Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JHtdbmLkpJ6d9Nwkwx7KbtekOyg.cer
File: JHtdbmLkpJ6d9Nwkwx7KbtekOyg.cer (raw, json)
Hash identifier: oT9A4SoR+e9tT39KyC/pj9UIZEJLvh1SURjpY3EOan4=
Subject key identifier: 24:7B:5D:6E:62:E4:A4:9E:9D:F4:DC:24:C3:1E:CA:6E:D7:A4:3B:28
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021F5D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C54A1/7402D8D89B6011EE86EE1D10C4F9AE02/JHtdbmLkpJ6d9Nwkwx7KbtekOyg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C54A1/7402D8D89B6011EE86EE1D10C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 01 Dec 2024 18:42:22 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 152141
IP: 210.79.178.0/23
IP: 2001:df3:39c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139101 (0x21f5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 1 18:42:22 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91C54A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:9d:2b:0e:fe:96:18:a2:5a:b4:b3:f5:7c:65:
68:00:58:04:44:5c:67:e6:14:85:a6:34:cb:48:8f:
13:5d:51:4f:61:c5:08:8e:c3:fb:60:df:50:f3:4d:
11:a1:50:3e:4a:6d:5f:33:6e:6b:a8:69:17:ad:b6:
8c:7a:c2:91:67:a4:10:8a:c7:3d:b8:8a:66:05:c1:
1e:7b:05:40:5b:99:fe:57:c2:84:e1:58:db:12:76:
bc:69:84:80:f8:8d:94:44:dd:4e:85:2e:23:0d:09:
98:12:6f:af:04:01:55:8e:8f:b2:d2:58:2f:13:fa:
62:b5:1d:d8:b0:60:20:dd:72:96:53:e6:3f:a3:fa:
84:62:2d:e1:cd:54:c5:b0:87:3d:7b:d7:b9:21:66:
6e:76:4b:4a:b1:a5:9d:8e:63:ba:14:c4:c6:e9:06:
ca:b2:92:7d:b9:9d:18:02:d3:4e:62:b8:de:3b:d3:
55:22:6b:be:b3:32:13:86:ca:01:86:33:71:b6:63:
99:25:ff:33:cd:5b:ce:fb:11:b7:c1:d1:76:40:4d:
67:f3:2b:c9:c4:7f:13:18:76:fc:46:39:7b:45:57:
fe:fd:d7:16:a6:6e:56:b2:55:5b:3b:59:bd:0b:04:
2f:a2:79:59:19:5a:11:1e:88:bf:c2:ab:f6:de:b3:
bf:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:7B:5D:6E:62:E4:A4:9E:9D:F4:DC:24:C3:1E:CA:6E:D7:A4:3B:28
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C54A1/7402D8D89B6011EE86EE1D10C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C54A1/7402D8D89B6011EE86EE1D10C4F9AE02/JHtdbmLkpJ6d9Nwkwx7KbtekOyg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152141
sbgp-ipAddrBlock: critical
IPv4:
210.79.178.0/23
IPv6:
2001:df3:39c0::/48
Signature Algorithm: sha256WithRSAEncryption
be:96:82:35:64:28:25:c3:59:85:06:3d:3d:48:5a:51:eb:66:
62:d2:81:6c:dc:7b:f7:14:04:0c:2a:12:57:dd:dc:4b:bc:23:
5e:bb:f5:9d:55:8c:d5:39:30:ed:ef:94:f1:da:9c:f4:97:2e:
06:59:34:dd:a6:69:41:4f:a9:c3:82:44:a0:ab:46:a7:31:d9:
f5:e2:3c:d5:f8:7f:ac:ed:4d:68:b8:1d:5d:91:97:42:df:6b:
fa:4a:2f:d3:6a:05:98:ab:50:bf:ba:ff:6a:6e:b0:5c:7b:bc:
c3:84:f8:fb:ab:c0:92:22:8a:0b:9c:c7:f8:42:a0:04:ae:35:
95:38:d0:8f:42:c0:1e:ee:94:8c:33:2a:f7:fa:8c:4f:7e:3a:
ea:76:c4:3d:92:a4:45:88:f7:4a:20:11:da:12:b8:7c:91:b1:
29:c5:06:cd:a4:21:72:48:69:10:3b:c2:2d:0d:e7:77:d4:a6:
e0:a1:91:37:94:21:fb:69:af:f9:1f:0b:0b:d9:a0:b9:ac:80:
d0:70:f6:00:7f:57:05:8a:98:c5:f3:b1:a2:0c:d4:44:dd:e6:
4e:4f:11:b1:19:f0:46:66:25:e0:b9:06:44:8c:d7:f0:0d:ef:
b9:3a:b7:e5:94:dd:fc:4b:63:f7:26:6f:f5:1c:b3:02:ad:37:
df:d0:ed:9c
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:12:37 2025 by rpki-client