Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4zy4oB33yytpFdW-12ZpuJA_Qk.cer
File: A4zy4oB33yytpFdW-12ZpuJA_Qk.cer (raw, json)
Hash identifier: Q6st9kvzm7833FU+ORinl8tUrUEE+UfOkVCO1ReX59c=
Subject key identifier: 03:8C:F2:E2:80:77:DF:2C:AD:A4:57:56:FB:5D:99:A6:E2:40:FD:09
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F8DE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 13 Jun 2024 12:26:01 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 55508
IP: 103.1.232.0/22
IP: 157.119.180.0/22
IP: 202.9.76.0/23
IP: 2001:df0:bf::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129246 (0x1f8de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jun 13 12:26:01 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A9112CEC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:7f:09:f0:f4:37:c4:5e:a3:fe:57:9c:74:b1:
73:4a:85:ad:c1:3b:0a:51:ec:68:d9:98:8d:2d:c8:
be:e2:be:03:7d:ba:44:a4:e3:5b:f4:30:b0:4e:ed:
c5:f3:10:ab:01:cf:7e:1a:c7:de:b1:72:6c:e7:73:
50:f0:c4:cf:ec:6f:c2:ad:f2:18:59:e0:5b:33:dc:
1a:af:bc:e9:a6:51:5e:21:85:55:f0:0c:e3:cd:fd:
d2:7d:a1:b4:e7:c6:57:83:d1:1f:7f:88:6c:1d:59:
d5:09:1b:1e:93:b5:36:89:ee:9b:e1:53:63:aa:20:
14:e5:a3:c4:1e:cb:b8:ef:6a:6a:35:e8:96:82:f0:
07:7d:d4:68:aa:5d:92:f5:e3:a1:91:0a:3e:c0:9f:
9f:c2:01:92:43:92:88:e3:c7:9b:d5:31:9f:4e:77:
b2:a9:60:4d:76:ea:5a:86:5a:4e:83:7d:6f:a0:91:
99:02:27:2f:9c:23:49:86:2c:46:b0:75:bf:92:03:
0d:c2:60:fc:92:31:7d:80:65:e8:54:95:80:c2:67:
9a:12:41:59:4f:9b:b9:5a:7a:dc:55:22:6b:41:bf:
21:f4:cf:98:e3:d1:f0:dc:7a:50:f3:16:3b:ec:ce:
80:0f:fd:d2:fd:5e:a2:e0:71:25:76:a7:83:fb:69:
c3:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:8C:F2:E2:80:77:DF:2C:AD:A4:57:56:FB:5D:99:A6:E2:40:FD:09
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55508
sbgp-ipAddrBlock: critical
IPv4:
103.1.232.0/22
157.119.180.0/22
202.9.76.0/23
IPv6:
2001:df0:bf::/48
Signature Algorithm: sha256WithRSAEncryption
71:4e:7d:70:41:96:a3:09:2e:e3:8b:a0:69:c0:66:78:f6:5f:
f6:e9:1e:a9:bf:5f:4b:2e:12:5b:02:6c:68:bc:39:6b:5b:a0:
f0:ef:80:72:26:86:95:cc:b4:2f:f0:7d:95:8f:f3:c8:c7:c7:
52:27:03:30:ee:d3:f7:a4:63:e5:6f:13:26:c8:57:65:e3:0c:
1c:34:6a:50:71:0a:88:3c:e8:ac:c0:e9:20:72:0e:23:86:ff:
02:74:dd:a3:2b:99:22:62:32:dc:e0:44:5d:72:45:68:10:be:
86:cf:5c:2e:1d:64:76:a6:d5:1f:d6:4e:1f:28:a9:23:98:99:
8e:92:5f:a4:9f:62:76:83:1f:16:78:b2:e9:90:a2:f5:41:b6:
29:0c:db:5b:ca:13:c1:e0:a1:36:6c:e8:b1:a3:cb:6a:4a:b9:
4d:f6:31:f4:45:7c:d2:ea:be:2f:8c:93:e6:00:83:bd:15:e4:
42:e8:20:cf:7f:d5:ec:7b:12:c6:85:1b:20:43:d5:ca:3c:f1:
32:2f:ae:fe:35:a7:21:87:75:a9:f9:42:e5:f1:99:a3:d3:e2:
5a:68:bf:74:7e:d0:e2:e2:f6:c5:71:62:eb:e5:df:6c:01:84:
49:ad:90:10:b8:e6:24:c2:bd:db:49:88:d7:c1:40:2d:20:bd:
7d:da:22:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:19:14 2025 by rpki-client