Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Q0Rg3MIqx8Vp181FkP7f8AUhUw.cer
File: 1Q0Rg3MIqx8Vp181FkP7f8AUhUw.cer (raw, json)
Hash identifier: 8cLRJaLaQckSr5UBKMEDwqRd/M4nRFvM85e3FhCNlFk=
Subject key identifier: D5:0D:11:83:73:08:AB:1F:15:A7:5F:35:16:43:FB:7F:C0:14:85:4C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021EB2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DB916/74EC397E7D3D11EE9AF7391AC4F9AE02/1Q0Rg3MIqx8Vp181FkP7f8AUhUw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DB916/74EC397E7D3D11EE9AF7391AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 29 Nov 2024 20:42:10 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 152103
IP: 180.131.134.0/23
IP: 2001:df3:1e40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138930 (0x21eb2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 29 20:42:10 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91DB916
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:0b:dd:25:db:52:0c:97:11:be:5f:05:c0:da:
77:54:99:3f:00:11:f9:7e:60:81:38:0a:19:75:b6:
52:95:fd:bc:40:1f:16:98:ec:3f:23:bf:f0:b4:9a:
c0:bd:85:f0:89:19:00:3e:ef:12:5b:07:2e:28:1b:
48:af:5d:a5:2d:29:22:a8:c4:91:1b:80:80:65:ed:
57:2a:c9:64:e0:a3:ed:7c:6c:d3:8d:ab:2b:1e:95:
54:ed:00:d2:59:9d:de:15:dd:09:4f:81:f5:37:9d:
7c:1c:6e:63:74:25:33:38:67:5f:0e:1f:9d:a5:2e:
ce:42:ae:df:b5:1b:fa:2f:f1:87:29:6f:e8:92:bc:
df:2b:ff:9e:87:f3:92:b2:52:76:b9:d3:17:c4:eb:
03:f7:c4:5f:ed:bc:80:4e:df:16:67:cd:48:8b:a3:
8e:7d:95:75:34:33:9e:5c:75:91:8f:35:5f:32:93:
16:30:e1:20:95:57:a8:bc:d3:60:78:7b:43:4d:f0:
3d:37:0d:31:c2:62:c6:bf:3e:0a:6e:fb:7b:8d:4d:
47:2d:c0:2d:ed:1a:04:55:a8:83:7d:82:80:32:04:
65:69:7a:2d:3c:62:23:e2:46:99:87:49:c8:48:67:
f8:84:a7:4d:11:33:5d:66:b1:4a:75:d9:ce:61:d7:
b9:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:0D:11:83:73:08:AB:1F:15:A7:5F:35:16:43:FB:7F:C0:14:85:4C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DB916/74EC397E7D3D11EE9AF7391AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DB916/74EC397E7D3D11EE9AF7391AC4F9AE02/1Q0Rg3MIqx8Vp181FkP7f8AUhUw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152103
sbgp-ipAddrBlock: critical
IPv4:
180.131.134.0/23
IPv6:
2001:df3:1e40::/48
Signature Algorithm: sha256WithRSAEncryption
20:35:a9:1b:5f:bc:7c:c6:26:5b:4d:b5:39:dc:0a:38:0e:ca:
38:b4:1f:e7:44:26:0c:4b:be:f7:3d:9c:1c:b8:2b:6c:b8:b9:
2d:8c:4f:90:36:1b:21:1f:a2:62:bf:53:b3:7d:58:bd:e3:44:
3c:1c:03:d2:ba:2f:67:ff:75:22:2b:35:29:8f:77:2f:07:ff:
88:0a:5b:d6:11:99:92:0f:a9:be:a8:a2:6a:e1:cd:53:bd:6e:
cc:43:46:62:ea:a7:2b:c8:e6:d0:8a:e3:2d:51:fb:fd:53:7d:
41:59:3e:5d:53:10:c8:4f:29:f0:5c:05:ad:dd:86:f4:4f:1f:
2f:d2:75:ff:ea:c4:9c:98:f7:97:5c:d4:fb:cb:f6:41:2e:9f:
4e:f1:4f:8a:58:31:29:08:a0:25:9c:23:80:29:1a:18:b1:14:
b3:e0:12:ff:25:fb:1a:61:6a:da:63:5f:70:fa:7e:ab:98:d0:
4e:a5:24:a9:87:9b:31:c4:ee:fb:74:d2:32:38:56:93:a1:35:
0b:06:35:41:f4:b5:39:fe:dc:b7:75:cc:3a:5d:f0:e8:1c:2f:
ba:8b:87:6f:af:30:18:28:b5:6e:92:3d:00:72:79:c1:be:eb:
f3:7a:9c:41:90:83:78:9f:8c:97:a9:66:52:6b:ac:a7:9d:6b:
d9:39:0c:3d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:01:38 2025 by rpki-client