Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS_CJ-7MWmIVcvrarGUaPOuyFjw.cer
File: OS_CJ-7MWmIVcvrarGUaPOuyFjw.cer (raw, json)
Hash identifier: w3+EaUzGQzN499yElshgM9fciXhaN7aOWQu4Snrq6Yk=
Subject key identifier: 39:2F:C2:27:EE:CC:5A:62:15:72:FA:DA:AC:65:1A:3C:EB:B2:16:3C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E296
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9115C2E/38D1401C834811EAA7C47576C4F9AE02/OS_CJ-7MWmIVcvrarGUaPOuyFjw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9115C2E/38D1401C834811EAA7C47576C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 04 Mar 2024 12:30:42 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 45267
IP: 43.247.172.0/22
IP: 45.117.36.0/22
IP: 103.254.132.0/22
IP: 114.134.0.0/20
IP: 116.90.76.0/22
IP: 124.248.128.0/20
IP: 163.47.240.0/22
IP: 202.36.75.0/24
IP: 202.37.163.0/24
IP: 202.37.168.0/24
IP: 202.49.36.0/24
IP: 2400:bd00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123542 (0x1e296)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 4 12:30:42 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A9115C2E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:1c:00:ca:6c:f9:c6:47:95:a5:e2:a5:8f:bd:
e2:b9:55:4d:a3:e0:09:39:96:0e:6f:d3:e5:88:77:
77:06:23:0d:34:74:32:e3:e3:56:1c:f1:c2:37:e0:
dc:8f:4b:8c:20:ef:36:bf:2f:83:2f:5b:b1:ed:e5:
56:35:63:15:16:00:15:da:8d:24:94:6f:34:7d:69:
3b:8c:10:d7:2d:3d:d5:65:35:c5:44:f2:56:49:6e:
ec:0f:3d:bd:4e:c6:b8:f6:24:0a:73:8d:66:9e:9c:
de:71:d7:bc:a1:e5:ac:5c:4c:da:cf:74:99:6c:f2:
78:ef:f7:3e:0d:74:9f:bf:58:37:71:80:04:92:d4:
70:7a:e5:54:20:e6:14:d4:99:92:ae:62:e0:8b:b1:
0a:d1:83:9d:c2:bf:e8:aa:a2:fa:d2:18:6d:46:62:
b7:8a:92:fc:74:18:4f:13:ee:09:0c:ec:69:eb:af:
7e:18:ac:c4:43:c1:17:a5:22:da:49:60:73:f4:ac:
1f:4d:9c:09:2e:17:33:fb:9f:01:8e:31:e6:f5:a1:
d1:23:ce:d3:7a:c7:14:c6:63:1a:bb:f8:6d:f4:65:
23:8b:1d:1d:70:25:ba:1a:4a:65:b3:1d:2f:54:be:
df:a7:bb:de:66:48:e4:99:a0:9e:9f:e5:b4:ef:07:
cc:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:2F:C2:27:EE:CC:5A:62:15:72:FA:DA:AC:65:1A:3C:EB:B2:16:3C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9115C2E/38D1401C834811EAA7C47576C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9115C2E/38D1401C834811EAA7C47576C4F9AE02/OS_CJ-7MWmIVcvrarGUaPOuyFjw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
45267
sbgp-ipAddrBlock: critical
IPv4:
43.247.172.0/22
45.117.36.0/22
103.254.132.0/22
114.134.0.0/20
116.90.76.0/22
124.248.128.0/20
163.47.240.0/22
202.36.75.0/24
202.37.163.0/24
202.37.168.0/24
202.49.36.0/24
IPv6:
2400:bd00::/32
Signature Algorithm: sha256WithRSAEncryption
cd:43:78:f8:0f:a9:44:91:d9:12:20:be:f4:41:14:c8:f4:d6:
3f:57:fa:51:34:1b:67:07:49:b6:95:e5:11:eb:50:5c:e3:89:
a3:d1:42:63:52:80:65:32:25:0c:f8:ca:b8:4b:97:ed:e5:96:
7c:82:42:ab:fd:5c:ee:b7:a7:d2:e6:53:7a:f6:5e:01:b1:a2:
8f:bf:61:be:3d:b5:49:86:69:07:05:3f:fd:b3:83:1d:0b:d3:
86:33:9c:02:19:b9:4a:14:e3:3b:9b:40:06:47:db:cb:ee:6e:
b2:bd:06:3f:55:8f:f4:1e:a9:21:09:cb:3f:8d:c9:d9:db:11:
83:17:78:ac:f3:74:ed:40:51:d4:ca:2e:dc:64:66:6e:aa:b1:
9a:29:2c:d3:b9:be:73:35:63:bb:f3:2d:4a:f3:3c:15:84:b7:
6a:a3:49:20:5d:e6:ef:1b:53:0a:c5:01:1c:4e:b9:ea:0f:eb:
58:5a:c2:ee:fc:43:d2:f4:d6:0e:68:e8:04:8e:83:42:a6:52:
84:c4:cb:e8:3e:20:8f:33:9b:83:ee:8a:84:8f:1a:3e:c3:ba:
d2:d8:18:a5:bc:d7:d0:75:29:b0:39:24:ee:46:cc:3d:c3:3c:
78:c2:db:2b:50:9f:d2:1d:55:56:09:27:a9:8f:09:96:07:a9:
b7:59:1a:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:02:27 2025 by rpki-client