Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.cer
File: S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.cer (raw, json)
Hash identifier: H9jkUsCghZIVbNdQ2qiw67tp7Z5aYAdPckfALEUHaYs=
Subject key identifier: 4B:E1:07:39:36:25:2E:3C:F0:72:F9:89:D7:FD:C4:E7:E7:C6:62:74
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0244CC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 07 May 2025 18:15:20 +0000
Certificate not after: Mon 31 Aug 2026 00:00:00 +0000
Subordinate resources: AS: 153853
IP: 163.227.238.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 06 Jun 2025 05:39:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148684 (0x244cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 7 18:15:20 2025 GMT
Not After : Aug 31 00:00:00 2026 GMT
Subject: CN=A918E269, serialNumber=4BE1073936252E3CF072F989D7FDC4E7E7C66274
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:b1:ab:55:76:2a:e4:2a:26:4b:c5:de:4e:eb:
45:2d:3f:68:98:d0:6c:82:30:6a:ce:22:ec:f7:b1:
5a:72:83:15:cc:04:d6:20:24:e9:d6:2f:4c:58:72:
38:78:3b:52:2e:60:a0:0e:e8:63:f3:bc:c3:be:ca:
1e:a8:64:38:14:ac:69:4a:6f:6d:21:1e:95:db:ad:
27:1f:ca:86:05:51:87:94:87:69:b4:8d:96:ed:3a:
7b:6d:eb:57:57:8b:3f:3c:af:53:b7:ff:27:3e:07:
e0:98:8b:d0:48:df:ce:90:01:5b:18:2c:81:7e:e7:
5f:b7:19:30:62:14:cb:ac:87:b4:db:69:53:21:5b:
a1:b5:b9:07:24:14:3a:30:73:cd:cb:c5:8e:e6:3d:
09:97:db:2b:cc:2e:1b:34:f7:57:89:7b:b1:ed:f7:
65:54:d0:59:d9:79:3b:32:fc:8a:ad:bf:3f:59:9c:
3d:66:5a:b5:a5:47:c7:be:d9:95:2b:05:bf:6e:92:
b8:9c:59:4a:88:57:28:ca:d7:5d:59:69:86:31:77:
1d:cc:6f:d5:f3:03:6c:2e:98:7a:35:cf:e2:9d:c5:
5a:73:66:93:1c:b6:3c:a2:72:30:a1:90:73:5a:7e:
a0:8d:9b:6f:b1:94:70:55:a0:2b:00:d9:f2:61:3e:
8f:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:E1:07:39:36:25:2E:3C:F0:72:F9:89:D7:FD:C4:E7:E7:C6:62:74
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918E269/393BA8CE2B6F11F086ADE54EC4F9AE02/S-EHOTYlLjzwcvmJ1_3E5-fGYnQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
153853
sbgp-ipAddrBlock: critical
IPv4:
163.227.238.0/23
Signature Algorithm: sha256WithRSAEncryption
28:b6:03:c9:e1:6c:bd:c0:18:6e:eb:9b:02:f1:28:95:69:45:
01:e0:bb:c7:43:eb:06:cc:06:1f:4d:66:ca:17:bc:1b:28:70:
f9:fe:f1:48:bf:bf:02:8e:22:52:cd:fd:98:26:39:b3:6d:1e:
80:73:7b:8c:f6:3b:58:cd:aa:90:c3:2a:d9:3a:75:19:d4:05:
40:af:b9:11:e7:12:21:ed:49:2e:71:7d:45:bc:3b:86:f8:df:
b3:ad:e1:fd:d1:f7:97:e6:03:df:d4:27:58:87:09:29:0f:23:
3d:91:0d:9d:96:bf:87:7f:3c:09:5c:21:f9:1e:db:cf:0c:cf:
02:a2:9f:05:30:c6:23:06:a0:9b:8a:8d:f4:dd:7c:b9:b3:f4:
d7:41:5a:2f:4c:8a:16:9e:a9:9d:b0:b9:59:cf:ff:99:82:3c:
59:2d:7c:e6:b7:25:d4:af:26:3a:85:a9:27:7b:17:94:b0:76:
5c:e3:de:c6:e9:24:19:6a:b3:20:c1:81:25:b1:9d:4c:a2:02:
95:21:b4:13:82:33:ef:f0:83:3a:cf:7b:c6:93:25:c8:09:44:
1e:6e:f2:63:e4:01:26:d2:57:45:1e:93:f2:fd:2b:15:10:c9:
3d:da:de:94:b1:05:81:48:30:9a:b0:65:84:c3:59:aa:ed:b0:
a8:ab:9e:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 30 08:15:01 2025 by rpki-client