Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FiENxlKhYN7k5AFbvLQJ-odyRkA.cer
File: FiENxlKhYN7k5AFbvLQJ-odyRkA.cer (raw, json)
Hash identifier: wlAeROA71HKTFowr3Gp6faPqAv4M6p751MfgIG30hso=
Subject key identifier: 16:21:0D:C6:52:A1:60:DE:E4:E4:01:5B:BC:B4:09:FA:87:72:46:40
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021848
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91983BD/BE7CD02A1D8C11E2AEF045E808B02CD2/FiENxlKhYN7k5AFbvLQJ-odyRkA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91983BD/BE7CD02A1D8C11E2AEF045E808B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 02 Nov 2024 04:36:18 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 23978
IP: 202.38.178.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137288 (0x21848)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 2 04:36:18 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91983BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:68:78:79:58:7c:c1:36:fd:67:85:fa:63:21:
27:03:67:fd:b5:06:93:df:ee:bc:a8:86:73:b2:9f:
9b:16:9b:3c:d5:df:41:60:b6:b2:88:0c:a9:73:34:
11:2d:79:43:8a:b7:e8:75:a8:6d:3c:46:41:f2:e2:
0c:f0:9a:e8:67:3a:5e:6c:df:37:af:9c:ad:6b:6d:
8a:c2:34:32:83:7d:f9:99:ca:c9:8a:f9:56:2e:7e:
ad:0c:e3:56:a4:78:b6:bf:87:41:87:bd:ee:5a:6f:
d6:5d:6b:99:f4:c1:e7:9a:49:00:b7:be:77:86:75:
ae:ad:3a:c8:68:01:0d:67:6f:67:0d:1f:a5:f6:d0:
86:b3:b1:24:11:e8:97:97:a7:ba:86:51:b4:7f:28:
33:ae:d1:ca:61:84:77:2b:15:52:db:f8:6f:97:8f:
62:61:7d:4d:29:5b:46:87:48:bd:5e:fc:9b:b8:0f:
4c:35:bc:27:33:09:6f:27:58:f1:9d:2d:b3:60:ae:
96:78:3f:ed:8d:17:0d:b0:0e:18:67:21:85:f1:01:
e7:3b:7d:10:08:dd:5d:22:53:b9:39:cd:17:f2:d8:
5d:3e:fb:b6:ae:36:98:39:ff:a2:ef:9c:15:ce:af:
c6:6d:3c:c5:bc:15:de:6e:cc:ae:43:4e:2a:6d:14:
95:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:21:0D:C6:52:A1:60:DE:E4:E4:01:5B:BC:B4:09:FA:87:72:46:40
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91983BD/BE7CD02A1D8C11E2AEF045E808B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91983BD/BE7CD02A1D8C11E2AEF045E808B02CD2/FiENxlKhYN7k5AFbvLQJ-odyRkA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
23978
sbgp-ipAddrBlock: critical
IPv4:
202.38.178.0/23
Signature Algorithm: sha256WithRSAEncryption
28:a3:bb:0d:ca:be:84:7c:aa:a6:fd:9d:1d:aa:1d:85:79:bf:
ea:c5:26:c9:66:6e:f2:51:2c:96:02:49:c4:fa:ab:84:76:7d:
0e:0e:c6:ea:82:83:94:fc:46:47:9f:6c:16:07:88:23:1a:11:
b7:98:c4:84:74:7c:f3:61:27:df:e2:20:bb:ff:4b:1d:4c:e2:
1f:c8:e5:71:e9:83:2e:02:21:c3:7b:7a:02:4f:ae:25:dd:34:
63:55:6c:f5:ca:86:a4:8f:85:9a:1b:69:35:74:da:78:a5:72:
6b:30:5a:0c:ae:f1:f1:9b:82:85:4e:85:fa:da:3b:5d:ff:73:
81:cc:da:1d:c5:a9:63:2c:7b:a9:9f:09:3f:22:94:61:b7:a4:
ff:f6:a6:37:2a:b1:81:bb:c6:77:6b:81:c6:d0:28:6f:75:72:
da:f2:75:4a:e6:f4:ac:ce:f3:07:72:4f:da:e8:38:26:42:02:
4f:63:5c:fa:08:3a:eb:24:6c:6c:94:6e:64:30:d9:16:1d:81:
1b:e1:db:48:7d:4d:a3:be:81:dd:0b:ff:d7:1b:1a:3a:e8:85:
00:f8:f9:73:76:27:56:99:cc:b8:34:ca:ba:e4:ae:3f:26:d8:
d0:48:30:11:50:5a:34:11:18:1e:ae:80:af:7a:93:25:01:f9:
82:68:38:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:15:02 2025 by rpki-client