Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qriBuCFHwwNrgPxnWTTcLkbOD38.cer
File: qriBuCFHwwNrgPxnWTTcLkbOD38.cer (raw, json)
Hash identifier: PHMqm2O4rxnApWlyismQQNMyHFH35hxv++vDVn50CUM=
Subject key identifier: AA:B8:81:B8:21:47:C3:03:6B:80:FC:67:59:34:DC:2E:46:CE:0F:7F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0220F2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/qriBuCFHwwNrgPxnWTTcLkbOD38.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 05 Dec 2024 22:34:48 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 103.158.190.0/23
IP: 2001:df5:5f80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139506 (0x220f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 5 22:34:48 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91F4EDE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c4:dc:af:88:c4:81:09:af:c0:ea:f8:e0:6f:
65:d1:d4:9a:ab:9d:93:2d:ac:e9:24:42:01:ff:cf:
36:28:88:48:22:c9:7d:c9:50:7b:a9:61:87:01:82:
8d:7c:91:c9:37:c7:ed:06:3a:60:c1:e3:cd:c0:dc:
7e:6f:00:2f:c4:97:90:4a:4b:7b:72:c3:03:4e:68:
e7:65:16:3e:a4:dc:ee:a2:9d:7c:0b:8f:9e:17:f0:
ff:3c:02:c5:37:1b:23:8f:50:fc:c4:c7:63:ef:fa:
00:71:ef:d4:99:19:e7:ab:52:dd:30:86:f3:11:aa:
57:a6:ed:d4:b2:a2:4e:d3:20:09:f9:4e:06:cc:46:
2c:47:0b:4d:5c:b4:27:54:0e:28:ee:66:72:76:90:
9d:bb:af:46:ed:a2:e6:e0:d1:9b:31:a0:8e:7b:d8:
ca:1b:eb:2a:aa:02:cc:f1:53:42:bd:22:67:cd:c8:
6c:51:ae:30:3f:6a:b7:c2:39:94:9b:9b:86:10:0a:
46:75:be:5f:1f:aa:5a:4c:00:41:c2:cf:4d:54:f5:
d7:92:c0:16:31:0d:2e:7f:c9:b5:b5:49:d1:16:4e:
e3:50:d9:9a:28:d6:ef:e6:4c:aa:58:01:38:11:2a:
31:d9:41:f6:19:c0:6e:34:82:5b:fa:ab:18:bf:0a:
ba:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:B8:81:B8:21:47:C3:03:6B:80:FC:67:59:34:DC:2E:46:CE:0F:7F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/qriBuCFHwwNrgPxnWTTcLkbOD38.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.158.190.0/23
IPv6:
2001:df5:5f80::/48
Signature Algorithm: sha256WithRSAEncryption
1e:bc:87:dd:f6:96:dc:bf:b2:15:dd:2f:48:7a:4b:98:5f:ce:
f9:8b:7b:b7:a0:25:b8:2c:58:46:23:af:28:db:97:69:5b:9f:
ea:3e:fc:0e:67:9f:83:91:dc:d9:00:ce:5a:2a:45:14:b4:95:
68:60:fd:b1:46:55:b0:f4:4a:3a:65:49:8d:55:32:4e:6a:2b:
f5:8d:b9:e2:1e:10:34:15:4b:c3:72:8b:b9:65:7b:4b:f0:19:
c2:3f:5d:65:d6:68:3e:d7:fa:18:38:ce:ef:73:19:59:06:ad:
62:e2:14:21:14:35:ae:da:44:da:54:19:b4:15:a5:69:b8:5d:
b4:d0:a2:bd:0f:5b:73:1f:41:cf:da:25:a0:9a:a0:06:b2:a2:
f6:12:cc:86:0d:3f:fb:6f:dc:b5:3f:31:18:47:48:ba:ef:cb:
46:14:25:f1:18:ea:1a:db:21:bc:e2:d6:6b:d9:ba:fc:bc:e1:
4b:94:6a:7f:52:11:9d:3d:85:39:f9:44:46:4e:70:ba:c3:64:
2c:08:66:2e:31:b9:7e:a4:8a:ca:89:e4:70:31:61:10:c8:7b:
fe:f2:ce:d9:d4:9e:09:ca:c9:61:59:9f:77:52:e6:60:35:f9:
b4:d3:1e:42:11:fd:81:52:cf:93:a8:2f:5e:20:7f:5e:a6:36:
7c:a1:36:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:08:04 2025 by rpki-client