Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGM3j5KTiRbgseQTrw8MinPCH08.cer
File: pGM3j5KTiRbgseQTrw8MinPCH08.cer (raw, json)
Hash identifier: va3KfCiPX7m+z7GS7WuSL63ocec3s7yRo8zJt6gBv1Y=
Subject key identifier: A4:63:37:8F:92:93:89:16:E0:B1:E4:13:AF:0F:0C:8A:73:C2:1F:4F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0220D8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 05 Dec 2024 16:29:15 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 203.24.129.0 -- 203.24.130.255
IP: 203.31.23.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139480 (0x220d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 5 16:29:15 2024 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A917C3A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:09:01:4c:be:6d:f1:eb:44:5c:3f:b2:06:74:
5b:e4:34:9b:77:13:5e:a5:8c:f4:2d:70:7a:fc:28:
4d:10:f0:cd:6e:b2:49:de:05:16:6d:2b:70:12:84:
81:5c:fe:54:70:3b:83:8f:87:73:72:14:45:4c:dc:
65:57:a2:90:1b:68:ab:f1:77:a7:cc:e2:28:4f:40:
99:37:e9:3b:e3:d9:88:b4:98:1b:e1:bb:ac:85:95:
c4:67:71:c8:77:86:7c:65:ad:9c:ce:47:a4:9f:c8:
65:3b:87:08:71:b4:bd:13:8a:b4:9f:24:6d:7e:78:
65:d3:8a:1e:d7:ce:f1:45:b7:5d:7e:df:20:71:b0:
69:75:3d:5f:15:f1:74:69:d7:88:7f:55:af:e1:ee:
15:bf:66:32:9c:16:d9:e9:c4:f2:34:32:12:0d:46:
bb:d3:03:e9:91:69:a0:53:68:06:48:7c:e8:18:5c:
3c:50:9a:16:c5:1a:2a:7d:89:ec:f4:e5:63:bc:a9:
50:b9:b8:1d:4e:a4:21:00:0b:d2:73:ae:0b:65:0e:
43:af:8f:bd:28:3a:8d:98:fd:71:a9:dc:c0:be:91:
ea:66:29:5e:cc:b4:62:1d:05:77:69:28:9a:11:c5:
4b:f0:27:8d:d4:3b:9e:a8:10:38:6e:70:db:57:1e:
05:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:63:37:8F:92:93:89:16:E0:B1:E4:13:AF:0F:0C:8A:73:C2:1F:4F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917C3A7/E41FF0A6532811EC8352D245C4F9AE02/pGM3j5KTiRbgseQTrw8MinPCH08.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.24.129.0-203.24.130.255
203.31.23.0/24
Signature Algorithm: sha256WithRSAEncryption
47:59:dd:b4:ee:e1:a8:6c:0e:d8:a0:bb:79:d8:4d:ec:48:f8:
0a:d4:2f:25:3b:7d:74:6f:bf:0c:f9:2a:cc:67:1e:9c:43:cf:
ee:f8:d4:5f:f6:ed:fd:b7:4b:ed:24:d5:1c:5b:5f:c7:c6:37:
ed:53:c9:e2:85:6e:82:8c:41:27:2f:e8:0f:20:47:9e:6e:1a:
04:8b:b5:f8:58:6c:9c:84:26:ba:e8:21:87:a5:d1:2e:9e:29:
93:bb:f2:9b:2c:e4:3f:10:c1:7d:66:27:e6:d2:fa:fe:7b:d2:
97:62:97:62:6b:ce:88:14:2c:77:f3:09:22:78:6d:98:45:a7:
fc:39:26:9b:60:28:34:55:03:ae:e1:e8:cc:b1:3a:4f:76:bb:
6f:36:2d:34:7c:48:da:42:cf:d8:f8:6e:58:5b:71:fb:b6:b8:
11:ff:b1:2d:d5:32:60:fe:96:71:11:c2:68:32:ef:b0:c6:8b:
25:db:08:8c:6f:09:5c:d0:aa:a0:cf:f0:db:13:4d:9b:fc:2d:
6d:87:f0:f9:a4:3a:c7:2a:7a:ef:1d:d9:21:9b:01:0d:99:a9:
0c:2f:f8:00:e2:30:55:97:1a:5c:5d:b6:45:2b:57:ae:10:71:
f4:bd:b2:4e:a5:98:4b:5f:f4:ac:cc:59:98:9b:8e:77:96:83:
21:3b:8a:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:07:11 2025 by rpki-client