Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vAKwBcyqBFP8m4F7t4y6kV8nwqg.cer
File: vAKwBcyqBFP8m4F7t4y6kV8nwqg.cer (raw, json)
Hash identifier: nSoeoH7NaDZM8Hst+D26rNtco7GOfcCipBhSuftsoCI=
Subject key identifier: BC:02:B0:05:CC:AA:04:53:FC:9B:81:7B:B7:8C:BA:91:5F:27:C2:A8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02212A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B36DC/B043647A19F911EBB8CDED4FC4F9AE02/vAKwBcyqBFP8m4F7t4y6kV8nwqg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B36DC/B043647A19F911EBB8CDED4FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 06 Dec 2024 18:44:51 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 141377
IP: 103.157.248.0/23
IP: 2406:a9c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139562 (0x2212a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 6 18:44:51 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91B36DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:7a:19:d8:95:d7:7d:4d:05:d1:93:30:33:d8:
2e:e9:f2:cd:e0:5d:ba:49:1a:82:83:2a:9c:e0:00:
5c:4e:e5:a7:82:8a:d4:37:e5:19:cd:e6:17:dd:3f:
fd:6d:f3:78:10:9f:a5:40:2c:dd:5d:76:d8:fb:99:
55:76:50:75:35:e5:df:2c:d3:dd:a7:de:58:9e:68:
70:72:70:ce:e0:ad:d4:b9:55:39:57:88:b4:94:5c:
4b:00:e9:d0:1d:db:a0:3f:4d:32:6b:62:25:58:3c:
e0:e3:a5:79:7f:76:68:c9:ce:db:89:0d:a7:a4:77:
ab:88:1d:44:8a:c5:c8:21:ec:4c:35:e9:95:34:c9:
f0:d4:49:f1:1f:f4:8f:51:b5:56:60:83:8f:a3:4b:
bd:24:6e:a9:e3:54:44:b1:60:35:14:58:5e:a4:c3:
c7:b9:3a:df:44:a6:ff:a9:fc:d9:83:42:6a:7b:b2:
bd:24:0c:6a:7a:c1:7e:dc:b9:d8:68:c6:35:91:cc:
3f:8f:72:5f:ac:8b:ef:31:26:59:e0:86:d6:1e:5a:
5b:b1:2e:0b:49:31:68:e9:3f:62:b0:5f:ed:39:41:
ff:a6:34:ff:33:a3:cf:29:4f:e2:8d:7e:02:6b:48:
dc:7d:b0:83:dc:88:11:50:42:4c:ca:76:31:54:a4:
eb:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:02:B0:05:CC:AA:04:53:FC:9B:81:7B:B7:8C:BA:91:5F:27:C2:A8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B36DC/B043647A19F911EBB8CDED4FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B36DC/B043647A19F911EBB8CDED4FC4F9AE02/vAKwBcyqBFP8m4F7t4y6kV8nwqg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141377
sbgp-ipAddrBlock: critical
IPv4:
103.157.248.0/23
IPv6:
2406:a9c0::/32
Signature Algorithm: sha256WithRSAEncryption
37:91:35:0d:26:81:09:be:c6:bb:1b:bc:f0:3a:a6:ed:6c:d1:
82:54:98:b7:10:c3:10:e8:0b:24:fd:a0:e2:4e:43:ec:bc:cf:
7a:a6:cf:af:85:05:a9:23:9c:97:cf:01:e4:4c:cf:2c:26:0a:
79:7c:b5:fd:2f:5e:fa:a2:75:c5:a1:b0:82:30:62:8b:91:e9:
b3:b2:44:e5:6b:77:91:6e:38:93:e2:b7:f3:72:0a:51:9d:81:
7c:42:a3:ee:c0:81:bd:3c:66:e8:44:77:84:04:f5:4b:e0:67:
7c:d4:55:af:0c:71:01:17:34:54:84:b4:ef:f2:9b:1c:e0:7f:
49:e4:7a:e5:f5:e7:8e:91:41:9a:a3:9b:d6:94:e2:c6:c2:69:
8b:38:bc:bb:ae:5e:e9:e9:99:ce:dd:28:6e:19:76:a2:fd:33:
d6:9b:db:a7:ef:61:09:c5:88:de:f0:97:2d:f4:9a:3e:a7:c6:
d9:29:00:05:a5:82:6d:62:3a:56:3a:94:11:44:b3:40:25:4f:
ad:c8:eb:fd:96:c0:22:bc:1e:16:a1:a4:d2:6c:28:49:c5:9c:
3c:cf:f6:02:74:ee:89:06:36:cb:8e:29:e1:6f:52:78:53:89:
7a:ae:43:5c:1c:af:f9:db:e5:8d:d4:71:d3:b0:67:a5:dd:39:
41:69:bf:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:19:59 2025 by rpki-client