Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-5w6kNDNa5K-MWAyXafCbH9OWQA.cer
File: -5w6kNDNa5K-MWAyXafCbH9OWQA.cer (raw, json)
Hash identifier: +KeZCiY42Ugxsmu0noxeD8Bso0658OuSGeC7CZ9ChDs=
Subject key identifier: FB:9C:3A:90:D0:CD:6B:92:BE:31:60:32:5D:A7:C2:6C:7F:4E:59:00
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021548
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DE1A3/8B9DBBCE689F11EDAD177667C4F9AE02/-5w6kNDNa5K-MWAyXafCbH9OWQA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DE1A3/8B9DBBCE689F11EDAD177667C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 22 Oct 2024 19:17:04 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 150330
IP: 103.6.250.0/23
IP: 2400:aba0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136520 (0x21548)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Oct 22 19:17:04 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91DE1A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ca:38:0a:f5:d3:dc:8a:1f:a4:a4:fd:b8:d3:
e8:2f:8d:24:fb:30:56:fc:42:5c:bf:b0:23:79:ed:
16:53:00:8c:d3:88:fc:5f:39:dd:05:28:d5:09:b0:
c8:63:2f:f3:b0:f3:cf:f1:53:5a:00:ec:5f:df:45:
01:5f:5c:dd:d2:67:fc:44:8c:48:17:3e:96:57:10:
59:65:f7:79:9d:9f:58:cc:29:eb:04:a9:50:2c:66:
67:54:fd:06:83:df:81:28:70:e7:28:27:85:c0:d5:
d8:46:72:f4:b7:4f:0c:af:6b:f9:14:df:29:b4:e7:
8f:63:05:a6:44:0e:52:63:f9:97:10:76:09:74:92:
dd:b2:dc:c1:52:74:53:46:cc:21:19:d6:61:c7:ee:
b0:b6:0f:c2:aa:4f:34:16:b1:7b:26:16:aa:1f:e0:
1d:98:49:21:e7:46:5e:c4:cb:b2:83:62:02:45:34:
1d:e0:44:e6:a4:87:a7:63:1a:8f:bb:61:99:6b:75:
a9:13:d1:a0:f7:25:6b:02:03:4f:cf:83:76:02:06:
27:d0:94:19:6e:9e:64:da:4f:5c:84:1a:e1:b1:a3:
75:7d:c0:09:41:09:2e:46:d7:46:be:48:a0:81:2d:
a8:8d:21:33:65:12:5b:81:19:18:e0:82:10:d9:d7:
d1:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:9C:3A:90:D0:CD:6B:92:BE:31:60:32:5D:A7:C2:6C:7F:4E:59:00
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DE1A3/8B9DBBCE689F11EDAD177667C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DE1A3/8B9DBBCE689F11EDAD177667C4F9AE02/-5w6kNDNa5K-MWAyXafCbH9OWQA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150330
sbgp-ipAddrBlock: critical
IPv4:
103.6.250.0/23
IPv6:
2400:aba0::/32
Signature Algorithm: sha256WithRSAEncryption
d2:b5:46:44:90:d3:59:a3:d0:f3:ed:94:a0:9c:04:c1:5b:05:
2c:9e:90:0c:6a:5a:b9:d8:42:14:08:c1:23:c4:40:0c:1b:97:
74:60:f4:89:66:7e:20:6e:94:f1:82:b0:4e:fb:74:1d:f1:0d:
5a:c0:59:8e:79:63:ab:2d:71:65:15:c7:f3:7a:c1:90:72:35:
38:42:37:f4:37:fa:a4:fe:2f:95:f8:ea:ce:25:5d:6a:73:50:
14:92:0b:39:90:6e:aa:f1:24:31:7e:b5:c9:5b:ec:7e:2b:86:
45:5c:af:4b:ef:1c:b7:77:68:63:83:c3:71:14:f6:9b:7c:02:
98:16:f0:6e:f2:06:39:31:4c:ce:e7:ca:4a:d0:76:85:bb:4b:
62:52:09:c9:0b:2d:22:06:42:80:f1:9f:7f:30:6f:48:52:ec:
37:93:d5:fa:16:28:ce:36:34:de:2d:b9:a9:32:18:17:e5:ad:
00:b1:e9:3d:6d:8f:64:9a:86:67:e9:47:65:db:41:80:51:7a:
6d:a6:d5:4c:ad:b4:1f:d8:c0:f5:ea:57:3d:60:2d:bc:53:7e:
6f:a4:8a:b5:bf:eb:f4:b4:f1:9c:65:fe:86:2f:11:9b:4e:9e:
88:63:8e:9a:cd:09:6d:e6:10:6c:79:a4:72:b2:da:de:04:96:
b5:8e:79:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:16:27 2025 by rpki-client