Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1BPN69UikmPRj0A_RCF4UlVUbMQ.cer
File: 1BPN69UikmPRj0A_RCF4UlVUbMQ.cer (raw, json)
Hash identifier: zh9PyjRIPcv+rDt3VopuG8iGYFZBE7ZdpVbXhZLnwrw=
Subject key identifier: D4:13:CD:EB:D5:22:92:63:D1:8F:40:3F:44:21:78:52:55:54:6C:C4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021DBA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A4F53/5B2BC7DA81C111ECAB7C9A42C4F9AE02/1BPN69UikmPRj0A_RCF4UlVUbMQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A4F53/5B2BC7DA81C111ECAB7C9A42C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 26 Nov 2024 18:29:50 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 133099
IP: 103.173.36.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138682 (0x21dba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 26 18:29:50 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91A4F53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:06:cf:4e:71:6d:4b:be:d4:7b:39:af:82:fa:
a3:2f:78:5b:70:5b:b4:e9:95:a4:4b:54:8e:9b:d5:
25:1b:b8:11:ea:0a:7b:95:8d:19:af:ac:44:6a:e9:
ae:60:a7:fa:bd:a8:06:03:ae:8b:d3:63:ba:54:04:
8e:64:f8:a3:c7:b6:d2:9d:66:bb:63:61:b6:80:e9:
c2:25:a3:99:39:f4:6b:db:40:b3:a5:79:04:ea:ff:
2b:ce:a0:27:e5:83:f6:f8:66:7a:7f:70:ee:8f:a6:
92:f5:4f:bf:ee:fd:09:80:1e:63:a4:ca:3b:ce:8d:
f5:6c:57:ce:71:f9:15:81:a3:9b:2a:de:2b:a1:a4:
21:13:af:78:8b:39:da:1f:27:8a:9b:4a:a7:6d:59:
4d:ee:61:0f:73:58:6a:c3:79:7a:76:39:fb:f6:cf:
53:7b:b8:6e:56:eb:8c:1b:20:4e:32:45:84:7f:9a:
b1:00:e0:45:a1:a3:69:c3:cb:46:ac:1b:05:2f:14:
f6:32:54:bc:80:da:b7:9c:f1:0c:41:09:02:87:73:
60:f1:d2:11:40:54:ed:a7:f4:88:81:1c:49:bd:da:
7e:5c:44:28:6e:22:4f:8b:95:be:46:d2:35:05:30:
3f:29:ad:6c:dc:81:ee:61:7c:b9:6b:f9:2e:fb:bb:
5d:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:13:CD:EB:D5:22:92:63:D1:8F:40:3F:44:21:78:52:55:54:6C:C4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A4F53/5B2BC7DA81C111ECAB7C9A42C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A4F53/5B2BC7DA81C111ECAB7C9A42C4F9AE02/1BPN69UikmPRj0A_RCF4UlVUbMQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133099
sbgp-ipAddrBlock: critical
IPv4:
103.173.36.0/23
Signature Algorithm: sha256WithRSAEncryption
15:b3:a7:da:e6:71:b5:37:5b:66:ac:64:81:28:c3:64:93:8b:
0e:51:6e:e6:96:84:94:6a:6c:38:05:8f:33:8d:a5:7c:cf:8e:
f2:59:8d:73:68:6f:a3:84:a9:4f:6b:f0:b5:d5:0b:77:6f:74:
8c:2b:c8:13:20:a8:28:65:e9:b1:82:14:55:fb:fb:94:fd:8b:
c4:6b:ed:00:8c:38:c1:5b:26:01:fd:1f:26:42:83:1f:eb:9f:
97:fa:f8:7a:31:e4:fe:1f:e7:45:df:8f:df:31:25:48:90:de:
b5:85:0e:cf:e3:fe:ea:fc:f8:6b:e3:16:ba:4b:d3:72:a5:69:
ce:5f:e4:da:80:a3:04:9b:ed:26:71:40:73:92:80:df:14:a9:
31:79:5d:7e:34:2d:3f:50:8a:de:d4:8d:20:54:01:90:6b:c9:
2e:c8:b9:0b:c7:47:e2:ed:1f:02:65:ec:79:b8:e0:87:f8:68:
10:58:e1:d0:4a:0d:8f:6d:a3:b1:1b:f0:ee:69:f2:73:13:11:
9a:94:66:ae:3e:fb:c6:44:92:dc:fb:c0:ed:61:f3:5a:76:49:
a5:3b:c2:1b:ed:4d:89:f5:80:19:37:cc:e8:c3:06:26:98:c9:
47:e1:05:80:11:a9:20:80:98:de:0c:a0:f4:81:d7:bf:86:8c:
b9:41:c9:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:29:36 2025 by rpki-client