Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer
File: PykJw_UywAsCV7klbHbroxTc0A8.cer (raw, json)
Hash identifier: I8cN1Db/WzD7cjn7ZedpYgkntp+97NToBPbyCBRyxGY=
Subject key identifier: 3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020823
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 21 Aug 2024 03:00:22 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 150130
IP: 103.191.118.0/23
IP: 2001:df1:c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133155 (0x20823)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Aug 21 03:00:22 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91C71A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:9e:b5:4f:d5:56:ae:83:a3:b3:bd:3b:aa:49:
0b:30:48:0d:bd:e6:8c:0d:17:ef:a3:d0:da:6e:12:
fe:65:fc:35:fc:9e:5e:43:49:b6:76:1c:d9:8c:d6:
29:49:f1:75:40:04:da:b1:81:d6:14:30:d3:de:11:
92:11:4b:08:21:47:00:e1:9f:56:13:5c:ac:a7:e1:
4b:06:aa:db:d6:32:04:9e:78:a2:32:7d:81:a2:fb:
87:a7:3c:3e:76:5f:7f:5d:d7:4e:60:7c:ff:1d:ab:
51:09:3e:93:f5:96:b8:70:83:6c:bf:74:a8:37:72:
9b:85:8a:e7:da:a7:19:4a:0e:aa:d3:47:29:ac:e8:
ac:6e:de:bf:fc:dd:21:31:5c:88:f1:10:da:7d:66:
d3:93:31:45:78:25:55:76:8d:32:4f:7a:72:75:2e:
f0:cf:34:81:56:61:ff:a5:77:21:21:43:6a:3d:7c:
61:b5:c4:4c:c8:d8:c2:c6:0e:0b:e3:8f:0a:0d:cd:
ca:52:18:bc:dc:f3:54:7e:b6:0c:59:fa:07:da:e8:
3b:9b:0c:ca:21:48:14:11:66:d2:eb:71:0a:71:c1:
8a:f7:a4:4b:2e:d1:9c:c6:b1:cc:d6:f5:93:e9:c7:
d8:53:0c:18:2c:37:3d:91:9a:f4:24:18:bb:c8:4f:
2c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150130
sbgp-ipAddrBlock: critical
IPv4:
103.191.118.0/23
IPv6:
2001:df1:c0::/48
Signature Algorithm: sha256WithRSAEncryption
ac:0f:73:cc:6d:3e:b9:4b:b6:4e:8d:9f:ee:fd:ce:6c:7a:fa:
2b:0f:d6:d8:3c:22:8e:ef:cf:b1:c1:68:17:a9:1b:ae:10:7f:
e0:ea:00:2e:39:8f:d9:3b:a4:44:85:d9:bb:6b:d8:6b:f6:28:
01:57:a7:bc:f3:54:ba:c9:ad:a2:61:e1:82:54:9b:be:be:86:
34:b5:37:b9:9d:99:f0:7b:8a:de:54:a8:6b:dd:93:f1:1d:81:
c3:15:f2:c4:5c:e9:d2:27:81:b1:e9:ca:07:67:23:32:9d:7c:
4e:e4:c9:f6:b8:65:84:27:87:e3:91:a7:fb:88:1a:0b:40:ba:
0e:33:d1:58:1b:69:36:f1:34:82:34:31:00:7d:57:4d:04:e9:
37:df:c7:ae:de:0b:95:f7:03:2e:92:bc:93:5b:25:ee:d4:a3:
9c:a4:6f:72:27:c4:90:fc:ff:83:78:82:9b:82:a3:e7:ea:79:
dd:56:97:51:72:02:c4:06:f9:74:5b:f7:1e:63:02:f8:34:30:
a9:f6:c2:2e:4a:18:08:ec:77:da:db:8c:68:ce:32:34:21:57:
3a:a6:28:5c:73:1b:00:18:d0:1a:79:8f:9b:b7:5f:d9:19:47:
78:45:75:63:94:ff:de:63:29:57:c5:33:28:0c:c5:b5:b7:8f:
26:9b:e7:89
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:09:17 2025 by rpki-client