Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DMq5RHoXrDyKeHvpR-xdb0qJXOk.cer
File: DMq5RHoXrDyKeHvpR-xdb0qJXOk.cer (raw, json)
Hash identifier: wd0kHRMractyKkfAeMsdCddGF2vuJS8jLCmGZoyy0lk=
Subject key identifier: 0C:CA:B9:44:7A:17:AC:3C:8A:78:7B:E9:47:EC:5D:6F:4A:89:5C:E9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02223D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A6EA0/F91400C28C2C11ED9638E672C4F9AE02/DMq5RHoXrDyKeHvpR-xdb0qJXOk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A6EA0/F91400C28C2C11ED9638E672C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 11 Dec 2024 18:29:34 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 150402
IP: 103.30.72.0/23
IP: 2001:df1:7bc0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139837 (0x2223d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 11 18:29:34 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91A6EA0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:81:45:b0:2d:a7:e5:79:05:bc:f7:ab:ae:41:
18:75:98:6e:b6:82:17:50:b6:07:c3:77:e4:46:cd:
d9:64:f1:a2:79:bd:e0:9c:3d:00:2f:90:be:08:a5:
7a:f0:1d:50:d5:87:c2:96:ad:66:98:45:60:7d:69:
75:d5:0f:fe:fb:32:4f:77:e6:24:52:33:49:36:4d:
8c:39:78:5d:b5:ad:66:5e:a9:7f:4a:95:8c:46:88:
90:db:32:e2:19:7e:4a:84:14:1f:7c:48:2a:43:6b:
22:c5:f1:9e:b2:c1:07:22:43:3a:f4:dd:8c:3e:b0:
1d:2c:58:75:f5:fe:40:e4:03:9a:04:e6:7c:52:10:
33:ae:73:a9:1d:01:6d:37:ae:7c:07:1a:e0:ba:5a:
c4:23:68:05:1e:34:1e:4b:5f:ee:82:9c:6f:10:89:
47:4e:6a:12:86:4b:a1:27:d3:8e:ca:55:0a:ce:41:
a7:41:92:01:ba:6e:d8:a7:1b:56:9a:5d:77:76:18:
14:a7:1e:c8:5d:10:23:7f:80:f2:53:d8:4f:4e:c4:
06:50:cd:87:e2:e2:5e:ba:c3:4e:ac:a9:95:77:02:
46:54:da:e8:97:e2:37:a6:cf:02:d9:31:d2:e9:d3:
dc:2d:28:2d:5f:a4:70:78:5d:66:10:2c:8b:ea:d9:
30:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:CA:B9:44:7A:17:AC:3C:8A:78:7B:E9:47:EC:5D:6F:4A:89:5C:E9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A6EA0/F91400C28C2C11ED9638E672C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A6EA0/F91400C28C2C11ED9638E672C4F9AE02/DMq5RHoXrDyKeHvpR-xdb0qJXOk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150402
sbgp-ipAddrBlock: critical
IPv4:
103.30.72.0/23
IPv6:
2001:df1:7bc0::/48
Signature Algorithm: sha256WithRSAEncryption
a1:6f:28:19:32:fb:ee:07:e6:52:3b:b7:92:ff:bc:b0:51:22:
2c:15:f2:7f:99:a6:d7:87:8b:46:b2:bf:7a:0c:1e:14:e7:a9:
0b:95:fa:d1:25:ec:0b:c2:b2:69:46:fb:14:fd:ff:cc:b6:7a:
9a:18:3e:13:e8:da:b9:bd:53:ec:6d:fd:e1:31:0c:87:3d:0b:
d1:4a:d5:7c:3c:89:38:ee:1a:30:91:55:fe:ff:ba:2c:48:72:
f7:92:33:55:b5:86:d9:be:82:e4:8d:35:61:8b:8b:1e:08:30:
66:34:26:9d:83:4e:3e:76:49:f6:8a:f4:70:46:1e:88:6c:8a:
5b:ee:32:9b:b3:5d:92:66:db:80:76:e2:1a:0c:c5:c4:f0:31:
21:e3:ef:15:95:e3:8c:74:ab:aa:de:b3:b7:79:66:a6:ea:14:
9a:9c:09:50:50:31:f8:a8:6e:57:44:07:ac:1b:3c:17:e0:32:
96:f2:5a:7e:83:a9:fd:f2:b3:fc:e3:17:70:8a:59:7d:89:68:
0f:78:8c:c3:1f:c1:7d:05:13:a9:b2:a9:ba:2d:76:e9:fd:a4:
a5:77:e0:73:aa:67:08:b8:b0:01:3d:bf:e3:d1:f1:b1:f1:1d:
49:de:96:2a:cb:ea:10:d9:a6:1d:5d:be:27:f8:99:0e:62:d9:
d1:0d:a8:a7
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:45:37 2025 by rpki-client