Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0uwHkLxOvTQHyVB05rVrQAA4Eto.cer
File: 0uwHkLxOvTQHyVB05rVrQAA4Eto.cer (raw, json)
Hash identifier: XWzsXvcqghbExvJ+NgLTYhipVzjBfkYOqOF9SJj+GIM=
Subject key identifier: D2:EC:07:90:BC:4E:BD:34:07:C9:50:74:E6:B5:6B:40:00:38:12:DA
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EB9C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D87CF/E685B12A4ED711EA88E6051FC4F9AE02/0uwHkLxOvTQHyVB05rVrQAA4Eto.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D87CF/E685B12A4ED711EA88E6051FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 15 Apr 2024 21:55:01 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 139310
IP: 103.137.130.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125852 (0x1eb9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Apr 15 21:55:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91D87CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:39:47:0c:28:54:0f:db:e3:d9:9c:d9:3a:3c:
b8:51:60:5c:5d:60:d4:3c:c3:8d:7e:46:88:64:cf:
b9:b0:39:11:34:11:09:89:1a:a0:32:a6:ac:da:94:
af:cb:f0:05:1f:bf:9e:a2:96:fe:f2:bf:c9:b4:ed:
31:de:f8:cf:b6:8d:da:e7:3a:9b:81:8f:96:9c:b4:
02:40:5a:a1:0b:53:27:1d:fb:ef:b3:ef:03:66:17:
cd:b4:fb:f2:b0:a9:b1:81:18:a1:85:61:5e:9a:75:
31:61:d0:3b:d1:f2:76:0f:c8:2a:d3:7c:59:37:7c:
ef:f9:42:d9:59:51:1e:81:fb:5e:57:0c:4d:55:db:
58:46:a6:1b:2e:f8:ad:e2:ce:d3:ba:33:70:69:92:
7a:31:53:a3:fe:a3:5f:89:15:66:a1:b8:1e:a4:55:
cf:fa:54:e8:33:38:c8:ea:bc:43:67:63:1a:db:bf:
e8:bd:a7:a8:8d:ec:f5:40:f6:fb:03:92:d1:e2:c2:
bc:5e:77:95:9f:2b:87:66:3e:1f:4b:b4:56:1b:97:
37:6f:af:d3:5b:7d:d7:3e:64:bd:b7:fb:38:61:42:
c8:29:03:17:ad:a1:cc:b3:ae:16:ed:eb:9f:08:8b:
a8:a8:00:96:7b:9b:30:c9:e4:77:58:e2:e8:92:50:
37:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:EC:07:90:BC:4E:BD:34:07:C9:50:74:E6:B5:6B:40:00:38:12:DA
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D87CF/E685B12A4ED711EA88E6051FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D87CF/E685B12A4ED711EA88E6051FC4F9AE02/0uwHkLxOvTQHyVB05rVrQAA4Eto.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139310
sbgp-ipAddrBlock: critical
IPv4:
103.137.130.0/23
Signature Algorithm: sha256WithRSAEncryption
0b:d6:5f:76:e2:75:09:1b:45:3e:30:24:85:fd:cf:4b:33:0f:
a9:6d:17:24:04:7a:4f:b4:0d:7f:25:7b:61:64:53:eb:90:d1:
b1:1f:d5:ff:33:7a:1b:af:a3:00:37:7a:d3:fd:59:f0:89:a7:
d9:5c:3a:25:d6:81:46:28:2f:57:4e:28:40:e7:59:84:bd:2c:
c4:72:bd:7f:b4:60:91:fa:5b:dc:b4:4a:58:7c:49:e7:2a:34:
36:7a:5a:56:62:c0:00:d5:76:d5:a4:f5:38:b2:51:01:5f:26:
31:7f:a4:e9:84:65:df:59:8c:47:68:59:de:43:f4:81:e5:8e:
ef:cc:c1:78:a1:95:b0:6c:0a:3a:fe:5e:d1:65:31:40:d2:1f:
75:f0:a9:f6:65:91:10:08:e3:b5:e4:13:18:be:2d:8e:ea:c9:
41:24:86:90:f2:11:6c:0b:12:05:af:98:10:b2:f9:a9:d4:fe:
58:49:84:e4:ac:5b:fe:2a:4b:bc:5d:8d:69:1e:48:3c:85:cb:
11:f6:ba:65:b3:b3:1f:d9:89:c8:f3:89:42:94:9f:06:c8:c6:
82:db:cd:3b:1b:68:6b:88:65:66:ee:58:0a:1d:72:8b:64:eb:
4e:d2:94:a1:01:a8:60:cf:af:d6:44:f7:2c:1a:fa:a4:41:b8:
22:d6:4a:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:21:29 2025 by rpki-client