Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer
File: AShwXWnFHg4rB4rtuZiR5_GbTR8.cer (raw, json)
Hash identifier: 3wkq4cEG6SkSUlMWOe3xL6Yxp1WrTp+J3pYx4gqCdeo=
Subject key identifier: 01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022BA9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 27 Jan 2025 17:10:35 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 139925
IP: 103.147.42.0/23
IP: 2001:df2:8280::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142249 (0x22ba9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 27 17:10:35 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A91C0C0B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:98:fe:c9:17:2f:5d:ff:b1:47:f0:23:c9:b2:
89:dc:b6:70:23:24:8d:bc:f7:cf:74:56:da:c4:b2:
7f:d2:a5:da:a8:19:fd:01:26:46:83:23:5a:0d:93:
9e:49:be:9a:8a:0d:cf:6f:ea:ab:07:2f:13:1b:44:
b6:2a:81:62:c5:ed:c8:16:ac:43:1b:2d:ad:db:72:
cc:79:e9:a8:af:3a:d9:7b:4c:44:40:2b:ad:3d:4d:
59:9c:67:17:79:8d:31:d6:1b:98:13:d6:9b:5c:68:
ac:d6:4a:e9:54:fa:39:9a:98:4f:83:e4:dc:44:94:
ff:7c:c1:a2:c4:65:a8:9a:9e:f9:48:22:c5:20:31:
b4:e2:43:61:ec:8c:84:d6:1f:4f:7a:0d:bb:33:a6:
a1:d0:a5:74:c9:62:d6:85:13:2f:9d:24:c5:37:d4:
f2:d6:e7:62:27:bf:cf:c0:15:18:ae:0f:ff:61:2f:
09:50:69:4d:95:5e:26:94:86:ce:4e:fe:8d:30:44:
f2:44:ab:fb:aa:db:07:86:6d:f9:4f:76:0b:0f:6b:
f4:70:18:9e:c8:15:19:e7:62:c6:02:01:3f:5f:16:
70:18:df:76:79:c5:e2:07:68:c5:57:96:b4:4a:c7:
a2:1c:21:42:c1:57:ab:3c:f0:cc:04:62:0c:6b:37:
24:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139925
sbgp-ipAddrBlock: critical
IPv4:
103.147.42.0/23
IPv6:
2001:df2:8280::/48
Signature Algorithm: sha256WithRSAEncryption
b5:84:f2:0f:66:3f:26:a1:92:18:f2:4c:cb:ab:0e:ee:40:ef:
33:7a:84:15:4d:eb:9d:09:e0:57:ca:f2:51:85:f5:f1:7e:41:
98:55:1c:af:8c:92:59:86:b6:e8:19:37:d8:df:91:fb:85:b9:
90:2a:79:b4:ed:f7:06:67:38:b6:c3:d7:50:38:41:6a:98:f3:
f1:75:96:1b:78:a1:39:c8:7d:e1:02:7f:9f:d4:03:cd:23:51:
e4:bf:1e:9d:fe:f0:ce:b6:27:b9:e3:b3:45:72:07:d8:61:fe:
7a:e8:35:8f:58:b9:18:f6:24:3c:90:ed:49:bf:97:92:62:cb:
31:f9:c5:d1:0d:3d:92:15:2b:03:fa:56:64:04:10:a0:76:bc:
a2:48:68:08:59:3f:6a:ca:70:af:de:81:c3:f6:a3:6f:66:a5:
bd:96:d5:1d:cb:7d:8d:57:25:55:52:4f:48:46:9b:58:9a:c0:
af:a0:13:4e:68:f3:83:4a:89:82:38:88:5f:70:ff:c4:6b:12:
e4:0e:3d:64:2c:48:cd:27:65:32:c3:88:69:68:bd:af:e0:29:
be:b9:76:ac:cb:4d:fe:ae:e2:b8:a3:e3:03:c4:1b:f8:4b:78:
c1:04:5e:13:17:59:45:5d:d2:f6:00:bf:fd:8c:c3:d3:87:64:
f2:27:25:c1
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:14:09 2025 by rpki-client