Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3eukbMeoktKn_2q2Q3fH7P_Yrbs.cer
File: 3eukbMeoktKn_2q2Q3fH7P_Yrbs.cer (raw, json)
Hash identifier: Lj99m5SeUv/glabsKhX0PX32ob3wEHEQnDwytjJbxx0=
Subject key identifier: DD:EB:A4:6C:C7:A8:92:D2:A7:FF:6A:B6:43:77:C7:EC:FF:D8:AD:BB
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020FA4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91116D1/15AE4B28090111EABD104C83C4F9AE02/3eukbMeoktKn_2q2Q3fH7P_Yrbs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91116D1/15AE4B28090111EABD104C83C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 26 Sep 2024 12:22:06 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 63826
IP: 103.40.82.0/23
IP: 2001:df1:f880::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135076 (0x20fa4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Sep 26 12:22:06 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91116D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d9:9e:b8:1f:e9:ac:3c:ad:71:21:40:0e:aa:
3c:63:15:3b:4f:38:cb:d2:7e:57:e4:ba:dd:41:65:
71:3d:5f:60:53:4d:1b:0a:75:5f:d7:fd:90:61:81:
ed:4f:f4:57:ce:30:17:34:33:14:e2:5b:1a:f9:2b:
60:0b:10:de:68:8c:81:cf:62:53:cc:ee:01:76:a4:
38:75:ee:85:1f:38:4a:49:3a:3a:a8:3b:3d:84:89:
41:19:5e:dc:0e:8b:79:fa:90:1f:42:d9:65:bf:bc:
d5:29:fd:71:0f:cb:1a:a3:86:e8:de:24:87:9b:b7:
0a:d4:71:07:0a:bf:e0:8c:22:bd:f0:7a:79:85:c4:
9e:a3:18:a0:23:d4:9c:af:ba:e1:ec:90:33:fe:7c:
64:4a:3d:e0:11:2b:63:f2:79:2e:ee:15:b4:e1:3c:
01:d9:7b:fc:9f:1e:af:7c:af:35:bf:cc:e4:30:e2:
82:0b:95:58:70:57:17:92:f0:fc:43:ad:11:b2:4a:
bf:24:51:d4:7f:49:2c:64:40:0d:31:bf:fc:e8:6c:
5c:31:31:51:fa:ad:16:ef:38:3b:71:18:9d:f0:54:
99:54:aa:f1:80:e4:27:8f:59:1b:3b:2b:8d:71:02:
82:f6:68:d8:38:7b:82:a6:70:3c:e9:0d:48:85:0b:
2c:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:EB:A4:6C:C7:A8:92:D2:A7:FF:6A:B6:43:77:C7:EC:FF:D8:AD:BB
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91116D1/15AE4B28090111EABD104C83C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91116D1/15AE4B28090111EABD104C83C4F9AE02/3eukbMeoktKn_2q2Q3fH7P_Yrbs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
63826
sbgp-ipAddrBlock: critical
IPv4:
103.40.82.0/23
IPv6:
2001:df1:f880::/48
Signature Algorithm: sha256WithRSAEncryption
cd:9e:c5:21:c1:e4:6f:d8:68:2b:38:21:6f:6f:23:dd:da:7b:
5c:2a:94:f8:8e:7e:02:0c:79:24:8b:7d:57:2f:03:85:5f:95:
ad:c6:48:d6:09:c5:1a:82:3a:d1:6f:0d:3d:c7:ad:66:40:c5:
d2:57:b0:8a:42:73:8f:bf:88:63:01:f4:75:5f:50:d4:39:cd:
60:9f:57:4c:9a:d4:97:ec:25:4c:fe:02:fe:81:88:b0:86:e0:
7d:55:65:36:c8:f5:ad:84:7e:46:58:14:df:80:0f:db:ec:2b:
d4:ab:14:35:a6:d5:44:5b:d8:f1:12:38:42:f2:2a:39:5a:7b:
6b:b2:01:8c:43:1c:50:b2:6b:7e:ee:fa:eb:97:bf:c7:f9:a2:
e4:05:e1:12:83:34:bb:81:00:ac:1d:6a:ba:e4:22:8a:6f:29:
cf:9d:b8:48:c6:c1:70:f9:32:4a:1e:a3:f6:2a:e2:49:59:ca:
7a:db:b0:df:24:8e:d1:d4:fc:7a:f7:c5:ba:51:e2:d1:a7:76:
ab:af:d0:d8:c2:48:54:bc:ce:1b:e4:de:76:8a:11:26:e7:93:
fe:ce:b5:c2:ed:01:47:ee:b8:d7:9a:85:54:8a:af:92:95:08:
6e:b2:25:41:5c:0e:82:3c:2d:13:10:ad:76:79:27:8a:ec:96:
35:67:e3:e8
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:02:04 2025 by rpki-client