Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3EdNayXV4aHNHSkADMwU6vkzQdI.cer
File: 3EdNayXV4aHNHSkADMwU6vkzQdI.cer (raw, json)
Hash identifier: R0s/lmt/psm7biLqz4fH0sHg6TQd6/dI7jk+/TsKoa0=
Subject key identifier: DC:47:4D:6B:25:D5:E1:A1:CD:1D:29:00:0C:CC:14:EA:F9:33:41:D2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020A0D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917C373/CFCAC6106FF511E69F2B1023C4F9AE02/3EdNayXV4aHNHSkADMwU6vkzQdI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917C373/CFCAC6106FF511E69F2B1023C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 30 Aug 2024 16:25:26 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 10112
IP: 103.70.136.0/23
IP: 2001:df3:b200::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133645 (0x20a0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Aug 30 16:25:26 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A917C373
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:8b:ae:df:e7:43:8d:56:b8:ac:50:f3:bb:54:
12:88:4f:3e:0b:64:19:a3:fd:04:61:ba:ef:f9:60:
c9:57:ec:77:88:77:2b:ff:35:e6:03:f5:88:1e:26:
7d:2c:94:9e:f2:4b:52:16:53:2d:b5:14:79:d1:7f:
f6:2f:6a:e1:2e:c6:bd:09:7b:c4:59:79:67:58:99:
3a:c2:1e:57:68:38:11:3b:c5:0c:93:78:98:3a:7f:
a7:53:7d:16:50:58:5e:96:97:78:9b:d7:c2:a8:88:
c7:8f:fc:df:a1:af:bf:4b:63:f4:55:57:64:9a:8b:
f8:64:f5:3e:41:5f:fa:9c:15:98:41:35:e4:08:28:
d1:07:6f:79:e2:6a:ec:30:c3:37:23:84:9a:d0:4e:
87:3f:bf:e5:72:2b:50:12:64:5a:51:cf:76:a5:e9:
0d:ac:c1:82:6c:13:52:3d:af:9e:99:12:f9:cd:35:
d0:6e:c6:32:2f:0e:d0:4b:a8:43:e3:a2:3d:84:ac:
89:61:2d:af:18:03:57:cc:6d:9b:eb:62:c3:b8:fa:
79:31:b4:2f:19:ae:17:5f:4d:8c:c8:08:3b:a6:02:
ba:92:25:23:22:3e:ac:ce:78:31:74:84:64:39:8c:
69:93:84:65:b8:18:6b:c1:a4:d7:af:6b:d0:42:ed:
39:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:47:4D:6B:25:D5:E1:A1:CD:1D:29:00:0C:CC:14:EA:F9:33:41:D2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917C373/CFCAC6106FF511E69F2B1023C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917C373/CFCAC6106FF511E69F2B1023C4F9AE02/3EdNayXV4aHNHSkADMwU6vkzQdI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
10112
sbgp-ipAddrBlock: critical
IPv4:
103.70.136.0/23
IPv6:
2001:df3:b200::/48
Signature Algorithm: sha256WithRSAEncryption
1c:d4:e0:41:5c:99:06:8f:3e:c0:e8:72:8e:f8:6e:25:3e:be:
16:2f:40:85:f0:df:07:8d:c7:ea:0b:fe:45:cb:85:68:f2:85:
4c:be:38:cf:41:ea:b4:90:9f:16:71:18:88:d4:57:c4:00:e7:
5c:2f:37:05:4b:0b:3d:37:8f:04:04:9e:19:37:c9:d2:58:b8:
b9:42:85:f1:91:f4:e0:da:d5:97:44:2c:ab:7a:6d:2c:64:c9:
11:17:a8:00:2b:f1:09:8f:1e:09:6f:5b:aa:b4:8a:2a:59:5f:
19:0a:9c:78:c7:5b:61:e9:db:14:6f:2a:2d:0d:87:28:23:49:
de:44:3a:7d:dc:66:ef:42:ec:d8:d6:58:ea:89:80:29:0c:a5:
bd:1d:2c:ce:d5:32:b6:33:1b:e1:60:71:d4:4d:27:d1:1d:3e:
8a:b3:0c:ab:ca:b0:de:9d:39:fd:8c:8e:13:97:57:fc:05:d5:
d6:93:c1:06:5e:cb:41:ae:51:09:36:6e:49:a5:98:24:ba:d3:
9d:fb:75:30:da:b3:27:dc:b2:2f:c2:59:87:1c:33:51:98:7d:
0c:a3:e7:04:0a:df:86:17:7d:53:a0:18:6e:e8:be:78:0a:b5:
41:4d:21:5f:53:77:8a:52:5d:82:99:5e:9b:be:67:c0:41:29:
0c:c9:85:d8
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:22:17 2025 by rpki-client