Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.cer
File: BlXikVyt6RZ3qrSMI8HiJLQ9uqU.cer (raw, json)
Hash identifier: lIhov7JTtzujeukhfBu7L+Sfyx/Baj5bglvtReSbP58=
Subject key identifier: 06:55:E2:91:5C:AD:E9:16:77:AA:B4:8C:23:C1:E2:24:B4:3D:BA:A5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022024
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 03 Dec 2024 17:38:23 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 23967
IP: 202.90.176.0/20
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139300 (0x22024)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 3 17:38:23 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A9178D35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:20:68:c8:a9:83:8e:6f:e4:5d:cf:da:07:14:
04:23:fc:f7:68:23:19:ad:0f:f7:00:bc:0c:7b:e7:
43:d8:92:8e:bf:69:df:0a:19:5f:82:ba:8c:81:01:
5e:90:7e:46:3a:27:af:da:41:af:49:68:9e:23:f1:
6a:b4:ac:cc:78:53:fd:5c:32:7e:17:c5:f2:fe:be:
e4:68:db:3d:80:9b:cb:e0:ae:5f:71:83:4c:13:d4:
c9:03:6b:be:95:82:ee:8a:5e:54:b7:2c:62:b9:31:
b9:88:af:6a:27:de:62:4e:fb:11:fb:a2:38:c1:be:
94:fd:2f:06:40:88:83:ca:93:77:68:eb:a7:3a:f6:
07:fc:d7:24:cd:d9:77:0f:ec:45:d7:5c:8a:5e:d1:
7f:54:38:7c:bb:55:a9:0b:0a:96:a8:5a:d2:6c:7a:
19:fe:38:82:e8:72:e2:38:fb:67:fb:7a:36:42:dd:
38:15:6b:57:4a:37:c2:ce:e3:71:a9:77:0c:82:5d:
ea:dc:d9:39:65:51:6b:f5:dc:93:ad:e7:e1:95:eb:
9f:b7:b3:96:e1:a7:7c:d8:3a:c9:db:48:28:ca:e4:
39:7d:1a:ed:4f:81:63:a8:35:45:7a:07:fc:26:0f:
ae:26:48:3a:0a:49:fe:f0:8a:1e:21:b7:7b:cd:a1:
d7:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:55:E2:91:5C:AD:E9:16:77:AA:B4:8C:23:C1:E2:24:B4:3D:BA:A5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9178D35/D6F885A41D8C11E29FA623EA08B02CD2/BlXikVyt6RZ3qrSMI8HiJLQ9uqU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
23967
sbgp-ipAddrBlock: critical
IPv4:
202.90.176.0/20
Signature Algorithm: sha256WithRSAEncryption
66:10:bf:d5:f9:ef:9a:43:f7:74:07:ed:88:16:f1:90:55:7d:
61:a3:61:43:da:2c:d7:e4:04:55:fc:01:3a:d9:b0:69:4e:ea:
82:5c:f3:e1:80:78:f1:b3:37:1f:86:3d:1f:8e:7c:f6:47:80:
7b:f6:ac:74:48:77:e8:eb:73:11:7d:a7:7a:a0:7b:7b:64:34:
3e:d6:c3:11:a9:1d:0f:5d:9c:3a:30:55:cc:7f:8e:30:fc:06:
ad:25:ce:57:94:e2:87:b6:fb:05:6b:14:48:17:c8:12:d5:7c:
a2:29:bc:de:b3:a9:38:00:fa:ce:ef:cb:1f:57:c5:ea:7b:0e:
fb:fa:c6:6a:56:d4:06:ef:e0:fe:f6:ac:38:3a:9b:f6:5e:bf:
8f:ac:ef:0f:7e:56:f8:10:b9:a7:a1:79:f2:ba:64:d6:71:9d:
fc:e7:64:c5:f0:09:34:aa:9d:76:84:4d:b1:ec:05:1f:ca:d9:
1a:d2:09:4b:c7:b0:80:b8:af:f7:fc:4c:d7:16:9d:07:7a:f8:
ca:4f:a1:21:1a:de:d1:63:1d:2a:e2:55:8f:14:e9:93:03:53:
5b:46:3e:73:ce:66:ed:72:69:4c:70:27:0c:0e:5b:c5:85:ad:
b2:30:18:65:7d:5d:88:c1:47:57:8c:15:db:13:af:3b:95:78:
11:43:b4:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:38 2025 by rpki-client