Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8qiUEKVLBHj2ArcxIAUVHClcc3k.cer
File: 8qiUEKVLBHj2ArcxIAUVHClcc3k.cer (raw, json)
Hash identifier: 266iU74v2ObHoXWkEJDxyovOubrEvXkgYDZSSx88K+M=
Subject key identifier: F2:A8:94:10:A5:4B:04:78:F6:02:B7:31:20:05:15:1C:29:5C:73:79
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022861
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9175300/5EFAD764F18D11E9AD75B860C4F9AE02/8qiUEKVLBHj2ArcxIAUVHClcc3k.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9175300/5EFAD764F18D11E9AD75B860C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 09 Jan 2025 14:36:29 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 134973
IP: 27.54.148.0/22
IP: 103.204.84.0/22
IP: 2406:4840::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141409 (0x22861)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 9 14:36:29 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A9175300
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:3a:97:74:a4:ba:90:30:c9:56:6c:52:a5:4d:
e4:31:9c:75:68:17:50:92:75:64:fb:32:54:e8:6f:
c4:38:7d:97:6a:6f:35:e2:61:09:40:3b:c0:e7:b3:
e9:ce:b9:09:73:30:c0:c7:45:be:68:47:d5:9e:ae:
27:a5:ed:26:c5:3a:55:0e:4f:77:96:e4:20:6f:90:
ef:9a:c9:21:49:2f:8b:c1:c8:d8:b9:08:57:b3:9f:
56:02:8c:59:38:f2:0d:7d:ac:e7:34:47:9d:58:6e:
09:e7:94:39:32:f3:fc:01:a8:97:09:9b:83:0e:f0:
13:b2:1c:84:cd:2f:39:8e:02:98:40:6d:7e:e8:c1:
d0:31:26:65:13:56:bf:8e:84:12:9f:b9:ef:dc:c5:
62:4e:7c:2a:ac:12:63:b2:94:f9:11:73:33:0a:01:
3a:3a:72:4a:c3:f1:01:e7:0c:fb:2a:0c:43:2a:7e:
aa:a8:9f:b1:1a:1f:dc:ac:be:55:59:ef:7d:47:dc:
3e:76:a9:bf:7e:97:70:80:5e:f5:68:4d:e5:ab:f4:
b7:fb:2b:10:77:3f:f3:ab:35:24:57:98:6a:96:b5:
4d:c7:f0:62:df:56:9d:d8:df:c2:58:d7:43:a7:a9:
07:28:e6:6e:c0:af:1b:dd:94:49:6e:3e:f1:d5:5c:
31:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:A8:94:10:A5:4B:04:78:F6:02:B7:31:20:05:15:1C:29:5C:73:79
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9175300/5EFAD764F18D11E9AD75B860C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9175300/5EFAD764F18D11E9AD75B860C4F9AE02/8qiUEKVLBHj2ArcxIAUVHClcc3k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134973
sbgp-ipAddrBlock: critical
IPv4:
27.54.148.0/22
103.204.84.0/22
IPv6:
2406:4840::/32
Signature Algorithm: sha256WithRSAEncryption
21:eb:e8:52:30:36:f8:47:20:62:a6:ba:fa:f8:1f:7c:9e:7a:
22:63:69:98:14:a9:dd:12:3e:78:05:31:d3:ff:0c:56:63:77:
56:7a:5a:d4:10:10:a1:1f:f4:49:f0:f8:73:08:8b:7f:7d:c2:
d7:15:d3:76:5f:c2:6d:a1:2c:a4:f7:c7:f7:18:f4:5b:1c:af:
90:9e:d8:b3:7e:86:80:8c:7c:38:c3:16:7e:1e:f8:ac:3f:cf:
1d:67:4f:b2:31:bd:43:00:99:c4:33:6b:de:e8:5d:c7:a4:39:
22:72:53:cd:05:18:92:5d:77:4c:ee:ed:a6:7a:34:27:34:53:
6f:92:0c:cf:8d:c3:df:7b:f0:60:d0:62:50:e5:e5:b6:aa:ef:
a3:62:96:8d:cd:b8:e7:74:74:38:6b:7e:58:af:4f:44:21:57:
0a:47:a5:5a:45:58:db:8c:ad:59:d4:f3:d1:9b:1d:b7:9a:53:
bd:61:88:4a:dc:77:f9:6d:9e:61:79:0e:dc:e2:fb:dd:12:e8:
af:06:d7:d1:c4:9a:80:0a:2b:ea:c6:17:fb:bf:bb:dc:65:82:
91:9c:e2:90:9c:19:65:0a:24:b1:90:14:31:b2:cf:6a:45:b0:
19:1a:6f:80:ae:86:98:39:6f:b9:a8:56:23:b5:66:60:73:1d:
f0:4f:c2:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:07:34 2025 by rpki-client