Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer
File: q2JivH0C7BrUi3HamLc9IqNi2vA.cer (raw, json)
Hash identifier: /BoTD09Y1X7xgAdIIHYxUb9GSXFaCZkYy20p4GPGfF0=
Subject key identifier: AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022261
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 12 Dec 2024 14:28:30 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 7544
AS: 17639
AS: 56207
IP: 103.93.220.0/22
IP: 111.125.64.0/18
IP: 120.29.64.0/18
IP: 121.58.192.0/18
IP: 123.253.136.0/22
IP: 202.69.160.0/19
IP: 210.4.96.0/19
IP: 2405:3200::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139873 (0x22261)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 12 14:28:30 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91E2454
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:30:b7:d7:32:fd:29:eb:9e:eb:80:69:8e:71:
2b:3c:84:be:8a:cb:e7:d0:cc:4a:8f:73:56:0c:fe:
cf:8a:99:0a:06:d9:48:95:40:ff:f7:80:1e:b7:c5:
3c:fe:a2:2d:d4:43:ab:3b:1c:57:6d:c9:1f:5b:7e:
9b:2c:aa:01:e9:e4:48:e1:51:a8:dd:4c:e2:eb:24:
72:62:95:3e:65:de:9c:67:0e:11:b0:77:b4:4b:68:
6e:6c:e5:19:81:5c:ca:03:2d:4f:42:37:96:61:97:
2b:69:ac:02:6e:de:cd:48:32:80:db:a0:8e:ed:f8:
a6:2a:ef:64:31:78:4c:57:6e:55:49:5b:f6:d5:a9:
22:55:d4:59:55:4b:25:70:80:95:f6:c7:f0:06:21:
b7:7e:34:13:ba:2a:ef:f8:d9:c7:bf:8f:fa:c5:5e:
7f:8a:e7:3d:ec:20:98:f0:01:d8:7d:3c:ab:c1:ab:
41:cc:69:b8:24:c9:85:98:b9:14:ed:3b:04:e7:07:
f8:35:c8:08:eb:98:74:53:6a:84:fa:29:58:4e:90:
a1:da:b7:b4:c9:91:c6:b9:b5:52:d6:c7:f4:77:0a:
a3:f7:39:5d:86:93:63:01:4a:d2:52:1f:5d:58:d8:
32:2a:6e:12:b6:02:ea:b2:cd:81:2d:36:7f:75:d8:
3c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
7544
17639
56207
sbgp-ipAddrBlock: critical
IPv4:
103.93.220.0/22
111.125.64.0/18
120.29.64.0/18
121.58.192.0/18
123.253.136.0/22
202.69.160.0/19
210.4.96.0/19
IPv6:
2405:3200::/32
Signature Algorithm: sha256WithRSAEncryption
b6:6b:6d:9f:81:82:2f:f9:51:07:8e:fb:58:62:88:7e:95:29:
ae:24:51:80:89:4e:a7:03:bd:5b:f3:7d:14:3e:76:95:ec:84:
fa:cf:ea:ab:c7:27:65:a1:49:61:d1:de:05:80:f4:18:f4:6a:
8a:63:2a:a9:57:12:42:3f:c6:e4:62:1b:d7:02:b2:eb:ba:a5:
00:4b:87:41:ca:d4:a1:76:19:9c:01:58:48:1b:5d:1b:a1:60:
ce:46:b3:bc:18:8a:d8:b9:5c:e4:e2:1e:5b:09:ff:00:27:39:
19:60:03:5a:e6:39:8c:12:87:ba:e4:25:69:f8:bd:64:23:d4:
e1:78:01:68:ad:5c:ad:e4:b8:49:63:7f:3d:90:20:9c:0c:e3:
64:24:d1:9a:c8:d7:4d:c2:aa:ff:81:fd:4d:4f:ef:9a:6a:5b:
4e:71:fc:8a:e4:8a:e8:cc:07:8b:5d:66:ba:f8:d0:0d:b8:6b:
15:10:ac:ca:ad:f2:05:de:64:79:1f:54:24:79:0f:75:6e:8e:
bd:9f:95:43:4e:22:ad:aa:4d:b0:cc:63:58:51:85:34:89:f8:
b3:cb:c9:0d:2a:40:a4:c6:2d:b9:9b:9a:5c:46:d1:24:61:12:
ec:81:31:e5:82:1d:75:f1:24:f3:c8:fc:a5:4c:42:09:52:d5:
11:14:70:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:07:01 2025 by rpki-client