Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.cer
File: xpOZsTLhrmsuoxFuFLEAHAgZ3ak.cer (raw, json)
Hash identifier: k0K6oWDkXfu189vntXfh42uB6x2Zdnts6reaRQpDxME=
Subject key identifier: C6:93:99:B1:32:E1:AE:6B:2E:A3:11:6E:14:B1:00:1C:08:19:DD:A9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02207F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 04 Dec 2024 14:52:36 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 134791
IP: 103.12.159.0/24
IP: 103.134.53.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 12 Apr 2025 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139391 (0x2207f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 4 14:52:36 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A914D05C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c0:55:5d:40:51:ef:45:f1:d2:39:00:41:79:
4f:6b:40:80:4a:07:b3:e1:9e:d4:38:22:e8:87:ac:
9f:d8:7d:2d:ba:d9:66:3c:49:14:db:d4:76:ed:c9:
23:41:12:d2:47:18:9a:d8:83:ac:b5:0e:cc:97:3c:
f7:5a:cf:af:53:6f:89:77:90:0f:a4:7a:d3:48:74:
9f:51:d8:50:6d:5e:dd:78:23:04:ac:0f:4a:2f:9f:
d5:b1:8b:28:a9:41:de:2f:bd:35:82:9c:57:e6:c9:
d8:ad:94:61:5b:b6:27:b9:71:0b:7c:3f:f1:b7:92:
5a:f7:45:01:63:b8:47:69:b9:e8:80:1f:d1:30:08:
ae:88:80:48:27:28:41:39:b1:d5:98:93:ee:9c:8f:
8a:21:1e:c7:5a:54:46:2a:95:6d:94:86:78:bf:47:
a0:e2:29:47:91:28:e5:16:82:d0:9b:2c:48:17:94:
21:17:3f:2a:5b:16:68:ab:bf:3e:ac:27:da:1f:5f:
bb:61:ed:ca:ea:cf:6b:bc:c3:81:1d:ec:3d:39:28:
0e:d4:13:38:3a:b1:c5:61:a3:1e:d9:9e:a1:62:05:
bc:8b:c4:9c:3c:2f:e3:4d:12:30:50:c9:0d:6b:28:
67:99:8d:6e:79:cf:52:d1:cf:94:ba:0a:b9:ab:80:
f1:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:93:99:B1:32:E1:AE:6B:2E:A3:11:6E:14:B1:00:1C:08:19:DD:A9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914D05C/DECE0F0A7BD511EBB9123D52C4F9AE02/xpOZsTLhrmsuoxFuFLEAHAgZ3ak.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134791
sbgp-ipAddrBlock: critical
IPv4:
103.12.159.0/24
103.134.53.0/24
Signature Algorithm: sha256WithRSAEncryption
65:bd:8d:f3:26:01:1c:7a:67:52:fa:de:3b:1c:d7:c2:cf:7d:
1b:dd:01:38:9a:42:13:a0:ea:cf:ef:88:8f:9d:7d:db:e3:7b:
a6:30:af:73:e6:01:98:54:e2:74:d9:d0:4a:70:86:03:35:5d:
47:bc:96:ed:9f:80:85:26:40:86:21:16:fa:56:a1:60:e9:40:
dd:e9:92:7b:12:f2:34:56:69:fc:1e:bf:9f:f9:b4:92:2d:05:
d0:85:6a:7c:a6:da:56:7a:ae:f3:23:3d:b9:9d:c0:c9:ee:5a:
03:66:82:a2:15:e9:f9:24:46:84:02:cb:40:90:13:f0:86:57:
40:01:07:3f:0d:10:77:ca:27:8b:cd:89:88:e0:05:77:e1:df:
0d:7b:20:37:c9:79:f2:55:40:a8:25:bb:6c:60:11:21:9a:5c:
6b:a2:9c:00:a6:64:c5:76:dd:16:9d:93:fc:1d:46:fc:53:ac:
1c:40:4e:71:a6:07:55:0a:e0:04:62:9b:d0:75:a7:54:5b:56:
11:b6:01:19:53:1f:27:bb:5a:52:4c:e1:52:42:e0:24:7b:17:
95:5f:e7:00:8f:9c:fc:fd:6b:d7:a7:4f:61:c0:20:44:40:60:
cd:1d:fc:c1:61:5e:8e:41:dd:f9:05:37:8b:c5:85:d6:4b:03:
82:8e:d6:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:50:13 2025 by rpki-client