Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7Jkc1A4Cmo0404yzv41GZN-l8g.cer
File: x7Jkc1A4Cmo0404yzv41GZN-l8g.cer (raw, json)
Hash identifier: 3u0CtJKuPdIfRCuBpSGrmN7g+mS9DxZROmot+gqppwE=
Subject key identifier: C7:B2:64:73:50:38:0A:6A:34:E3:4E:32:CE:FE:35:19:93:7E:97:C8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02200D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/x7Jkc1A4Cmo0404yzv41GZN-l8g.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 03 Dec 2024 14:20:40 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 55821
AS: 152326
IP: 27.126.152.0/22
IP: 45.114.132.0/22
IP: 103.5.4.0/22
IP: 103.16.168.0/22
IP: 103.54.84.0/22
IP: 110.235.128.0/18
IP: 203.96.180.0/22
IP: 2400:6a80::/31
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139277 (0x2200d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 3 14:20:40 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A9144F59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:16:e2:f0:4b:e4:bc:9c:7c:36:58:e9:a9:b6:
59:3b:4f:69:2e:ba:64:a6:2d:82:12:96:94:c9:a1:
f4:21:87:7a:ab:f4:d1:ea:f0:84:4c:ed:8f:6a:e9:
88:92:f0:24:fd:75:c2:e0:61:db:e4:74:06:10:fe:
4c:0f:ff:06:5a:48:db:38:4f:47:fb:cb:eb:66:3c:
a0:74:04:e6:ac:21:35:e2:45:70:b8:0a:02:e5:b8:
64:eb:93:6f:db:d1:01:31:2f:7b:9b:a6:65:db:0c:
db:8e:b3:a0:6b:55:03:68:ae:25:41:07:7c:14:02:
70:97:72:27:ea:b6:66:08:b9:87:41:20:4f:7f:ee:
48:cc:74:c5:e4:96:92:7d:15:bb:bb:7d:49:be:d2:
d9:de:f3:60:af:bc:a2:c0:18:82:72:cb:32:86:e7:
4d:ee:50:af:46:be:da:b0:50:a7:3f:9d:24:ed:eb:
a0:c5:0f:0d:91:0f:34:01:7f:d5:bc:a3:d0:7b:d6:
2b:27:a5:0e:d7:4d:c1:27:56:a2:93:f2:ef:b3:bb:
89:88:79:a3:ff:29:bf:0b:8b:51:cc:25:02:e0:df:
69:db:06:68:24:7c:b8:42:5f:35:d3:36:b3:db:14:
af:30:be:fb:ed:bb:0e:3c:64:72:9e:b0:5f:46:bf:
09:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:B2:64:73:50:38:0A:6A:34:E3:4E:32:CE:FE:35:19:93:7E:97:C8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/x7Jkc1A4Cmo0404yzv41GZN-l8g.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55821
152326
sbgp-ipAddrBlock: critical
IPv4:
27.126.152.0/22
45.114.132.0/22
103.5.4.0/22
103.16.168.0/22
103.54.84.0/22
110.235.128.0/18
203.96.180.0/22
IPv6:
2400:6a80::/31
Signature Algorithm: sha256WithRSAEncryption
b9:69:3b:16:65:39:e7:66:d4:ea:9b:05:52:38:bf:4f:6f:9c:
01:0d:00:af:0f:12:56:29:bf:8e:27:9d:e3:7f:83:1b:f6:07:
0c:3c:bc:3a:ed:6f:aa:fa:f7:5a:9b:35:56:e0:08:64:20:4f:
13:2d:9f:e2:52:7c:52:f9:a2:d7:88:4e:16:ba:27:40:ed:3a:
71:cd:4f:5d:02:3c:a3:46:42:f1:c8:1e:43:3b:46:5f:bd:43:
eb:53:6e:27:f1:16:8a:0f:04:04:00:86:ba:46:3d:df:6e:46:
d1:ab:2f:af:3b:c2:26:9e:24:76:0c:a1:65:b2:58:02:ec:b4:
c4:08:08:1d:f5:37:ba:12:0e:ff:d9:a8:35:d3:3e:4b:5e:bb:
aa:0b:43:e1:cc:c0:f3:e6:88:ff:5a:5e:48:81:4a:33:c3:d6:
3f:17:d0:d2:5a:43:77:7e:37:08:9a:4a:bd:1c:e2:d3:e3:a4:
d8:4b:47:09:53:52:26:58:ab:66:d9:07:22:d4:00:d3:fd:80:
a8:f1:2a:23:42:92:c5:14:a5:3e:92:32:4f:1f:d6:0a:41:95:
7b:82:76:07:e9:f6:a3:8f:a2:8c:64:88:0e:96:3b:f8:da:15:
c0:7b:db:1e:73:92:e4:01:a2:3f:8d:53:ca:63:0c:d3:5f:c8:
fd:bf:24:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:15:39 2025 by rpki-client