Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-7q2kK3-EO9DS3GJVPFzh9Y4Rmg.cer
File: -7q2kK3-EO9DS3GJVPFzh9Y4Rmg.cer (raw, json)
Hash identifier: RSrJbMtxQJ3K3vBdwtuhceLKHTAFGuLRb7N6C4fuG9Y=
Subject key identifier: FB:BA:B6:90:AD:FE:10:EF:43:4B:71:89:54:F1:73:87:D6:38:46:68
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022C67
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91230B8/F1F890F0965911ED8CC78A60C4F9AE02/-7q2kK3-EO9DS3GJVPFzh9Y4Rmg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91230B8/F1F890F0965911ED8CC78A60C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 30 Jan 2025 12:52:47 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 150715
IP: 103.66.230.0/23
IP: 2001:df1:ce40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142439 (0x22c67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 30 12:52:47 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91230B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f7:a9:e1:5d:bd:48:be:9d:2e:06:de:66:60:
01:ee:99:66:3a:d2:80:43:ed:62:ec:ee:d7:41:29:
51:75:69:78:43:a3:18:01:dd:33:95:35:13:d4:9a:
8c:88:0a:7a:a3:d6:21:4b:a1:30:c1:ea:d6:35:76:
68:76:ce:10:25:18:b6:95:83:da:14:a0:93:ef:4b:
9b:3c:91:6d:29:5c:fb:51:21:2e:c7:83:8b:df:bb:
91:da:e2:e8:07:7c:d4:5a:71:f8:c0:21:fb:ad:51:
ba:10:7e:33:ba:37:68:7d:96:f2:7c:e9:a8:f5:6c:
62:68:46:1a:4d:42:0c:5c:91:0a:b8:b9:90:9f:26:
9e:ca:88:d4:30:2d:2a:e4:17:cf:53:42:66:19:cf:
2c:c4:c9:1b:23:d2:fe:5a:18:69:64:a1:54:3b:4d:
f3:d1:e5:1d:c9:51:91:12:36:00:5d:f8:43:e5:3f:
39:89:34:44:6c:62:47:53:fd:89:89:88:63:0f:1e:
c2:5b:72:f5:25:e1:35:7a:91:a6:4f:0a:78:68:93:
8a:20:9c:fb:4d:cd:96:10:87:e0:e4:06:80:fe:d3:
7b:7d:74:10:c4:49:2e:b6:3f:20:86:70:0a:c6:8d:
36:d8:21:44:9e:17:8b:cb:5a:18:cb:07:cf:b7:da:
42:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:BA:B6:90:AD:FE:10:EF:43:4B:71:89:54:F1:73:87:D6:38:46:68
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91230B8/F1F890F0965911ED8CC78A60C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91230B8/F1F890F0965911ED8CC78A60C4F9AE02/-7q2kK3-EO9DS3GJVPFzh9Y4Rmg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150715
sbgp-ipAddrBlock: critical
IPv4:
103.66.230.0/23
IPv6:
2001:df1:ce40::/48
Signature Algorithm: sha256WithRSAEncryption
31:50:a7:47:ce:81:12:c0:3e:53:e3:af:4c:36:a7:38:3d:fa:
9f:f2:40:82:b5:4b:db:e2:30:9a:d4:ac:25:5e:c2:23:a1:fd:
0e:4a:ea:86:3e:45:73:52:3e:64:04:7d:8a:b9:14:7c:39:26:
da:d9:f3:33:b7:da:63:92:71:2b:96:09:3f:b6:02:c6:e1:b0:
71:86:28:59:1f:56:ad:4b:57:18:5b:cb:d9:60:13:a4:96:f1:
3c:84:8f:ec:51:18:98:02:26:69:1e:32:24:bc:0c:e9:c4:61:
fb:f8:cf:9a:ee:62:e3:2f:a6:1d:c3:13:ee:6d:1c:f6:29:c6:
c5:c7:6c:f0:97:07:50:25:fd:57:40:69:03:ba:4f:f1:7b:c3:
e2:1c:27:b0:5b:8f:11:6d:ae:dc:d3:cc:5c:ca:53:02:fb:27:
5a:87:29:a5:64:db:a7:a1:d9:6e:e5:b1:19:47:42:32:50:69:
44:ae:7f:c1:d7:42:4d:cc:2d:09:c4:11:2d:e0:35:4c:3c:af:
e9:43:4a:c0:67:b5:36:6f:5a:82:58:a0:34:24:6b:41:df:5d:
c5:d4:94:9d:0d:e0:0a:aa:99:17:b7:61:9c:b1:72:08:06:d1:
30:66:e9:55:47:87:ba:f3:d2:f4:54:96:98:ec:78:b2:b8:0a:
95:a1:de:da
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:50 2025 by rpki-client