Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uf67oJzxCyh-7SzlZyKzyaDvEv8.cer
File: uf67oJzxCyh-7SzlZyKzyaDvEv8.cer (raw, json)
Hash identifier: uNLLeVJkLc8fd/6ho/Wp2xF+r5cYDTaCQzbBoOwni4w=
Subject key identifier: B9:FE:BB:A0:9C:F1:0B:28:7E:ED:2C:E5:67:22:B3:C9:A0:EF:12:FF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0221EA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918BB7A/5D21184C8EB111EAB02A550EC4F9AE02/uf67oJzxCyh-7SzlZyKzyaDvEv8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918BB7A/5D21184C8EB111EAB02A550EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 10 Dec 2024 18:25:37 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 139919
IP: 103.147.24.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139754 (0x221ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 10 18:25:37 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A918BB7A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c9:7a:c9:be:54:93:d8:79:81:4a:1b:c5:c0:
dd:49:9b:c4:14:db:bc:0c:b8:44:07:11:00:4e:58:
50:bb:e4:65:8e:9c:8d:9d:70:8f:8c:80:5e:6a:5f:
61:66:06:46:20:5d:d5:a2:4e:45:45:d9:ba:09:97:
c3:ab:5e:49:2a:ee:86:b2:85:77:f6:d8:d1:18:a9:
c3:e8:c0:46:2e:36:12:0d:1f:f8:2e:52:5b:0e:22:
af:83:ef:96:fb:ba:19:15:de:77:51:1e:e4:6c:26:
2f:8c:dd:7c:76:13:ec:57:6a:81:7f:e4:11:94:44:
0d:9d:e3:cf:7c:1f:18:7a:32:66:9b:93:c2:0d:24:
62:87:30:47:b0:28:c7:a8:f0:c7:73:5a:ec:69:79:
b0:a9:bc:8a:38:15:38:ea:8a:6f:8e:ed:ec:b0:d8:
ab:63:b3:ed:a9:11:7a:c1:19:d0:cc:b8:40:68:fb:
2c:ee:c3:e6:39:80:f2:6b:57:5f:89:cd:a8:98:0d:
c4:4f:52:0d:a2:12:fa:dd:37:3a:7b:1b:b9:59:97:
7b:21:a5:63:e6:ba:c6:39:5f:1f:1c:77:92:63:22:
ec:f6:7f:8a:85:77:d4:6f:0a:1e:a5:9a:93:80:e2:
57:fd:7a:0c:bd:7e:c0:22:da:93:28:7d:3f:3a:12:
8e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:FE:BB:A0:9C:F1:0B:28:7E:ED:2C:E5:67:22:B3:C9:A0:EF:12:FF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918BB7A/5D21184C8EB111EAB02A550EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918BB7A/5D21184C8EB111EAB02A550EC4F9AE02/uf67oJzxCyh-7SzlZyKzyaDvEv8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139919
sbgp-ipAddrBlock: critical
IPv4:
103.147.24.0/23
Signature Algorithm: sha256WithRSAEncryption
7e:ec:31:c6:1f:cd:3f:93:96:f1:d7:98:1b:11:e6:43:80:a3:
e9:cc:00:02:75:3a:ec:89:0b:75:90:3a:8d:92:89:ea:13:1d:
ad:ce:32:cb:f4:35:8d:63:c3:a9:55:60:c8:bf:44:6d:c4:8c:
f2:d1:96:16:48:df:19:3c:b9:c2:7c:85:d0:83:cf:a1:68:3f:
e2:41:9c:fb:a0:7e:14:31:d1:25:43:1b:f4:89:17:78:f3:69:
89:c6:7b:84:dd:95:75:29:4e:13:bc:07:76:c2:fd:2a:ce:e0:
0c:ae:c5:bf:8e:97:eb:f7:e7:30:4f:fe:e9:15:24:7a:a9:be:
ee:2c:01:23:bf:56:3b:89:88:5d:00:4b:17:b9:af:31:c4:a4:
d1:80:a4:c5:98:92:0f:f7:87:5f:34:2e:5c:05:a3:93:60:91:
3b:55:4d:a9:f2:47:24:a3:e9:fe:3b:23:54:43:5b:6b:88:59:
ae:f8:d5:2a:a7:64:cc:15:e4:7b:46:97:be:5b:22:ba:9d:1a:
43:d3:a4:54:e7:8e:66:cc:6c:f3:4e:3e:e6:f2:77:d9:9a:3c:
e5:9d:e5:44:cb:31:2e:95:d9:1d:b5:66:c2:df:15:4d:2a:16:
4f:83:cf:2e:fc:14:71:86:70:ea:c3:c5:43:92:0b:2c:44:13:
62:b7:de:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:16:37 2025 by rpki-client