Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.cer
File: 7ZsOYIWiXfJnSf8nWBpOi8fBhsw.cer (raw, json)
Hash identifier: Xc6ZSMVSijqk76R1ktqskA0/DfnbvQONTYLhSzl+5vk=
Subject key identifier: ED:9B:0E:60:85:A2:5D:F2:67:49:FF:27:58:1A:4E:8B:C7:C1:86:CC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F94E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 15 Jun 2024 01:30:48 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 149299
IP: 103.25.10.0/23
IP: 2001:df3:b340::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 01:13:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129358 (0x1f94e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 15 01:30:48 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91A02D8/serialNumber=ED9B0E6085A25DF26749FF27581A4E8BC7C186CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e5:bf:d5:b0:be:55:d3:ab:6a:a5:a0:5a:c0:
96:14:de:2d:ba:e6:bc:fd:6a:63:15:82:01:97:39:
09:23:16:97:23:88:ac:53:79:3a:e2:1a:a0:a6:79:
ea:b2:7a:ab:e9:65:2f:d3:af:d6:91:23:1c:cd:d0:
a1:fa:18:42:fc:6e:b3:7e:3d:8a:22:d9:e9:08:6f:
a7:6a:e6:0b:8f:39:4a:3e:08:70:99:98:39:7b:aa:
4c:bf:59:23:6f:55:f2:b4:4f:b2:1d:ab:65:02:ee:
66:56:c4:05:58:30:4c:e4:a9:44:83:83:0e:34:e9:
33:9a:d8:c8:0f:9b:e0:f8:da:5d:9f:39:66:3c:38:
9d:8e:00:8d:1f:51:ea:a5:db:cf:6f:38:c1:d6:be:
c2:d3:5c:5e:34:a5:3d:85:2e:29:da:fc:14:00:12:
be:75:c6:11:26:ad:ed:1d:e9:99:a3:83:07:6b:a7:
ba:85:f2:d0:3c:de:da:de:8f:52:c0:65:2b:da:a9:
a6:ee:4e:83:63:f9:6f:99:d4:76:72:60:bf:fd:f2:
b8:cf:59:97:07:d2:5a:f9:64:db:1d:5d:3a:3b:ec:
ad:29:36:98:0a:c6:bc:b7:82:39:dc:b9:f1:be:4f:
9c:83:fd:5e:1a:88:a8:48:74:08:0a:b9:01:32:66:
ee:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:9B:0E:60:85:A2:5D:F2:67:49:FF:27:58:1A:4E:8B:C7:C1:86:CC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149299
sbgp-ipAddrBlock: critical
IPv4:
103.25.10.0/23
IPv6:
2001:df3:b340::/48
Signature Algorithm: sha256WithRSAEncryption
04:89:7e:f9:60:e4:de:a7:ec:cf:8d:e7:4e:fb:eb:94:a9:4f:
34:6b:c4:2b:fa:a8:d3:ab:1d:29:c0:1c:14:3f:c8:aa:9e:a9:
fc:5f:26:86:4c:c6:1b:09:99:57:25:ef:51:da:6e:28:7f:c2:
1f:8b:19:98:c8:9d:f8:14:39:5b:e7:01:ed:bd:af:ee:7d:34:
7f:fd:f4:0b:9a:fd:94:56:a6:b1:f3:d7:0d:08:f2:43:33:15:
a4:61:de:7f:9c:3c:7c:f9:88:e1:91:1b:ec:88:86:f3:e5:fb:
1f:89:e7:d6:8f:93:3b:7d:4f:a8:a2:8b:e1:f1:e3:2b:d6:9b:
cf:87:c5:ad:b7:3c:ba:bd:1c:17:05:7a:a8:1d:38:51:42:33:
ef:b5:47:45:0b:24:49:12:8d:20:48:74:99:7b:c7:b1:1b:5b:
7b:e5:99:50:1f:c9:37:90:aa:26:03:81:e0:54:c3:38:99:90:
fc:d3:62:be:97:d1:fb:0b:b3:67:1a:26:4b:37:7c:55:92:7b:
39:39:af:45:01:62:5a:9a:24:60:a1:31:4b:23:60:28:1e:f4:
8a:38:12:f2:b4:c9:cc:0a:a7:1a:a4:e2:1d:fd:cc:77:b3:3e:
c2:66:e9:da:3a:26:17:b6:fc:bf:f9:da:7a:37:02:30:85:d8:
76:b4:a9:1c
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Nov 27 02:04:44 2024 by rpki-client on console-ams.rpki-client.org