Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75_jgdo9Qut8Tg0EnMrnIo4o-0s.cer
File: 75_jgdo9Qut8Tg0EnMrnIo4o-0s.cer (raw, json)
Hash identifier: XLRtST2LaD0v9xJ1E58QFN9NGxy5b0FLuZeU9hvMoH4=
Subject key identifier: EF:9F:E3:81:DA:3D:42:EB:7C:4E:0D:04:9C:CA:E7:22:8E:28:FB:4B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022157
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/75_jgdo9Qut8Tg0EnMrnIo4o-0s.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 07 Dec 2024 18:45:41 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 133892
IP: 43.224.148.0/22
IP: 103.43.172.0/22
IP: 2401:ecc0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139607 (0x22157)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 7 18:45:41 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91F3C87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c0:f7:a8:85:c7:7e:63:e7:b3:d9:03:e6:67:
21:fb:f7:f6:de:30:fa:b5:36:fe:0f:6c:87:c2:91:
f7:47:6d:84:05:5c:1b:b2:ed:ee:fd:fa:15:55:65:
ec:98:a5:43:c1:27:16:6a:3b:92:c1:11:87:63:21:
61:1d:45:3e:e0:13:b0:db:25:77:19:a7:8c:4d:c6:
16:68:c2:93:85:0a:5e:a1:5f:d3:9a:a5:74:e5:ed:
94:c7:92:e3:62:57:e3:a3:72:68:9d:51:86:56:a2:
f7:6a:91:07:d4:10:9c:8e:0a:81:15:ab:20:84:39:
2d:47:0c:01:7c:3f:88:02:e2:f2:08:44:7e:9c:33:
67:4c:fa:bf:7b:d5:3c:ad:57:1c:45:02:fe:e0:a5:
78:61:bc:ad:ec:1f:69:74:df:a4:aa:47:34:cd:4c:
3b:cf:5b:12:52:05:8b:51:dd:7d:e7:36:83:5b:2d:
2e:6c:83:86:60:41:18:bc:ba:e3:3f:e9:fc:33:10:
c2:6e:2d:31:91:a8:14:9b:4c:fd:d5:c9:cd:3e:c2:
99:21:54:62:85:51:33:34:75:47:38:79:9e:3f:44:
29:2b:7e:ed:2f:d3:60:a9:c7:4a:b2:0a:98:40:ff:
9c:f5:94:c1:57:7e:b4:32:b2:53:12:1b:98:ec:19:
62:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:9F:E3:81:DA:3D:42:EB:7C:4E:0D:04:9C:CA:E7:22:8E:28:FB:4B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/75_jgdo9Qut8Tg0EnMrnIo4o-0s.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133892
sbgp-ipAddrBlock: critical
IPv4:
43.224.148.0/22
103.43.172.0/22
IPv6:
2401:ecc0::/32
Signature Algorithm: sha256WithRSAEncryption
a1:92:cb:83:09:b9:7b:a0:d4:d5:67:78:5d:d4:a2:4e:6e:12:
e2:0b:a9:5c:1a:72:f5:45:4b:15:f3:e9:e8:a4:be:ba:68:81:
cc:bb:27:43:7b:ee:0f:e8:9c:13:19:03:a3:a7:bf:14:bc:b6:
90:c4:a2:56:2b:95:a3:67:30:81:7d:68:12:de:55:87:c2:4a:
9c:1f:78:c3:4f:d7:ef:d3:dc:34:5a:21:34:84:89:af:7b:1c:
dd:05:a1:bd:0c:87:c0:b8:6f:ab:bc:2c:c6:29:17:e2:b4:3a:
88:38:f2:5c:7b:34:ed:59:7f:63:6c:da:d7:a5:a3:fc:71:00:
95:f2:c9:f4:d5:d2:5a:c4:8d:61:06:ef:e2:47:a1:89:23:62:
4e:66:b3:6b:34:28:ab:9e:d5:11:b7:10:cf:38:92:d0:88:aa:
6d:ef:3c:fb:52:c0:c7:be:46:97:80:83:fc:13:be:bb:4d:60:
3c:12:02:6a:8c:2f:07:51:60:fb:05:9c:1e:b7:61:6f:4a:96:
8e:cf:fb:cf:12:11:a1:d6:4e:14:b5:ef:88:97:ba:f9:0d:b9:
25:2b:73:df:5d:60:42:9b:65:c4:6b:29:88:cd:24:07:7a:ec:
45:e1:30:ee:e0:ac:14:63:b5:00:98:69:cd:11:28:59:48:62:
6d:39:95:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:07:41 2025 by rpki-client