Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBNlbNepj73iI3_FMUyf9-jxoJ4.cer
File: tBNlbNepj73iI3_FMUyf9-jxoJ4.cer (raw, json)
Hash identifier: 1zAcblxQJ1hVaZNvq63vtfzJAwNnxF69rjOd0rH3ES0=
Subject key identifier: B4:13:65:6C:D7:A9:8F:BD:E2:23:7F:C5:31:4C:9F:F7:E8:F1:A0:9E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023238
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A5252/CD163BCA54A211EBBF621E1EC4F9AE02/tBNlbNepj73iI3_FMUyf9-jxoJ4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A5252/CD163BCA54A211EBBF621E1EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 19 Feb 2025 18:44:53 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 141430
IP: 103.159.80.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 11 Apr 2025 07:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143928 (0x23238)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 19 18:44:53 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91A5252
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ff:a1:b7:d9:6f:60:2a:7d:7b:1b:8b:3c:6a:
60:06:5c:e8:68:f9:88:4f:29:6b:0e:8f:83:a3:48:
99:f5:72:aa:87:6a:b6:45:68:8d:9c:22:4f:b6:37:
02:87:c8:b1:e6:ca:3b:a2:f3:dc:75:aa:63:e6:37:
1a:f6:61:6f:53:bc:7c:10:da:74:35:12:3a:24:6e:
49:13:9b:80:49:e9:24:41:1a:65:e1:3b:8c:02:ae:
e4:c5:03:ee:69:0c:67:b1:72:29:88:85:28:2d:d2:
40:fb:38:40:04:95:c6:d1:99:52:7f:dd:b0:97:f3:
a1:fb:49:a3:95:a3:73:c0:a6:f3:1b:87:d9:c5:ec:
ef:24:8d:b8:53:9e:e5:b1:78:ec:93:87:38:ea:42:
4a:ac:e2:60:bf:d3:54:c9:58:3f:e0:6d:47:c4:00:
8e:7c:bf:5e:e6:1a:84:40:a0:23:ff:66:b2:96:1c:
a0:a8:81:61:4e:3f:40:d3:12:49:c8:49:35:5c:42:
d8:7d:82:f3:8b:32:bf:36:c8:70:d7:83:db:1b:e2:
af:dd:3c:bb:99:f2:18:21:f1:b4:b6:d0:50:3d:32:
9b:21:4d:f2:a0:45:13:f5:ac:61:21:c5:30:ff:c9:
6c:6b:b1:f4:3c:e0:40:7e:d4:3b:42:a1:c5:f2:0d:
bd:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:13:65:6C:D7:A9:8F:BD:E2:23:7F:C5:31:4C:9F:F7:E8:F1:A0:9E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A5252/CD163BCA54A211EBBF621E1EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A5252/CD163BCA54A211EBBF621E1EC4F9AE02/tBNlbNepj73iI3_FMUyf9-jxoJ4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141430
sbgp-ipAddrBlock: critical
IPv4:
103.159.80.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:94:47:ab:09:ca:87:c7:45:58:c5:2f:20:71:fd:89:1b:e0:
3d:0b:eb:84:68:9f:c1:e6:84:21:41:ff:39:4d:e7:c3:4f:84:
f6:f0:49:4d:ce:83:05:02:1b:9b:71:35:3e:0e:10:42:12:27:
d0:4b:0c:58:f4:d1:bb:cb:06:35:54:43:e4:ce:43:57:39:37:
72:54:fc:c8:a1:a7:a4:43:95:3e:21:2c:76:a2:74:9f:56:c3:
81:90:0b:ce:5e:46:8a:51:4c:ea:73:9f:11:bd:d7:ce:a1:bb:
ff:a2:2d:9f:e8:63:b2:13:1e:ca:77:25:f9:ef:5e:cd:c1:b2:
ef:7e:6d:94:33:fd:79:4b:e8:6a:20:ec:04:80:71:e5:de:f7:
f8:cc:c2:d7:8d:bf:20:42:93:91:ad:b8:88:d4:3c:6a:3c:b5:
93:e3:6f:27:f8:49:c5:8c:71:4e:df:1a:31:08:09:d5:5a:1e:
f9:9c:a1:39:06:fe:11:b4:62:7f:7a:21:66:b0:76:93:7e:8f:
a0:60:80:02:df:4a:6a:4d:50:c6:3a:04:fe:74:ed:87:ad:17:
ab:3b:c1:ef:3e:50:1e:0a:e3:2e:7c:c5:fd:58:7f:b6:6e:b3:
5d:c5:5a:c1:eb:b6:4e:66:81:52:88:28:1e:ce:bd:73:16:51:
cd:26:b3:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:07:17 2025 by rpki-client