Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PBjNi1sB1QI3ZAwmwDd1RtgE_bQ.cer
File: PBjNi1sB1QI3ZAwmwDd1RtgE_bQ.cer (raw, json)
Hash identifier: Y3rt8FBMMlqzWxmosqZckeDm2nds6xkS8NexabrT1qQ=
Subject key identifier: 3C:18:CD:8B:5B:01:D5:02:37:64:0C:26:C0:37:75:46:D8:04:FD:B4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021A3E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911829D/5125526E9C6D11EF83A8BD16C4F9AE02/PBjNi1sB1QI3ZAwmwDd1RtgE_bQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911829D/5125526E9C6D11EF83A8BD16C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 08 Nov 2024 12:30:25 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 151956
IP: 202.61.80.0/23
IP: 2401:4420::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137790 (0x21a3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 8 12:30:25 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A911829D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:5c:77:d9:02:38:7b:98:f4:fb:c1:e4:e2:c1:
c4:ca:00:8a:d2:d7:88:2c:90:1e:e6:36:d8:04:e1:
6c:0f:a6:53:df:04:c1:c2:a8:82:0c:82:7f:a1:d7:
df:91:b2:b2:cd:cd:81:8e:81:fe:ef:00:e2:ae:45:
72:7e:4c:ad:0a:a2:d4:57:a8:0d:53:ca:b0:b0:c5:
f3:a1:48:aa:0d:3f:9a:22:d2:71:a7:84:6a:ad:2c:
3a:d5:eb:99:d3:ee:1f:29:26:32:ee:e2:a9:a0:1d:
30:f6:47:57:92:fd:dd:f2:12:56:7c:4a:55:43:2e:
df:19:fe:b4:20:e7:3f:2e:67:0d:2b:67:32:5a:04:
a2:d1:00:27:ad:1b:4f:3e:c0:67:80:36:a9:34:17:
11:3b:59:ca:cb:39:1f:ab:d4:dd:29:c1:0f:c4:50:
8c:2a:0a:e7:f1:f9:5f:22:54:31:c3:28:e2:41:50:
da:8a:f0:80:68:f8:b9:6c:68:af:73:e6:0b:ae:aa:
76:0b:30:e4:27:c7:ee:b5:71:c2:a1:ae:33:ae:9b:
08:57:e6:a1:88:3f:b9:dd:b5:46:9e:95:64:f3:9d:
a8:28:bb:f1:9d:58:90:27:16:a3:57:b7:0e:de:a8:
a0:33:6f:b7:4a:e9:40:95:c0:77:48:fd:f1:5c:10:
92:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:18:CD:8B:5B:01:D5:02:37:64:0C:26:C0:37:75:46:D8:04:FD:B4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911829D/5125526E9C6D11EF83A8BD16C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911829D/5125526E9C6D11EF83A8BD16C4F9AE02/PBjNi1sB1QI3ZAwmwDd1RtgE_bQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151956
sbgp-ipAddrBlock: critical
IPv4:
202.61.80.0/23
IPv6:
2401:4420::/32
Signature Algorithm: sha256WithRSAEncryption
30:22:53:ae:ae:85:5a:ff:0d:cb:dd:af:9b:37:b8:fd:f8:77:
8c:ae:b5:c2:dc:be:8b:09:e1:5f:22:6d:33:aa:a3:6f:a4:67:
01:c8:5f:71:79:21:2e:bf:c0:be:08:d3:29:e3:0c:de:a7:0b:
9d:f4:ba:79:ba:57:6f:68:5e:71:ab:11:34:a4:92:2c:64:d2:
cd:d7:6f:6f:5b:a8:1f:28:84:36:02:c2:ce:02:45:f3:03:28:
e9:21:e8:9b:6e:2a:fe:1c:a5:b4:7f:82:4b:aa:fd:cf:b8:51:
ee:ea:23:b4:09:db:be:e1:d0:38:8b:6c:8a:a9:95:89:38:71:
d1:3b:7d:7b:d3:80:23:19:ae:da:96:a5:15:41:97:5c:5d:46:
74:53:0e:d6:81:a6:79:8a:05:ca:08:2a:c3:09:40:37:cb:2c:
62:8c:5c:61:d3:ca:6b:9f:ac:12:1a:ca:11:a9:7d:e2:63:38:
96:95:17:19:28:bc:53:16:70:8d:89:48:44:94:a7:89:69:cc:
0a:b1:c7:13:52:b3:c4:30:fc:a2:7c:33:9d:72:a3:14:d3:08:
cd:3c:c2:25:0d:e6:c6:da:33:75:d5:76:4c:7c:b9:06:61:ef:
6e:be:b8:a6:0d:a6:0a:fd:9f:77:6b:00:50:26:74:b8:20:68:
af:d8:6c:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:04:17 2025 by rpki-client