Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LVqV8tpLHxxwxkYlGfxvWJRfyrk.cer
File: LVqV8tpLHxxwxkYlGfxvWJRfyrk.cer (raw, json)
Hash identifier: Jonw9VPzpKreZeDD95eHPTF1sePXyUAFF+Nlc9Eomq8=
Subject key identifier: 2D:5A:95:F2:DA:4B:1F:1C:70:C6:46:25:19:FC:6F:58:94:5F:CA:B9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021A1F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913BC05/47339566208C11EA9435E63BC4F9AE02/LVqV8tpLHxxwxkYlGfxvWJRfyrk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913BC05/47339566208C11EA9435E63BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 07 Nov 2024 13:09:34 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 58427
IP: 103.5.172.0/22
IP: 2402:4e40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137759 (0x21a1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 7 13:09:34 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A913BC05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f3:d8:35:4d:d8:5b:0b:30:29:ed:bf:47:00:
4e:be:a3:b3:4b:f1:2f:14:ec:79:82:35:4d:2c:32:
b6:0a:f2:63:84:37:3e:40:33:b9:21:ca:fe:fc:3b:
97:0c:91:59:3b:24:f8:d3:ed:c8:ea:5f:d0:0f:3a:
8e:66:96:25:75:4e:06:be:e4:ab:c7:67:60:c2:96:
63:b9:2a:01:0e:d8:26:a5:dd:50:1c:99:dd:7b:2e:
d4:6e:ba:83:0f:7f:97:76:3f:09:14:50:98:41:b5:
21:86:03:ce:11:5f:ca:d1:44:7d:79:a7:38:6a:af:
39:5c:f8:2c:23:69:28:3a:a5:8d:3a:9f:6c:bf:e4:
fb:70:5a:bc:06:b3:39:d1:59:b2:94:92:06:66:44:
25:c1:1f:38:c6:45:6f:22:d6:d4:c7:99:a9:89:bf:
23:ce:4b:e8:29:c8:37:f3:68:51:2a:a2:9d:0c:db:
79:0d:88:85:2a:6b:d1:4c:9f:02:d3:a2:06:ac:a6:
86:49:de:55:f7:95:4b:47:e4:1b:90:c0:6a:10:9c:
d9:cd:c0:35:67:3a:ac:a5:d1:fb:5f:85:0f:95:f2:
15:9e:51:91:52:4b:d8:b0:cd:d7:8f:7e:cc:33:d6:
9b:ab:1e:3f:2e:74:d9:15:b2:52:f4:c1:e3:2c:60:
47:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:5A:95:F2:DA:4B:1F:1C:70:C6:46:25:19:FC:6F:58:94:5F:CA:B9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913BC05/47339566208C11EA9435E63BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913BC05/47339566208C11EA9435E63BC4F9AE02/LVqV8tpLHxxwxkYlGfxvWJRfyrk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58427
sbgp-ipAddrBlock: critical
IPv4:
103.5.172.0/22
IPv6:
2402:4e40::/32
Signature Algorithm: sha256WithRSAEncryption
0b:ee:d8:3e:24:1f:d1:02:42:b8:5b:27:e0:2b:66:aa:11:75:
7f:d7:a7:97:ad:78:bb:76:d2:19:a0:64:a6:16:f3:7e:9e:53:
6a:5f:20:70:80:95:bc:e7:c8:2d:b7:b2:4c:19:73:d8:95:a1:
ff:8c:5e:ec:b8:e1:34:f6:de:ee:d6:81:b4:19:eb:f5:d7:77:
86:14:8b:a0:02:70:3c:fe:fc:02:8b:e6:31:6a:66:62:04:b4:
19:8e:32:5f:3b:1c:f4:72:d5:a3:b0:0d:15:15:0e:a9:7d:38:
2c:c6:04:3c:3c:5e:14:3a:0c:68:5c:c6:80:0e:1f:f7:5c:ee:
25:c5:dd:f7:cc:f1:5c:07:07:9b:14:e4:fd:42:b7:7c:92:7b:
26:17:63:27:da:b9:6f:e9:34:48:90:dd:21:23:33:06:7d:39:
6e:23:0e:4b:3b:51:3a:e1:cb:24:61:cf:f4:82:30:e2:55:e3:
d7:a4:c5:f1:71:8c:0a:9f:96:98:3a:92:cb:10:4c:e3:c1:26:
bb:d7:f1:7f:1c:0e:3c:8d:a6:f3:30:66:24:86:d0:f7:32:42:
f2:c4:bc:f4:36:8a:7d:93:22:08:9f:60:c3:12:34:f7:fc:be:
f8:38:5e:e5:92:fc:47:11:a7:15:61:49:d8:88:0e:32:bb:07:
ed:a2:ff:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:09:30 2025 by rpki-client