Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1VYE4c2wlbGsCtQxe2VXBiMEsdA.cer
File: 1VYE4c2wlbGsCtQxe2VXBiMEsdA.cer (raw, json)
Hash identifier: j0x6WpZ+/KSOBlnnjkuGOnh6RreMbhU6j/XdvmB+MqA=
Subject key identifier: D5:56:04:E1:CD:B0:95:B1:AC:0A:D4:31:7B:65:57:06:23:04:B1:D0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0202A3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912879A/0C5364261D9211E28166B5F408B02CD2/1VYE4c2wlbGsCtQxe2VXBiMEsdA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912879A/0C5364261D9211E28166B5F408B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 27 Jul 2024 13:00:45 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 38310
IP: 122.200.16.0/21
IP: 2404:7300::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131747 (0x202a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jul 27 13:00:45 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A912879A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ed:76:95:0f:d0:a2:30:d3:f7:c9:1b:12:f0:
36:42:33:29:fe:89:21:48:dd:a0:cf:90:a2:17:80:
51:a3:5c:4b:5a:21:30:be:9b:da:56:11:04:00:4e:
6e:8d:0c:0b:5a:13:6e:b0:6c:58:fd:d1:7b:86:f3:
d8:d2:d1:ea:79:c0:36:25:4a:ab:ae:ba:7e:97:d0:
3a:03:e7:d4:61:19:d3:9e:1a:af:6d:82:45:25:5c:
7a:ca:41:7b:17:1e:01:d6:77:0e:01:e0:d8:b8:fd:
30:8b:94:19:d5:55:62:f3:9f:17:25:1c:77:b2:e2:
24:12:a8:5b:f5:29:e6:4d:78:9d:0b:2c:b2:91:41:
24:9a:1f:fb:6c:0d:00:3c:94:0f:ee:2e:28:dc:d5:
5f:dd:99:92:19:c2:22:ff:58:45:ce:e0:1f:de:d0:
ed:67:be:f7:4a:92:c2:de:ef:a9:59:f5:ca:4c:2d:
c9:e6:9d:13:1b:99:0c:87:04:13:ce:3e:2f:bc:33:
fb:3c:ad:e0:84:6a:2b:e3:79:1f:ec:8e:e8:df:36:
9a:53:f6:46:81:c6:66:71:1d:e8:76:2b:70:2c:37:
3e:54:d9:00:fe:bc:6c:63:4f:1c:4c:da:07:5d:25:
c7:6d:69:bb:09:d6:57:0f:4b:d0:f2:b7:74:7b:48:
5c:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:56:04:E1:CD:B0:95:B1:AC:0A:D4:31:7B:65:57:06:23:04:B1:D0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912879A/0C5364261D9211E28166B5F408B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912879A/0C5364261D9211E28166B5F408B02CD2/1VYE4c2wlbGsCtQxe2VXBiMEsdA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38310
sbgp-ipAddrBlock: critical
IPv4:
122.200.16.0/21
IPv6:
2404:7300::/32
Signature Algorithm: sha256WithRSAEncryption
32:5b:99:63:16:7c:3f:fb:86:88:2d:02:7f:b4:c4:f2:ea:5c:
88:58:57:aa:da:b0:ed:49:d8:f7:9c:47:31:72:99:fd:86:8b:
9b:9b:2e:5d:73:f1:dc:5a:5a:b8:bb:49:8e:d3:af:04:81:04:
a7:2f:d0:56:67:4b:ba:ae:5c:0c:c7:79:5e:5d:e1:dd:c6:7a:
cc:6c:12:d8:c9:78:34:0a:9b:db:eb:4b:bd:6a:ee:1a:19:c5:
4e:2b:75:4d:b2:0c:14:06:d2:55:44:25:60:f4:a7:06:fc:04:
33:90:f1:c0:08:d6:88:67:47:5b:dc:cd:6c:26:a7:49:de:ff:
34:80:5f:cb:e0:79:f8:33:a6:be:ed:d1:e9:57:8b:e8:ae:47:
a7:f3:81:91:50:34:1f:89:24:e4:dd:93:b3:05:fd:07:27:42:
31:1d:5a:a8:d8:39:91:ca:ce:4f:7f:3c:ad:af:6c:4b:90:a9:
ee:2a:c6:9a:59:b5:ec:d4:e7:7d:30:42:a6:0f:21:ae:43:64:
7b:54:c5:e5:6a:56:cf:e8:87:85:17:4b:d4:c7:0d:02:d8:7e:
f6:62:06:19:72:6b:49:75:2a:55:a2:15:0e:2a:cb:54:de:9f:
d9:d8:3a:97:74:c1:8f:d3:5d:f7:3a:b6:c8:03:4d:64:ad:e4:
54:99:8b:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:58:25 2025 by rpki-client