Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1m4Cgid2-1UUPQyeVJAyhlal4I0.cer
File: 1m4Cgid2-1UUPQyeVJAyhlal4I0.cer (raw, json)
Hash identifier: /zOKknJpXTyZbGzE9LeZ9Z8n77Cp2nh5Z4yYK812Gig=
Subject key identifier: D6:6E:02:82:27:76:FB:55:14:3D:0C:9E:54:90:32:86:56:A5:E0:8D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021AB3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/1m4Cgid2-1UUPQyeVJAyhlal4I0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 11 Nov 2024 12:52:31 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 139718
IP: 103.144.10.0/23
IP: 2001:df1:a880::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137907 (0x21ab3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 11 12:52:31 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A9123180
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:01:bf:0b:2c:9e:89:3e:b1:31:7e:af:6b:d8:
08:c5:54:93:98:14:b5:9c:28:1d:57:03:10:7a:3f:
fa:a1:af:6f:60:2d:f5:e7:08:43:f5:60:0d:0a:2a:
17:15:e4:45:56:d8:42:99:71:fb:e6:f9:ef:ab:cd:
f9:b7:d2:e6:20:95:61:92:64:9e:5e:52:68:b2:3d:
ef:e1:5b:94:11:51:17:3d:f0:27:fe:31:e9:2b:81:
1a:a9:1b:d2:fd:c6:9d:46:45:e3:a2:8a:b5:f8:31:
72:e7:b5:a9:d7:24:07:f5:7b:8a:d3:f9:22:ee:07:
a7:11:c2:6e:51:46:40:13:d3:d1:3d:ac:6f:94:bc:
3a:66:71:0c:40:4c:3d:84:fa:1c:b2:e3:0c:4b:da:
67:e5:9b:ac:53:98:db:c2:9d:8a:b7:24:da:b1:98:
69:ac:3e:9a:b2:f3:22:fc:9b:90:af:47:2f:6a:b1:
d7:1d:d9:22:72:ae:86:02:d7:b0:70:ad:c7:12:66:
eb:ab:0e:5d:b9:dc:e3:9d:44:b2:f8:d0:de:26:c0:
12:67:66:b2:a2:8c:57:56:e7:07:f0:29:ba:ee:b1:
08:1f:20:ed:9d:1e:41:91:30:93:bb:10:85:c2:ce:
50:3f:4f:77:6f:a5:be:24:7e:54:02:a7:46:c1:3a:
65:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:6E:02:82:27:76:FB:55:14:3D:0C:9E:54:90:32:86:56:A5:E0:8D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/1m4Cgid2-1UUPQyeVJAyhlal4I0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139718
sbgp-ipAddrBlock: critical
IPv4:
103.144.10.0/23
IPv6:
2001:df1:a880::/48
Signature Algorithm: sha256WithRSAEncryption
2a:0a:9a:8e:93:63:9a:62:51:6a:b6:a2:d7:37:2c:25:96:48:
f9:fb:ff:4e:52:6f:e2:fd:4d:42:c7:01:16:a9:10:98:1a:11:
75:e0:6f:15:6e:cc:2b:94:b8:8d:bb:65:ee:4e:4a:5c:79:1f:
af:22:22:71:1e:16:05:e5:e1:6e:86:e4:6f:ac:30:f7:72:40:
e2:8c:ce:6c:bd:90:5b:a6:64:66:04:ab:0d:33:bc:c8:e5:74:
7a:a4:93:f6:9a:ed:d7:13:79:88:7f:94:d7:68:88:d6:54:a4:
a7:29:11:20:bf:70:d4:31:53:b2:45:c5:3f:56:d9:87:30:81:
3f:cd:f1:fb:b9:fd:9c:3c:5f:85:99:74:03:e0:2e:28:80:5c:
40:b8:f6:c0:df:1f:fe:23:5c:5e:1c:4d:f5:f5:eb:78:6a:06:
23:4d:91:0a:f3:e4:30:82:08:cc:97:c0:31:77:ad:1c:59:a4:
b9:31:db:33:6c:f2:a1:f0:6e:8e:05:6c:bf:b4:e6:80:13:33:
7f:5a:c1:ec:9f:df:f9:e2:b2:71:71:b6:69:0b:06:35:23:4c:
ac:93:2b:67:58:f8:af:f3:90:04:03:c2:fb:f7:bf:cc:24:0c:
6b:dd:86:de:c4:44:d4:ba:7d:33:fa:a0:6a:9b:b1:d2:95:82:
3c:74:16:83
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:25:29 2025 by rpki-client