Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rOKNq-U2SWN_puTjId4bY0Y7g88.cer
File: rOKNq-U2SWN_puTjId4bY0Y7g88.cer (raw, json)
Hash identifier: TZHjGKrHXyeI7Azx/2UQgSKvb1jpiseALSZMXPuFaLU=
Subject key identifier: AC:E2:8D:AB:E5:36:49:63:7F:A6:E4:E3:21:DE:1B:63:46:3B:83:CF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023605
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 06 Mar 2025 17:20:17 +0000
Certificate not after: Thu 28 May 2026 00:00:00 +0000
Subordinate resources: AS: 152585
IP: 2001:df3:7ec0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144901 (0x23605)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 6 17:20:17 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=A9186249
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:65:0e:b0:0c:51:bf:30:54:fe:ef:36:e9:53:
ed:30:d8:45:bd:71:e4:42:f5:21:3c:b0:85:64:6d:
cd:c9:00:cd:4f:6b:82:26:94:f0:09:bb:e2:a1:74:
25:eb:81:7e:e5:7c:78:22:d7:c6:bd:ad:d9:6a:93:
39:12:e6:18:97:19:02:46:13:89:cc:fd:21:72:41:
d2:3b:2a:27:7d:56:2d:88:64:5a:a5:f4:d7:69:b4:
f8:a5:bf:9b:eb:39:a0:b8:3e:4e:8d:69:90:c3:f2:
19:74:65:d7:86:a3:51:ac:84:54:10:12:23:7c:d8:
6d:c5:e2:39:f3:13:09:63:b2:86:f1:61:05:4a:e6:
32:a1:ff:bf:05:e1:9d:ea:fe:80:f6:51:3c:06:fa:
4a:dc:02:ae:64:0a:3b:08:22:62:ed:a3:b9:7e:e4:
b6:af:d6:f7:a2:c2:08:63:0d:da:0a:9d:d2:a8:5a:
f9:0f:5a:96:17:72:f7:f6:5b:71:f1:5a:6a:e4:74:
0b:df:2c:63:43:e8:84:b7:c3:9d:7a:a0:e9:31:38:
75:67:40:bf:bd:9b:f6:26:4d:b6:60:62:a4:4a:55:
51:38:34:80:c1:27:47:95:09:e2:86:77:f6:78:ad:
43:47:48:f5:41:04:09:06:78:82:cc:de:99:04:d9:
a2:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:E2:8D:AB:E5:36:49:63:7F:A6:E4:E3:21:DE:1B:63:46:3B:83:CF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9186249/A1F2343CD17011EEA6151C4DC4F9AE02/rOKNq-U2SWN_puTjId4bY0Y7g88.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152585
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:7ec0::/48
Signature Algorithm: sha256WithRSAEncryption
a6:73:71:ab:67:23:40:c4:72:9b:0e:41:17:f2:e1:1f:00:6d:
c4:0d:3f:9d:ec:e1:63:d5:95:f4:37:97:67:e8:d9:24:36:18:
59:4c:2a:6f:20:ba:9d:d9:9c:7b:e3:27:b6:9a:6f:8d:9c:92:
8e:0b:9e:4a:20:72:86:f3:13:d5:9a:a8:e7:04:e6:72:96:c7:
27:b2:85:16:1d:91:02:fe:a7:0f:be:61:5e:82:08:e9:06:cb:
b8:c7:91:0c:b0:b4:db:7b:9e:df:c3:f3:cf:c0:84:41:09:90:
ea:87:25:0b:29:ae:28:37:85:d3:a6:c6:f0:a6:09:48:0b:5d:
e0:4b:5f:f6:8e:83:2a:16:ad:5c:53:e7:6b:72:fd:c3:78:a7:
fa:75:60:26:72:aa:69:df:d0:31:89:72:fe:39:58:b6:e7:dd:
93:bb:49:c4:b3:0d:3e:67:de:6e:94:61:36:8e:89:fb:64:40:
78:68:68:a0:a8:66:48:46:4e:1f:df:ab:b6:e1:bc:22:1f:6c:
d6:be:84:39:27:ea:42:8d:a5:4a:81:8e:d8:ea:4c:f5:c2:1b:
19:ac:e8:77:a0:42:7d:63:ce:99:92:e4:de:72:8c:ed:cc:dc:
f4:87:36:be:2a:10:a9:73:6e:db:d1:f8:a0:a6:81:3f:55:95:
a0:4a:cd:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:05:18 2025 by rpki-client