2e:08:5f:7a:
2f:5f:97:a0:29:cc:e1:38:78:9b:94:db:14:41:ad:62:97:61:
b6:1b:50:51:cf:8c:fa:26:d3:20:bf:19:81:ac:7f:66:bf:9b:
3e:c0:4e:83:99:a1:e1:3f:54:5f:14:6e:8e:12:82:4d:fc:ea:
5f:26:7c:09:fb:42:cc:88:56:58:c2:78:f2:48:3d:48:e4:e5:
6d:f1:cc:4a:f2:05:74:05:39:6c:7b:72:c0:03:be:a7:c9:a7:
67:f8:ca:cb:03:df:74:90:7b:d5:4a:bd:c3:61:dd:1f:6a:d1:
43:87:64:51:d6:e0:5d:61:2c:dd:2c:5b:eb:e7:81:4a:48:42:
2e:c4:e5:7f:61:22:a9:28:9e:55:ad:d5:82:e1:93:4f:ba:81:
27:7a:86:c0:08:f3:ca:68:cf:ff:df:51:12:9f:7f:fb:b9:24:
8f:d4:46:1a:91:2b:85:9c:bb:ac:9c:2c:76:c5:64:86:d8:c0:
2b:f4:b1:d3:11:e8:17:1b:cc:48:92:67:4a:ea:21:e2:88:ae:
d2:79:b6:19:8a:9c:16:b0:e2:31:7f:1d:56:40:47:74:e3:7a:
58:cc:4a:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:19:27 2025 by rpki-client