Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUhT2b0_ePZIDGM1IHaUO8ebn8I.cer
File: wUhT2b0_ePZIDGM1IHaUO8ebn8I.cer (raw, json)
Hash identifier: l0DT2hiWDvlANC/hmC+mfkMsi/qwFDfzzdSS9U8YhL8=
Subject key identifier: C1:48:53:D9:BD:3F:78:F6:48:0C:63:35:20:76:94:3B:C7:9B:9F:C2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021DEB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91478E2/4C908A22E0B611E7B2D0FD80C4F9AE02/wUhT2b0_ePZIDGM1IHaUO8ebn8I.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91478E2/4C908A22E0B611E7B2D0FD80C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 27 Nov 2024 14:14:16 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 137047
IP: 103.103.42.0/23
IP: 103.120.70.0/23
IP: 2402:2ec0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138731 (0x21deb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 27 14:14:16 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91478E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a9:4c:bd:6f:f2:10:e2:5b:d7:c1:7e:c2:bf:
07:cd:91:b8:8e:5c:8b:b9:d8:0b:b4:ba:ec:ef:a8:
01:6b:57:15:c9:b4:ad:14:72:f5:9a:45:ec:61:53:
8e:0e:84:53:be:eb:8e:80:de:02:4e:35:c9:5c:0f:
62:7b:d7:4c:01:73:ba:c1:b9:25:e0:5b:38:7f:4a:
28:97:4c:4c:7d:af:1e:f7:d8:71:f0:4f:be:2f:e2:
bb:d5:ae:38:fe:06:b5:ea:9e:57:ce:8b:b7:ad:17:
21:21:68:36:55:7f:38:5b:51:ae:91:f3:9f:fe:09:
c8:82:c2:ca:b7:b5:91:ae:b6:46:3a:79:f8:bf:be:
ba:92:7d:74:e1:af:b1:cc:a9:90:91:9d:28:11:c4:
8f:c5:74:d1:5b:65:90:9c:d9:79:5f:40:18:39:ee:
9a:d1:4e:ee:6c:7c:66:b0:05:4a:38:de:5c:db:80:
46:52:42:8a:a4:39:32:61:a3:51:b6:65:7e:14:ab:
0d:58:2b:28:cf:18:62:f6:1f:d8:26:87:02:45:be:
db:3d:1e:df:9d:75:e4:e9:0f:51:df:be:34:a5:0c:
dd:5f:6a:d2:ac:23:9b:d5:c2:d4:71:d4:ee:6a:6a:
4c:38:0f:24:71:5a:66:ca:4e:a6:1a:d1:65:df:f1:
00:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:48:53:D9:BD:3F:78:F6:48:0C:63:35:20:76:94:3B:C7:9B:9F:C2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91478E2/4C908A22E0B611E7B2D0FD80C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91478E2/4C908A22E0B611E7B2D0FD80C4F9AE02/wUhT2b0_ePZIDGM1IHaUO8ebn8I.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137047
sbgp-ipAddrBlock: critical
IPv4:
103.103.42.0/23
103.120.70.0/23
IPv6:
2402:2ec0::/32
Signature Algorithm: sha256WithRSAEncryption
3b:e2:04:00:6b:b5:ae:fd:0b:21:41:6e:cb:19:8d:62:0e:06:
34:d7:af:cd:60:22:e0:8b:4a:66:40:09:5e:e4:ea:e1:02:cd:
ad:74:0e:49:43:02:56:3e:f9:06:65:37:ca:df:c0:ab:55:de:
02:9b:89:2a:a1:82:5a:de:e7:98:f4:c3:e7:d7:24:ad:b8:29:
c9:86:b6:bb:fd:38:ac:77:13:f7:22:b9:79:e3:4a:80:ad:89:
68:bb:6e:c2:db:cc:2c:fe:4b:53:d0:aa:d4:1a:49:32:4c:a4:
97:53:46:5f:9c:46:ca:9e:02:ff:ef:65:7c:8a:ac:a8:93:b5:
10:05:6f:7f:29:fe:2a:fd:67:5e:16:bd:90:cf:0b:2a:f9:42:
bd:12:c3:62:c5:de:9d:9e:29:20:d1:0b:26:9a:4d:78:81:b7:
4b:79:af:b3:77:5d:3d:6b:b4:50:f3:b7:df:d5:d1:79:9d:a7:
ea:d5:ef:f5:7f:53:6d:84:62:65:1b:6e:25:8a:1a:b3:92:2b:
f4:aa:93:e8:fb:18:c8:04:be:bd:b1:3c:16:8a:05:a2:b0:c6:
a7:40:f2:d5:3a:d1:78:a6:fc:76:a7:bd:23:7d:7d:af:03:3f:
32:32:e8:2d:87:08:01:57:04:4a:64:c7:fa:74:55:b8:05:75:
72:7f:53:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:07:06 2025 by rpki-client