Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer
File: QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer (raw, json)
Hash identifier: yKmeS2KeB91bRdHiOHPoc+lE7R49wfLGnelRm9j7U44=
Subject key identifier: 41:E3:80:A0:C9:FA:BC:C1:0F:8E:A3:29:63:52:E6:A7:87:8D:35:3B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020BFC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 04 Sep 2024 21:56:24 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 141032
IP: 103.155.22.0/23
IP: 2406:6240::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134140 (0x20bfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Sep 4 21:56:24 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91F4F4C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:49:0a:b6:3b:ad:60:c8:7c:4b:91:62:78:51:
45:86:b8:8e:92:63:83:99:a1:25:1f:b4:78:6f:ca:
20:d2:ae:c9:86:31:9a:84:bc:a1:f3:a2:2c:78:ea:
f7:4c:da:41:43:20:69:76:d7:68:a6:35:aa:c1:d9:
3b:32:d9:47:ca:af:ac:74:b8:80:91:38:aa:0c:85:
ad:4e:a6:11:0f:9f:06:43:60:bf:2b:b2:cc:85:d0:
11:12:7c:10:b0:9e:c8:41:f3:0e:87:08:2b:17:f0:
a7:06:02:78:52:7f:1b:93:96:75:49:4f:97:24:d7:
e6:6b:92:a9:e0:ed:20:75:5e:b8:5b:7c:be:cd:86:
bb:ea:31:80:9c:32:57:ee:e1:4e:31:1a:9b:4d:2d:
3e:df:d1:ad:f2:24:83:ee:f0:42:39:ad:4a:52:b6:
f4:30:2f:3a:c0:d1:75:f9:db:e7:9d:fa:ee:42:fd:
59:9b:fd:86:92:99:fd:dc:f0:ee:eb:36:b0:49:28:
3d:c8:5e:52:dd:7d:29:ba:64:35:4a:fd:a1:91:02:
00:77:81:95:75:72:ed:29:72:bf:ed:84:a8:ec:6d:
4a:52:4e:f2:69:de:7d:20:c5:ba:83:7f:ec:7b:2f:
13:d6:6f:53:78:7d:2c:ed:67:e4:00:f6:53:cc:ce:
cc:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:E3:80:A0:C9:FA:BC:C1:0F:8E:A3:29:63:52:E6:A7:87:8D:35:3B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141032
sbgp-ipAddrBlock: critical
IPv4:
103.155.22.0/23
IPv6:
2406:6240::/32
Signature Algorithm: sha256WithRSAEncryption
34:fd:90:39:1e:24:97:c6:dd:7e:1a:78:3b:94:ab:5a:52:39:
02:72:d9:65:48:88:ef:f9:78:28:cb:3b:d3:21:63:51:e4:5e:
4e:33:47:69:79:83:af:62:ee:40:91:29:65:47:39:e1:7e:b9:
77:86:1a:fc:c7:ef:78:d9:d4:57:4d:8d:ca:3d:d7:2a:72:09:
5d:8e:29:e1:35:a4:05:46:c5:90:aa:9d:d9:e7:a5:43:89:a4:
ad:d6:a4:07:db:fe:be:82:c1:d3:50:36:cf:db:1a:83:16:9f:
02:f8:bc:c9:b7:2b:42:fc:93:01:42:aa:a2:78:ce:11:ed:18:
3b:85:5a:34:37:78:6d:b9:2b:01:a1:0e:61:4e:1d:99:a5:a0:
b3:c5:22:7c:89:8e:5e:8d:55:be:b5:aa:c4:68:12:dc:87:65:
eb:c4:9e:4e:6a:06:05:84:a3:75:bc:40:7a:31:2b:54:5b:65:
69:5c:31:37:40:5c:9b:86:dd:7a:3f:8b:c8:be:d3:25:b3:62:
11:6c:b1:bf:a1:ac:a1:75:5d:81:b2:ce:ea:6a:4e:d0:7b:a4:
62:d4:e0:f6:0e:7e:5b:95:fd:b3:9c:86:2d:99:2f:85:65:9a:
a3:8b:65:7e:58:06:b9:43:b4:78:db:db:f3:48:f3:c5:7a:13:
37:c9:54:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:24:09 2025 by rpki-client