Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v5hojpiwHoTXNm9nhkzo8-u9Q3c.cer
File: v5hojpiwHoTXNm9nhkzo8-u9Q3c.cer (raw, json)
Hash identifier: KAwFgHTKfKfhlyaBmKzxHiI7xwux2oh0pHtUf9ZCSI4=
Subject key identifier: BF:98:68:8E:98:B0:1E:84:D7:36:6F:67:86:4C:E8:F3:EB:BD:43:77
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023095
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D41AC/2445BCE2E93F11EF8DF1E035C4F9AE02/v5hojpiwHoTXNm9nhkzo8-u9Q3c.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D41AC/2445BCE2E93F11EF8DF1E035C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 12 Feb 2025 12:44:52 +0000
Certificate not after: Thu 28 May 2026 00:00:00 +0000
Subordinate resources: AS: 9336
AS: 38790
AS: 55573
AS: 135513
AS: 137558
IP: 27.113.240.0/21
IP: 43.252.124.0/22
IP: 45.64.56.0/22
IP: 45.113.244.0/22
IP: 103.9.52.0/22
IP: 103.18.124.0/22
IP: 103.53.200.0/22
IP: 103.233.224.0/22
IP: 118.127.96.0/19
IP: 121.200.208.0/21
IP: 202.90.48.0/21
IP: 203.153.192.0/20
IP: 218.185.232.0/21
IP: 2403:3600::/32
IP: 2405:7d80::/32
IP: 2406:c000::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143509 (0x23095)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 12 12:44:52 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=A91D41AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ce:16:a3:3a:7a:52:46:0c:4e:cc:83:7d:42:
9d:1e:22:f2:6f:5c:6b:46:e9:21:74:04:02:c7:66:
48:08:9b:d9:23:88:14:fd:20:1e:b2:40:fc:a2:60:
67:96:86:14:4c:6b:98:54:84:59:b1:03:67:6f:6d:
93:83:80:51:05:2d:be:10:c9:e0:45:16:87:d1:02:
6e:68:10:cc:2d:69:b7:31:1b:17:2f:07:1c:8d:bf:
ea:aa:1d:8b:16:88:0e:87:69:bd:83:a0:c7:e6:a4:
44:d5:02:4a:c1:9a:9c:5c:d0:7e:06:ec:4a:d3:43:
85:2f:eb:eb:c7:75:6c:25:7c:5e:26:59:37:19:e8:
6a:85:fa:89:f5:72:a2:de:bd:9e:cc:87:0f:6b:ed:
8b:95:7a:bf:95:b0:06:d4:74:c7:8a:6d:ff:82:04:
d8:7f:26:40:89:06:78:d7:03:73:67:9c:42:84:04:
95:a6:de:f8:f9:13:40:42:92:69:c9:8d:74:76:3f:
f4:6f:02:28:7a:72:12:d5:6c:d3:25:6f:45:e4:75:
43:bf:56:4a:48:76:80:c2:9d:68:fb:f9:23:81:81:
e8:ff:53:81:f8:fe:0e:9b:93:1a:63:0a:f6:87:df:
b7:4d:b6:3e:db:8f:1b:11:b5:84:fb:95:92:6d:23:
db:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:98:68:8E:98:B0:1E:84:D7:36:6F:67:86:4C:E8:F3:EB:BD:43:77
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D41AC/2445BCE2E93F11EF8DF1E035C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D41AC/2445BCE2E93F11EF8DF1E035C4F9AE02/v5hojpiwHoTXNm9nhkzo8-u9Q3c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9336
38790
55573
135513
137558
sbgp-ipAddrBlock: critical
IPv4:
27.113.240.0/21
43.252.124.0/22
45.64.56.0/22
45.113.244.0/22
103.9.52.0/22
103.18.124.0/22
103.53.200.0/22
103.233.224.0/22
118.127.96.0/19
121.200.208.0/21
202.90.48.0/21
203.153.192.0/20
218.185.232.0/21
IPv6:
2403:3600::/32
2405:7d80::/32
2406:c000::/32
Signature Algorithm: sha256WithRSAEncryption
40:a1:c3:18:3f:e6:06:63:c5:46:67:2b:7c:4f:68:4e:1d:68:
3f:8c:2d:62:99:7c:64:7e:6b:12:92:30:98:32:2b:ef:8f:92:
93:08:bc:87:47:54:d6:c1:5b:32:79:76:6a:5d:a2:b5:21:d7:
86:2a:b2:c8:41:e5:96:78:0f:62:73:13:0f:07:26:6d:cf:88:
fa:2e:75:8f:af:9e:20:90:a2:d5:a2:08:c0:35:f2:ae:7a:af:
19:31:9b:85:09:6e:42:9f:8c:d2:82:f6:d6:5a:16:ad:e3:31:
a0:1c:98:2c:55:6d:77:22:78:a7:f0:fe:3d:db:09:43:af:bb:
b1:a2:36:5f:d1:45:86:7e:54:1d:ea:83:d4:7e:48:b5:3e:3d:
43:f9:80:6d:2a:81:84:42:8a:61:03:55:15:c3:70:19:b3:97:
da:03:d1:e0:d7:73:e4:0c:7f:34:ce:8b:e1:5f:8c:24:d8:f0:
b8:ba:50:82:2b:0a:84:00:4d:b2:52:66:9e:02:da:61:cc:64:
77:62:4f:f9:80:a3:a2:8f:cb:85:66:9b:97:d0:a4:b2:ae:76:
5a:ae:87:7b:f0:db:78:4b:12:17:ab:42:59:07:50:a4:8a:05:
0a:fc:ac:b5:50:c7:4d:4a:4f:20:06:c2:53:6f:eb:e9:4e:b3:
2d:cf:3a:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:04:26 2025 by rpki-client