Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO_XGTj3-dyHpp9cs_hMektyoAo.cer
File: CO_XGTj3-dyHpp9cs_hMektyoAo.cer (raw, json)
Hash identifier: BbmfoJKKLY5ictXs+t9Ul0EKvQiFSwSRFFfOcurBmRk=
Subject key identifier: 08:EF:D7:19:38:F7:F9:DC:87:A6:9F:5C:B3:F8:4C:7A:4B:72:A0:0A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02269B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 02 Jan 2025 04:53:07 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 137240
IP: 103.105.138.0/24
IP: 2001:df7:5980::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 13 Feb 2025 03:45:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140955 (0x2269b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 2 04:53:07 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91218BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:29:a0:d8:a8:87:f2:bd:0d:62:dd:9f:bf:eb:
2e:e5:47:df:d7:91:09:42:71:59:4b:70:62:72:36:
e0:df:c3:c0:95:1c:12:97:b2:50:7b:d8:74:db:47:
6e:93:18:79:d8:2a:0f:d2:15:b2:a8:04:e6:fa:08:
6b:96:48:4f:dc:1c:2d:6e:6d:ba:f4:9c:0e:17:76:
cf:80:e9:59:40:25:3b:d0:36:76:49:f3:63:6e:27:
b8:ee:70:1a:e8:6f:10:58:cf:97:f0:1d:da:4e:45:
fb:6c:ac:c5:58:c2:20:d5:2d:18:08:51:7a:2b:8b:
a0:65:10:a5:27:1c:7f:f5:b4:60:a6:2f:f0:33:d2:
d4:ff:d6:14:5c:61:e6:1a:6d:3f:11:73:95:1d:7e:
3b:ca:f3:00:2c:44:c2:69:40:2b:4e:37:e4:ce:df:
23:59:7f:ee:d8:94:d3:24:81:be:81:e7:d7:a9:b2:
ae:31:04:dc:68:79:e6:c6:ee:22:64:56:00:23:99:
09:44:85:72:40:cb:10:d2:a6:7a:24:06:ce:d5:0b:
40:56:5b:64:27:83:30:3d:11:ce:cb:8b:25:90:f7:
0b:54:73:bb:01:f4:cd:af:ad:70:fa:48:12:7f:51:
e9:97:3d:9a:7a:42:23:5f:7b:83:31:43:6a:5f:af:
16:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:EF:D7:19:38:F7:F9:DC:87:A6:9F:5C:B3:F8:4C:7A:4B:72:A0:0A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137240
sbgp-ipAddrBlock: critical
IPv4:
103.105.138.0/24
IPv6:
2001:df7:5980::/48
Signature Algorithm: sha256WithRSAEncryption
90:2a:17:94:44:e8:5a:15:f8:61:21:89:fb:ad:e9:79:5b:16:
f5:8f:e1:4d:47:b8:b9:5c:1f:72:48:f4:1e:cb:17:d2:d1:1b:
20:2e:9c:31:97:38:ff:0a:68:f0:6e:ad:9c:45:32:3f:20:fc:
c4:3d:7c:6c:33:8c:b0:f0:ee:5a:44:7c:21:73:dd:d0:cd:07:
9c:9a:1d:e9:49:7b:2c:74:52:dd:79:9d:c4:9b:ef:fb:d7:42:
dd:1a:1b:3a:13:f2:3a:82:58:40:e7:d7:4c:52:77:11:21:c4:
d0:1f:31:14:28:ff:85:03:9d:d6:59:e8:41:20:46:96:8f:27:
2c:62:fe:19:f6:a7:57:37:63:44:87:5d:dd:e8:72:23:a7:c0:
22:41:7f:53:0c:f3:d1:6b:ff:31:6f:2d:ce:4c:33:af:20:6c:
6f:bd:e7:6d:d6:aa:81:ea:16:2a:f0:8d:21:dd:39:45:5e:58:
92:14:28:74:13:91:1e:42:ae:c0:a7:91:a8:c4:5c:7d:f1:df:
47:e6:2f:56:75:bc:fe:29:e3:ca:f2:8e:d9:dc:1e:cb:fc:ad:
42:11:5a:bc:a7:ea:fa:d4:79:e0:86:53:e7:8a:c9:6b:3e:4f:
7a:fd:d3:c3:5b:42:a8:a8:e9:15:66:6b:f8:99:18:20:f6:58:
78:08:1d:35
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Feb 6 06:35:25 2025 by rpki-client