Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S-1YvEVE5-O16XicZ8Y77JHCfN0.cer
File: S-1YvEVE5-O16XicZ8Y77JHCfN0.cer (raw, json)
Hash identifier: pCRIclUA+2TqIcDLvctjueA9CNqsMA6JaGZwn/4ZYZI=
Subject key identifier: 4B:ED:58:BC:45:44:E7:E3:B5:E9:78:9C:67:C6:3B:EC:91:C2:7C:DD
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0202BB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912994F/A029A5261DAA11E29BFC67A608B02CD2/S-1YvEVE5-O16XicZ8Y77JHCfN0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912994F/A029A5261DAA11E29BFC67A608B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 28 Jul 2024 13:16:16 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 58599
IP: 43.225.204.0/22
IP: 103.9.104.0/23
IP: 103.44.150.0/23
IP: 2403:dd00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131771 (0x202bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jul 28 13:16:16 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A912994F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4b:a2:de:c9:58:b2:23:3f:96:da:fd:36:80:
d5:70:df:cc:8c:d0:64:bc:62:cf:2f:a3:47:87:f0:
d3:22:e5:cc:34:03:e7:a3:5d:a6:e7:db:b2:be:54:
93:94:d3:14:0b:92:b0:b4:ec:bc:34:5e:08:b0:22:
b4:94:a8:eb:f0:44:6a:be:61:c7:17:71:e7:ca:f9:
0a:b0:4f:8f:65:e4:f9:93:8c:cc:e6:ed:16:7d:e7:
2f:e2:33:71:87:d8:ad:a2:1d:79:e5:a0:05:74:31:
2a:47:30:6f:69:64:09:03:c4:e2:3f:10:70:25:5e:
66:ba:8b:23:80:b6:39:81:05:8c:1d:20:92:42:27:
cf:37:b7:34:29:3f:7e:f7:90:c6:68:ab:a6:8a:57:
f4:05:51:e9:0d:1b:f3:70:c3:55:dd:5d:d7:11:e0:
39:a5:1f:9d:b8:f3:c5:a5:ca:c4:d1:4c:ed:aa:7f:
f7:8a:c9:3c:67:fb:05:34:c2:39:70:39:4b:30:f6:
a7:d0:99:ff:e6:37:17:86:24:9d:f6:98:f7:5f:8e:
28:8c:30:b1:3b:b2:a6:b8:e4:2c:cb:30:44:a7:be:
55:c7:26:ba:35:16:fa:e3:89:fa:5c:ae:f7:16:ab:
93:4a:c4:c8:df:e3:8d:d3:ec:39:b6:e4:29:98:3e:
0a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:ED:58:BC:45:44:E7:E3:B5:E9:78:9C:67:C6:3B:EC:91:C2:7C:DD
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912994F/A029A5261DAA11E29BFC67A608B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912994F/A029A5261DAA11E29BFC67A608B02CD2/S-1YvEVE5-O16XicZ8Y77JHCfN0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58599
sbgp-ipAddrBlock: critical
IPv4:
43.225.204.0/22
103.9.104.0/23
103.44.150.0/23
IPv6:
2403:dd00::/32
Signature Algorithm: sha256WithRSAEncryption
8c:6e:60:bf:b5:96:35:b0:54:a4:ea:1e:b6:88:85:58:28:1b:
e1:ee:35:c6:4e:48:19:28:31:5f:8e:c2:66:4d:a6:15:3b:af:
27:52:0d:24:fa:ba:a3:08:26:47:78:85:e3:b0:5f:48:49:22:
29:9e:92:04:21:44:bf:b5:f8:c6:f5:16:c1:29:bb:c1:48:b9:
b3:29:ce:f5:2a:46:4e:fe:f8:86:f2:5f:d5:96:78:69:63:81:
c4:01:b3:5c:05:79:20:37:6b:6b:a1:0a:88:68:71:6d:02:8e:
ad:91:60:46:e2:9d:c5:36:56:74:5e:88:67:4d:6d:d8:fc:e0:
58:b0:9c:77:74:17:a2:c9:7a:fa:a6:bb:22:4b:17:69:87:c7:
b5:f2:18:bc:fd:79:ef:af:4d:e3:86:ae:11:00:83:6c:4d:45:
fe:9b:ad:f7:a5:af:6a:a7:25:77:99:cb:62:94:dc:48:bb:5f:
2c:1e:9c:d2:93:03:b4:37:f4:f5:8a:4d:71:d9:d4:a3:4d:37:
df:2d:84:0c:48:44:d0:da:ba:87:70:27:02:73:88:0f:af:ec:
f5:2a:af:e6:fc:e6:03:a9:31:6a:b8:28:69:75:3c:a4:1a:df:
58:1f:6b:d1:95:62:d8:0e:aa:03:96:ac:a4:4c:72:73:ab:b3:
ee:c8:ca:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:15:55 2025 by rpki-client