Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0bN0xcqIBHwIYn_La14fSnAEek.cer
File: t0bN0xcqIBHwIYn_La14fSnAEek.cer (raw, json)
Hash identifier: PV8pr4SAffcEmW9qgTIRJNuYWBXwTMWj0I/MAGHmr3w=
Subject key identifier: B7:46:CD:D3:17:2A:20:11:F0:21:89:FF:2D:AD:78:7D:29:C0:11:E9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0229FD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C1B92/AABFC49ABD6011E9956A0F19C4F9AE02/t0bN0xcqIBHwIYn_La14fSnAEek.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C1B92/AABFC49ABD6011E9956A0F19C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 17 Jan 2025 17:57:42 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 24559
AS: 38454
IP: 103.126.104.0/22
IP: 203.91.112.0/21
IP: 2407:1c80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 21:11:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141821 (0x229fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 17 17:57:42 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A91C1B92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ae:67:b7:07:44:68:18:b2:4e:b9:1b:73:41:
a3:3d:6e:4b:6e:d2:24:5d:c3:4c:31:d4:5e:cb:b0:
2c:d2:70:f4:7f:53:70:23:af:28:12:4b:52:ad:ef:
32:b3:75:31:28:51:68:3d:61:fe:8b:4d:79:32:36:
68:2e:ce:3b:ab:a2:6c:28:2d:76:64:8f:56:48:cd:
10:6c:30:95:f4:7e:4a:19:c9:5e:6b:76:72:e7:d2:
63:ac:dd:26:3d:b8:a5:f0:2c:19:f6:07:90:36:50:
80:d6:82:53:a7:65:11:32:76:13:9f:d7:4a:63:b1:
28:15:72:c8:8d:c9:9c:0f:9c:3a:74:f2:24:4b:d0:
e8:f5:9f:4d:07:e5:77:b1:7c:2d:67:73:d9:0d:83:
2e:ff:3f:01:1c:7b:d2:2a:20:34:18:7b:e7:db:61:
d7:ca:3f:04:fe:25:55:d0:1e:63:d4:65:65:25:d1:
ac:56:56:17:4e:42:8c:0e:49:0c:1e:09:92:6f:b2:
5d:66:72:bb:37:41:9b:28:b3:ea:b7:d4:f4:33:ac:
1e:6b:5f:9b:e0:34:db:5b:42:2e:69:df:89:5f:b8:
7d:19:a6:28:7a:55:f1:66:0a:f3:fe:73:24:d5:bd:
52:1b:3b:78:9c:10:be:98:ab:c4:ac:c3:8c:39:e2:
61:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:46:CD:D3:17:2A:20:11:F0:21:89:FF:2D:AD:78:7D:29:C0:11:E9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C1B92/AABFC49ABD6011E9956A0F19C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C1B92/AABFC49ABD6011E9956A0F19C4F9AE02/t0bN0xcqIBHwIYn_La14fSnAEek.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24559
38454
sbgp-ipAddrBlock: critical
IPv4:
103.126.104.0/22
203.91.112.0/21
IPv6:
2407:1c80::/32
Signature Algorithm: sha256WithRSAEncryption
4b:7d:18:59:4c:e5:89:89:61:8d:bb:6a:ee:01:b9:0d:e4:d1:
2e:90:34:bc:a5:69:ff:fd:f7:a4:e2:9b:e6:cf:43:cc:9e:4f:
4a:89:4b:19:82:c4:26:16:9e:a0:db:a1:61:30:53:fd:ee:79:
ca:41:d4:e5:78:e5:48:bf:36:0d:d4:7d:c8:6e:07:34:ee:60:
58:7b:f3:d2:77:1a:30:6b:20:4e:50:ce:a2:16:c0:57:91:a0:
35:77:08:1e:d8:a9:60:9f:fa:b6:98:86:84:86:ef:7b:99:d0:
bb:ba:ba:cf:44:a0:82:d3:06:e8:f3:e6:15:e7:97:6d:b6:fb:
15:30:0b:fe:6d:f6:5b:31:46:1a:62:83:68:27:36:d8:2f:55:
0c:e7:10:04:d7:8e:5b:f1:63:9c:3a:95:d5:b1:19:dc:a8:7a:
14:e3:77:aa:de:40:e8:67:0f:b0:6c:c5:84:0b:f6:7f:97:b8:
f7:96:7f:89:bc:e6:60:18:42:de:67:44:52:49:29:55:2c:7c:
a6:75:dd:86:52:df:fc:68:9c:0f:3d:da:b1:4c:ff:98:c1:d7:
f7:fe:9c:ab:86:ad:bc:b3:c4:82:06:09:8a:d4:ef:17:e0:3d:
1a:b0:a1:83:4e:81:ea:81:15:72:60:70:0c:be:e6:a1:03:ea:
0f:08:55:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 00:34:58 2025 by rpki-client