Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRzJhRGOMuB6FVTV6boLTNKKSu8.cer
File: QRzJhRGOMuB6FVTV6boLTNKKSu8.cer (raw, json)
Hash identifier: M/eZ8elwCAfqZta0jCXrxcF/05uQru0bkafcGy3H0Xs=
Subject key identifier: 41:1C:C9:85:11:8E:32:E0:7A:15:54:D5:E9:BA:0B:4C:D2:8A:4A:EF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022987
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BEE0F/5E11148E9BA911EDA33EEC6BC4F9AE02/QRzJhRGOMuB6FVTV6boLTNKKSu8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BEE0F/5E11148E9BA911EDA33EEC6BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 15 Jan 2025 18:31:34 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 139893
IP: 103.146.176.0/23
IP: 2001:df5:4380::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141703 (0x22987)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 15 18:31:34 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A91BEE0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:24:2f:b3:9c:b0:1b:84:67:c0:19:e4:2f:8a:
79:b9:be:9f:f6:10:9c:0d:80:5e:02:90:fb:42:61:
fc:67:c7:43:42:37:b7:71:be:e8:38:eb:24:8a:53:
d2:59:c7:20:99:5b:25:4e:e8:c1:b8:4a:51:f8:96:
28:a8:74:38:1d:a9:ff:74:5b:20:ae:fe:69:2d:55:
c8:1e:f3:9d:5a:33:25:51:43:2e:8b:59:5b:11:ef:
b9:85:48:5b:78:0f:1f:c2:18:1a:b0:3a:3c:ef:b5:
5f:a7:b7:ab:f3:55:9f:03:7c:6c:0d:ab:26:c8:77:
c7:00:95:f7:45:45:39:cb:1f:79:2b:42:b2:58:45:
25:f6:eb:46:04:d3:49:41:f9:d1:ec:d0:0f:a2:86:
f6:e6:e4:4d:8d:88:f4:ed:bd:18:9e:8b:67:7b:0c:
71:9d:bf:28:e7:01:fe:75:6b:49:83:c2:43:70:ef:
9f:bc:68:ec:14:14:9a:ba:2d:bc:30:4b:9f:bc:d1:
42:90:c8:73:55:f6:a0:b5:6a:f1:cf:fc:15:17:2d:
86:5f:17:c8:4e:9b:a3:a3:1a:a0:6b:b6:65:a5:a0:
7f:ac:6b:26:a3:69:e3:1b:c5:44:bf:38:73:b7:28:
22:86:8b:db:44:60:e1:9c:2f:42:c1:4a:ec:7f:0a:
aa:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:1C:C9:85:11:8E:32:E0:7A:15:54:D5:E9:BA:0B:4C:D2:8A:4A:EF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BEE0F/5E11148E9BA911EDA33EEC6BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BEE0F/5E11148E9BA911EDA33EEC6BC4F9AE02/QRzJhRGOMuB6FVTV6boLTNKKSu8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139893
sbgp-ipAddrBlock: critical
IPv4:
103.146.176.0/23
IPv6:
2001:df5:4380::/48
Signature Algorithm: sha256WithRSAEncryption
74:a4:80:1e:0b:58:53:15:91:67:9e:25:cc:40:6c:b0:2c:51:
f5:5e:cb:b3:44:7d:f1:37:00:fc:2a:80:db:89:66:9c:9a:b6:
69:41:d8:b9:e2:bf:a3:84:11:cc:33:48:28:56:3b:e0:4f:7a:
7c:c2:64:d3:09:c7:30:3e:f5:73:bc:2d:0e:ab:fa:e3:ae:91:
ac:b9:4a:d6:fd:ec:57:ba:54:60:45:51:33:f5:fd:b5:9a:6b:
10:be:38:1f:b7:ae:ab:de:f7:b7:24:c9:d3:41:26:c6:72:8a:
3a:33:c8:5e:5f:ad:10:17:19:3f:a4:28:33:3a:f5:dd:20:79:
89:3f:83:f4:c8:54:53:f7:09:ef:03:ac:6c:74:53:cc:d4:c7:
22:42:64:62:b4:54:d3:b2:cd:4f:ac:98:81:e9:eb:9b:fb:38:
76:44:3f:5b:30:35:90:c8:18:3f:91:8f:3f:bd:3c:15:b0:83:
e9:a6:c4:e9:b2:8e:f4:cf:37:bd:47:1a:45:4d:32:01:5e:5e:
a8:21:4b:22:17:16:fa:98:e8:cc:8a:02:3e:1e:e8:8d:98:f7:
6f:f2:96:9a:59:99:97:5f:28:17:77:81:f7:db:0e:31:fa:5b:
80:06:a1:3f:d2:d0:2d:1d:53:ed:5d:95:ac:fe:9e:e7:e9:34:
6a:3a:e0:47
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:47 2025 by rpki-client