Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ufrcQefh-XVse8mz3jlyy_bPYLU.cer
File: ufrcQefh-XVse8mz3jlyy_bPYLU.cer (raw, json)
Hash identifier: swQFIKN4LmMh4E/WrAzUiKrLi7BfcKK0uhTzllNPvE8=
Subject key identifier: B9:FA:DC:41:E7:E1:F9:75:6C:7B:C9:B3:DE:39:72:CB:F6:CF:60:B5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0231CC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9140562/66C3C97EEDF911EFA9CDA838C4F9AE02/ufrcQefh-XVse8mz3jlyy_bPYLU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9140562/66C3C97EEDF911EFA9CDA838C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 18 Feb 2025 13:08:15 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 153587
IP: 163.61.91.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143820 (0x231cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 18 13:08:15 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A9140562
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:20:8f:8a:08:44:65:f9:e3:76:c5:69:20:8f:
b0:5c:06:69:15:e0:ca:39:5e:cc:dc:2b:59:ac:f5:
31:78:82:40:ce:72:11:22:0b:6c:4f:56:9f:97:88:
93:db:68:43:cf:2d:e1:10:bc:37:dc:f1:2d:7c:86:
a3:d6:ab:82:ab:65:93:e2:57:0a:93:70:0a:fa:b1:
ac:a7:ac:b9:c9:9a:fc:6b:55:3f:6f:49:ee:d6:53:
99:68:50:ae:2f:f8:3f:1d:d1:06:ec:3d:8f:f9:3a:
38:44:90:5f:68:17:b7:74:7a:f9:cc:30:b2:02:c6:
b0:c1:02:f7:ee:6a:3d:0f:52:10:ec:4d:b7:0e:4d:
e8:49:c1:b1:f3:2f:08:02:b0:ee:88:9e:4b:c0:80:
5d:11:81:6e:ad:8a:6d:6c:2b:92:64:89:2d:08:8d:
94:a5:b2:87:07:7a:1f:6a:1a:77:ef:9f:6a:18:f6:
43:ac:4b:3c:b0:5c:1d:63:c1:24:73:f5:1d:e7:58:
68:0f:3d:f4:fb:72:59:ac:0c:02:d8:5a:dc:f3:fd:
fa:95:03:c8:ce:94:f8:ff:dd:32:05:f0:cc:5e:23:
63:a9:56:68:22:08:82:4d:68:af:5e:b6:5f:91:e1:
d9:20:56:44:8d:a6:dc:19:30:c1:46:d7:a1:68:57:
8e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:FA:DC:41:E7:E1:F9:75:6C:7B:C9:B3:DE:39:72:CB:F6:CF:60:B5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9140562/66C3C97EEDF911EFA9CDA838C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9140562/66C3C97EEDF911EFA9CDA838C4F9AE02/ufrcQefh-XVse8mz3jlyy_bPYLU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153587
sbgp-ipAddrBlock: critical
IPv4:
163.61.91.0/24
Signature Algorithm: sha256WithRSAEncryption
34:c1:07:2a:7a:e2:4c:a2:d5:62:46:a3:9b:a2:ec:4c:d6:bb:
5a:3f:19:2d:52:c5:c4:13:a7:9a:76:92:29:dd:1e:34:eb:83:
17:94:77:ab:24:53:3b:38:6f:06:3b:e8:2a:71:09:09:c5:dd:
08:65:17:0e:25:67:ab:ab:63:08:3c:a0:97:cf:54:cf:14:c2:
c3:b3:34:4c:12:94:c0:8e:e7:6c:b7:25:02:58:46:8f:3b:10:
ba:6f:ae:b5:71:6c:bb:0d:fd:3f:e5:5e:28:89:eb:12:8b:7d:
2d:14:0b:73:71:0d:6e:a9:11:94:da:5b:35:e4:7c:53:86:4e:
55:b6:26:6f:23:38:9f:4c:33:77:61:3a:ce:80:6d:2d:72:4d:
37:49:27:0b:ae:64:28:07:c8:59:16:b4:55:c0:61:20:20:52:
a5:9a:cf:28:28:05:b3:a3:f8:92:9f:eb:c2:d7:a1:7a:2c:1d:
78:51:89:fa:f5:bf:60:f8:f0:40:d3:09:0b:9e:68:ed:24:c1:
78:d0:94:9b:7b:ba:ac:59:42:de:09:27:ea:61:29:2c:87:44:
0a:ac:d1:de:9b:65:fa:51:a3:e1:15:ea:d4:c4:ff:97:21:13:
ba:26:82:65:60:21:df:94:30:49:79:dc:a2:6a:7c:48:ca:4e:
fe:a8:bb:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:17:28 2025 by rpki-client