Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer
File: Qyo25tVwCwvKzOD0FXauaxPK08A.cer (raw, json)
Hash identifier: 5TD/QpAPTC2PUvRjUe99VHYinAhX+2cXbBRvZ2Kunq8=
Subject key identifier: 43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022083
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 04 Dec 2024 15:43:46 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 152097
IP: 203.99.150.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139395 (0x22083)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 4 15:43:46 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91627B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:95:c3:7c:fc:bd:0b:53:63:91:ab:27:2b:40:
32:48:93:b1:fd:00:86:85:8d:4a:34:3f:cd:ec:7d:
4a:1b:2c:3b:9a:73:35:d4:d5:7f:8f:9b:67:12:80:
7b:1b:1f:0a:9e:49:51:0a:be:ce:02:b9:b4:4a:44:
8a:f8:c0:c8:1c:a7:63:c0:12:ff:0e:16:82:fa:c3:
52:35:a4:e3:de:8b:10:99:f4:88:b2:27:ad:57:81:
8e:8c:1a:ec:8f:36:03:14:0f:5c:1e:dd:73:08:4e:
b4:b6:cb:f3:36:09:4c:07:ce:53:74:cf:cd:0b:c6:
f1:3d:b3:f6:0c:6b:35:98:c1:ef:47:bc:96:dc:16:
ce:2a:fa:a6:f6:4a:57:7f:e7:ae:3d:fb:96:a9:b8:
9b:cd:4a:2e:f4:f4:d3:a6:fd:7e:0b:43:25:df:27:
ac:62:20:6d:8d:0b:60:b0:e6:f9:b4:8d:18:5c:61:
a9:0a:d6:a4:57:40:c8:8a:f4:99:d5:b0:4b:32:38:
84:b8:4e:23:1d:54:fc:b4:54:78:65:9c:fe:09:63:
17:f4:50:3c:22:4d:ba:67:1a:5d:6d:30:ae:41:65:
02:3c:4e:08:3b:35:a0:c8:a0:19:42:f1:d3:9b:f0:
c3:65:eb:e6:2d:0e:30:a8:ac:16:61:41:86:5c:64:
c1:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152097
sbgp-ipAddrBlock: critical
IPv4:
203.99.150.0/23
Signature Algorithm: sha256WithRSAEncryption
af:c2:f5:f7:ef:1d:c8:56:5c:31:9d:b4:c0:87:33:34:a5:d3:
05:da:a2:e4:ce:22:48:6b:e4:de:76:83:79:63:56:e5:28:20:
7e:8b:f1:27:53:33:47:ac:79:46:98:c4:a2:2f:0b:f0:f1:17:
ae:cd:ef:d7:ba:c1:c0:c6:18:c6:67:b6:cf:70:65:f4:0d:a8:
44:1b:32:e6:83:f6:8d:cb:dc:d3:36:b0:5b:2e:ca:e5:5c:5b:
22:9d:45:c4:5c:30:b8:ee:e7:33:af:85:15:28:83:44:cc:b9:
51:45:a3:dd:f7:f8:8d:d0:86:83:99:79:e0:99:72:f0:f4:d2:
28:17:9d:f2:07:0d:64:9f:87:11:5c:c2:2b:60:6a:91:52:ff:
34:cf:87:85:58:f3:1b:66:fe:e8:cf:72:2d:17:c4:89:23:8e:
dd:e8:bc:80:78:24:1a:a3:07:73:1c:cf:b5:84:a2:01:5d:34:
08:bd:af:ae:f1:49:f8:9b:50:43:07:31:3c:2c:28:cd:c6:8b:
c5:b8:91:87:f7:8d:68:27:b6:8b:13:d5:3b:d5:2d:74:82:50:
be:c4:83:06:20:06:40:f1:fa:e2:d6:0f:c2:c4:37:0a:a3:de:
71:82:86:d1:aa:d3:34:21:cb:50:31:22:75:6a:ff:b9:9c:84:
0f:e5:e1:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:44 2025 by rpki-client