Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rfD1q6_7mEW1XLNhoJL1bU5ABd0.cer
File: rfD1q6_7mEW1XLNhoJL1bU5ABd0.cer (raw, json)
Hash identifier: OWGA4PFOI1JJ+wTHebPTZKmVIbHwVUL3Yd8RZZpEv9A=
Subject key identifier: AD:F0:F5:AB:AF:FB:98:45:B5:5C:B3:61:A0:92:F5:6D:4E:40:05:DD
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021BAE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9164E50/A40A2420806D11EBA8BF9976C4F9AE02/rfD1q6_7mEW1XLNhoJL1bU5ABd0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9164E50/A40A2420806D11EBA8BF9976C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 15 Nov 2024 15:21:10 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 133546
IP: 103.234.92.0/24
IP: 203.1.3.0/24
IP: 2001:df7:1200::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138158 (0x21bae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 15 15:21:10 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A9164E50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ef:33:36:59:41:f5:a2:0d:9d:34:0d:42:88:
ab:1b:91:eb:8e:79:39:1d:a6:71:d9:a7:b5:e4:4f:
55:b4:3d:b6:5e:b4:1d:19:83:f8:f8:27:14:63:64:
cb:ab:85:63:4f:24:ab:0d:3f:2e:fb:4e:6d:5d:b3:
cd:88:bf:88:f6:4d:a5:47:c6:ba:6b:65:cc:df:d3:
41:df:70:40:fa:83:6c:d7:06:64:3b:0b:05:c9:99:
ec:46:ec:02:a0:27:81:f1:fd:ae:75:f2:3e:e5:e1:
a2:32:61:47:2c:4b:ee:41:5a:ef:f8:bc:03:bd:6c:
24:58:0d:68:3e:74:52:db:82:f1:76:da:19:4f:0c:
6f:15:7b:a1:f9:ad:03:a0:56:cf:2f:8c:1e:c0:29:
9f:72:db:fe:ae:ec:06:c3:16:c5:34:d2:42:ae:4c:
a4:23:c3:5e:d6:38:64:bc:30:52:b0:6b:35:8d:09:
90:66:4c:f6:b5:a4:bc:45:31:ea:b5:ba:10:0b:7f:
a0:d1:dd:fa:ed:bc:0d:4f:b4:dd:3f:db:39:c7:e6:
71:aa:fc:63:80:85:a8:d4:7d:37:7e:a3:bd:fb:39:
2f:b7:74:bc:02:da:5c:01:e0:a4:9d:46:23:81:1a:
6f:a2:8a:b1:07:a0:41:86:8f:14:27:ca:30:52:d5:
3c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:F0:F5:AB:AF:FB:98:45:B5:5C:B3:61:A0:92:F5:6D:4E:40:05:DD
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9164E50/A40A2420806D11EBA8BF9976C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9164E50/A40A2420806D11EBA8BF9976C4F9AE02/rfD1q6_7mEW1XLNhoJL1bU5ABd0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133546
sbgp-ipAddrBlock: critical
IPv4:
103.234.92.0/24
203.1.3.0/24
IPv6:
2001:df7:1200::/48
Signature Algorithm: sha256WithRSAEncryption
96:11:f1:2a:be:cc:ff:69:07:bf:fd:e3:aa:aa:fa:e3:1d:4a:
b0:86:ed:cb:4a:e8:31:44:42:af:06:a4:fb:c4:ab:01:7e:eb:
7b:9d:43:ad:28:db:d4:ec:a5:c8:a7:e5:6c:56:1f:f6:f6:6a:
c1:e9:f5:34:65:42:18:6f:a9:c8:ff:d9:54:2e:c6:8e:b4:88:
97:52:21:44:73:cd:94:d9:87:b7:41:7c:71:57:bc:84:6e:f2:
3a:35:2d:ab:74:3c:96:7c:ad:06:0d:0c:c3:47:57:7f:e4:a2:
6f:04:90:3b:f6:d6:51:d2:b4:44:4a:93:4f:62:cf:65:35:9b:
81:87:24:a7:78:c2:6d:70:e8:cb:3f:d5:c5:52:e1:59:3b:98:
bd:bc:a8:fd:97:f4:76:a0:7b:9e:cb:80:c3:23:e9:93:b7:2a:
d0:c6:07:1a:a4:6f:7a:bc:71:72:b2:d8:c8:e5:84:0b:26:20:
21:a2:c8:87:cd:5c:21:f0:81:91:da:80:6a:c9:c6:ce:b3:96:
c7:25:af:4a:07:24:9b:96:0f:ee:e1:4a:41:93:4b:3e:d6:4f:
d6:2e:15:86:fb:0d:d2:d5:42:c5:13:e3:6c:01:60:f5:73:3e:
b7:f2:8b:88:6c:b1:a9:0a:3d:03:e4:7e:ad:df:ce:c6:7e:36:
e6:01:98:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:23:04 2025 by rpki-client