Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0xR9jSeprR3LgjR_FEsIVeBV4aA.cer
File: 0xR9jSeprR3LgjR_FEsIVeBV4aA.cer (raw, json)
Hash identifier: nUeSV5T8B4b++M66YcIpoQ+E86q1zOK2NdkT84LkU18=
Subject key identifier: D3:14:7D:8D:27:A9:AD:1D:CB:82:34:7F:14:4B:08:55:E0:55:E1:A0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020C27
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91402E0/AA6BF4402B5811EE9FD2F01EC4F9AE02/0xR9jSeprR3LgjR_FEsIVeBV4aA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91402E0/AA6BF4402B5811EE9FD2F01EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 05 Sep 2024 14:07:35 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 134093
IP: 103.97.220.0/22
IP: 2401:8ec0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134183 (0x20c27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Sep 5 14:07:35 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91402E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:45:89:9c:b5:cd:8e:5c:66:d1:ce:72:d3:5a:
75:57:48:16:5b:d5:b9:97:8a:3e:6d:0c:3d:86:56:
aa:1f:cf:69:b5:2b:9e:d8:0d:f9:d0:08:58:52:ee:
fe:12:c6:d0:4e:8d:b9:e7:7d:ca:e2:57:58:ea:a3:
54:31:f5:d6:30:a9:5b:fd:f2:e4:74:3c:8a:32:66:
ce:cc:64:f9:44:cc:43:ea:52:ae:a3:55:e9:54:5f:
49:26:7e:c7:29:93:7c:10:ce:09:33:f2:b3:78:ba:
17:78:b7:63:f3:9a:40:7a:57:ee:2f:e7:58:bb:da:
47:42:14:56:45:3f:e5:bf:55:db:93:00:38:76:e0:
42:46:b0:af:04:fc:b6:76:18:58:37:7c:be:e8:32:
1c:55:08:43:64:46:d7:44:6b:6b:6c:dd:ca:68:ab:
fe:3d:80:4f:d3:bf:e0:2f:f6:03:fe:5d:5c:31:c2:
e9:9c:e1:30:2d:48:63:7c:2b:1d:9f:c4:2a:62:53:
b0:66:a8:d6:5b:a3:1d:10:73:42:4c:29:20:f5:0d:
a2:eb:4b:5b:65:f3:7a:47:df:e9:6b:fd:ad:9c:66:
0e:be:82:47:92:db:81:78:28:d6:6c:01:f6:1c:f1:
40:f6:02:dd:28:b8:73:92:77:31:23:7f:37:ce:ef:
fd:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:14:7D:8D:27:A9:AD:1D:CB:82:34:7F:14:4B:08:55:E0:55:E1:A0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91402E0/AA6BF4402B5811EE9FD2F01EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91402E0/AA6BF4402B5811EE9FD2F01EC4F9AE02/0xR9jSeprR3LgjR_FEsIVeBV4aA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134093
sbgp-ipAddrBlock: critical
IPv4:
103.97.220.0/22
IPv6:
2401:8ec0::/32
Signature Algorithm: sha256WithRSAEncryption
5d:43:5c:cc:93:31:55:a6:91:2b:fa:b0:6c:3c:fe:c8:2f:8a:
01:3a:85:0c:40:2e:60:b3:df:e8:f8:a5:96:55:86:80:0c:5e:
8e:dd:cb:03:0a:9e:3c:d7:56:f8:ea:c8:ee:e4:59:91:be:f1:
95:05:30:12:68:06:13:ff:f6:61:63:1b:4a:3e:01:9e:b5:47:
de:fc:80:97:e1:b4:fd:f9:b8:6c:8f:2f:17:71:15:3c:c9:1b:
ac:42:2c:4f:6f:e2:67:38:bd:b0:ad:9e:71:78:cc:c0:e6:74:
1a:d3:67:f2:10:4e:a3:04:f1:a8:f4:bc:c2:ea:25:08:b4:45:
07:6c:d9:96:78:fa:62:e8:6d:61:d9:2d:c8:ae:06:b3:82:8e:
34:dc:55:53:3b:f2:75:61:55:bc:21:c5:f5:cc:71:f0:5b:02:
3f:4c:3d:a9:2e:0b:e5:49:59:24:2b:09:80:36:f5:4e:8d:fa:
44:c7:8a:2f:48:d2:c3:5f:92:2e:4d:20:77:ec:2f:73:aa:71:
02:bc:61:dc:22:53:5d:ea:e5:ce:d5:d7:6a:a5:7d:bc:6b:ed:
8b:a9:13:0c:66:8e:f5:5a:ce:1c:80:a3:04:50:89:76:cb:b4:
7f:9f:c9:bf:b5:4a:28:7b:d5:b9:55:47:06:a7:99:e7:0c:a3:
9b:08:6b:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:52:46 2025 by rpki-client