Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.cer
File: Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.cer (raw, json)
Hash identifier: uZYFMHVS8dzyhkSm1WfsOtaQbudOa/SpJuMTICVVTkE=
Subject key identifier: 43:82:F9:AA:30:16:FC:BF:31:F9:24:CF:13:2E:95:BF:92:70:9A:DD
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021CF6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 22 Nov 2024 12:41:55 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 151986
IP: 43.248.56.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138486 (0x21cf6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 22 12:41:55 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91237A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:60:77:81:55:91:8d:42:3b:07:a0:f4:c2:21:
9c:fb:c8:12:db:b5:b9:45:b6:c9:cd:ec:5a:87:d7:
11:83:1d:b6:f3:22:a2:23:f3:18:af:86:d1:0f:2d:
44:2f:17:eb:cc:3b:74:cc:e2:e7:89:fe:39:e2:2e:
c5:5f:81:c6:3f:fc:b5:3e:5d:54:24:47:43:58:c2:
d9:17:88:10:bc:0e:57:94:59:9e:19:6c:7c:17:ff:
f5:37:21:76:83:48:cc:39:fb:8f:9c:a4:f3:08:80:
2c:bf:13:30:74:85:70:fe:a4:20:2f:a2:0a:2e:d7:
83:6c:26:3b:47:1e:c0:7f:94:9d:90:1b:8b:72:04:
f6:8d:cc:c8:b7:2d:53:d0:d0:44:5f:0a:42:0a:00:
f0:6f:8b:0c:da:60:0c:14:95:ce:35:af:21:af:59:
4a:92:ba:d4:66:fb:20:32:46:87:1c:00:84:e0:55:
78:d3:f9:8b:14:ff:7f:91:c6:1d:7d:3d:71:a5:f8:
18:f6:f2:71:d9:4d:88:d3:08:cb:7c:06:98:7e:a7:
b2:70:44:78:62:69:b9:57:bd:26:0e:20:cb:08:36:
2c:fc:c2:13:e4:ae:a1:dc:86:bc:40:fa:86:0d:85:
2c:87:66:fd:d7:19:e0:bc:f1:49:71:76:07:eb:41:
76:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:82:F9:AA:30:16:FC:BF:31:F9:24:CF:13:2E:95:BF:92:70:9A:DD
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151986
sbgp-ipAddrBlock: critical
IPv4:
43.248.56.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:3c:3d:dd:0a:64:fd:bb:ba:63:67:3e:9e:5a:ae:e1:8a:b1:
55:62:5e:44:f0:4b:62:3e:1c:f7:0c:de:22:a6:8d:a1:f7:06:
52:38:f0:03:53:fe:4f:36:2a:06:cf:67:d2:ba:54:7a:ab:7c:
d5:da:c5:f5:ee:9b:fb:f8:84:6f:53:2d:5c:56:ab:0f:a0:cf:
8f:31:6a:88:11:c7:e5:c9:ee:c0:0a:11:b9:48:e4:f8:38:3b:
e5:4d:ba:39:3a:13:b3:33:c2:11:a0:57:68:de:de:11:35:ce:
f5:6d:c1:e4:19:2b:71:bf:a7:8b:65:22:f3:b7:64:c0:58:b8:
ed:66:a3:8c:c3:2f:bd:99:c9:f1:b9:69:85:e9:57:8e:ec:28:
80:e9:6d:c6:b8:2b:b0:80:85:c4:79:6b:dc:1d:98:7e:10:6b:
31:84:b1:24:2d:f8:65:a3:b9:c7:25:de:fc:6e:22:95:94:f6:
35:09:c7:24:35:dc:95:2b:28:97:68:bf:28:dc:c5:50:97:0e:
4f:51:35:1f:ad:0e:62:42:55:4b:db:b2:b9:5a:c5:a7:46:ff:
3d:0f:cc:7c:61:ec:35:ca:81:05:6b:18:06:48:bd:47:8d:9d:
23:a6:16:43:ab:9e:c0:90:4d:7f:77:74:36:75:96:78:72:11:
3c:9d:a1:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:09:00 2025 by rpki-client