Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y51BptqW92pP8FhrXoqIn8AjVFc.cer
File: y51BptqW92pP8FhrXoqIn8AjVFc.cer (raw, json)
Hash identifier: WxD/IwnKkfSYP2yMBE3X9xotB1K2jaqWrNTnRpTLAvg=
Subject key identifier: CB:9D:41:A6:DA:96:F7:6A:4F:F0:58:6B:5E:8A:88:9F:C0:23:54:57
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02160D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C7A69/8AF3D5B2C60311EC8B0D5D3DC4F9AE02/y51BptqW92pP8FhrXoqIn8AjVFc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C7A69/8AF3D5B2C60311EC8B0D5D3DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 24 Oct 2024 22:12:32 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 133753
IP: 43.249.76.0/22
IP: 103.40.152.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 10 Apr 2025 23:51:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136717 (0x2160d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Oct 24 22:12:32 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91C7A69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:6e:45:45:dc:b6:da:f1:db:8e:10:6c:36:1f:
99:34:bb:eb:59:b7:79:90:7e:2c:5b:5b:2f:c0:de:
8c:be:8e:45:33:68:49:63:e0:29:77:13:a4:dd:36:
56:06:44:92:e9:1f:08:12:8a:9e:00:73:15:92:d6:
66:9d:22:18:b6:d4:f5:f4:70:f0:6a:60:e4:a4:a7:
92:8b:84:1a:4b:0d:b2:1c:dc:51:8d:11:fb:4d:0a:
c8:7f:37:e0:e0:8d:5c:a7:c9:e5:c1:2d:1f:d7:0c:
99:5f:11:d6:82:15:84:76:57:fa:77:7f:ef:0b:3f:
17:be:e3:44:5e:92:fb:dc:31:02:d0:08:e3:0d:fb:
26:e8:e6:b8:7b:3b:2a:a8:54:9d:24:b9:12:1f:3a:
bf:c8:50:8a:5d:ee:d0:e5:ed:58:71:32:ce:84:f1:
17:de:a9:a7:90:f7:ef:f0:98:86:70:e2:ea:4c:8c:
f1:81:bf:89:f6:ae:4f:5c:33:dd:8e:2d:d7:99:01:
15:87:a3:54:f6:d8:93:b2:32:48:57:0e:c9:61:52:
99:e9:17:b3:e4:64:06:d7:a8:d7:6b:8b:ab:d0:f2:
ab:bd:99:89:f1:34:a3:7d:48:01:9d:3f:0c:a9:35:
de:d2:f7:17:50:d1:ec:ad:5d:d9:8a:b5:30:97:74:
17:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:9D:41:A6:DA:96:F7:6A:4F:F0:58:6B:5E:8A:88:9F:C0:23:54:57
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C7A69/8AF3D5B2C60311EC8B0D5D3DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C7A69/8AF3D5B2C60311EC8B0D5D3DC4F9AE02/y51BptqW92pP8FhrXoqIn8AjVFc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133753
sbgp-ipAddrBlock: critical
IPv4:
43.249.76.0/22
103.40.152.0/22
Signature Algorithm: sha256WithRSAEncryption
88:39:15:3d:d5:29:d0:b5:85:8c:95:ac:ae:3c:d7:05:09:6e:
c5:cd:ab:cb:88:a6:40:15:da:06:36:76:e0:26:70:06:1d:d8:
5a:ce:a0:88:15:25:26:1d:4b:d3:54:03:3e:cc:34:0c:2f:64:
f4:52:39:6d:47:9a:18:4a:ef:4b:15:b7:32:08:9d:a0:68:e5:
a1:d6:51:f0:24:4b:37:66:fd:76:3d:bb:14:3c:72:0d:46:f3:
51:6b:c4:02:52:7f:25:5b:9e:f1:c6:23:53:d2:17:33:a1:79:
69:6e:e7:3c:9a:e8:3a:c8:df:61:28:d4:28:43:1b:15:20:36:
3d:c9:07:41:1e:11:87:ae:5d:93:1a:83:73:70:41:f1:51:0a:
c4:10:ed:ac:a9:4e:d9:d4:a8:04:3b:d0:b4:da:a3:50:c2:f8:
a3:f3:86:63:8d:fe:7d:7a:1d:5e:cc:01:2a:4a:00:88:84:39:
44:41:df:b3:61:e8:a8:92:9e:a7:e3:3d:04:93:a4:55:99:99:
0f:f1:6a:e2:2e:a1:39:af:63:d2:29:d5:1f:d6:87:53:c5:81:
27:97:1f:8c:37:90:8b:9c:b1:9e:c7:a0:ae:df:f1:fe:7b:ba:
31:2a:c2:fc:32:46:8b:9c:ee:d5:5e:91:11:00:3b:02:c9:26:
75:8a:10:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 01:55:43 2025 by rpki-client