Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TC5icWMgr9SgFwBna-i_kmT0XkI.cer
File: TC5icWMgr9SgFwBna-i_kmT0XkI.cer (raw, json)
Hash identifier: WUCJMRg14M5bksEHRXq330e3BG7lvyDhS5kcZg9z9ck=
Subject key identifier: 4C:2E:62:71:63:20:AF:D4:A0:17:00:67:6B:E8:BF:92:64:F4:5E:42
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022298
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A10E4/449868FCB88511E7A482891AC4F9AE02/TC5icWMgr9SgFwBna-i_kmT0XkI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A10E4/449868FCB88511E7A482891AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 13 Dec 2024 16:30:24 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 137042
IP: 103.102.222.0/23
IP: 2406:93c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139928 (0x22298)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 13 16:30:24 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91A10E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:37:d2:d3:02:3c:1c:e0:56:48:60:e7:54:97:
7e:08:ba:cc:c2:c3:30:f5:fe:bf:e9:8b:e3:a5:89:
19:fe:4a:f7:4a:cd:6a:58:0a:8d:0f:3b:b4:4f:f2:
b6:e8:7d:6d:22:29:d3:c3:af:a2:f4:0e:ec:c3:46:
b2:bc:58:97:44:aa:eb:36:d4:21:00:41:8d:01:63:
1a:d0:b8:3a:c3:37:e8:d0:b8:30:ba:21:ec:2d:29:
c5:93:b2:fb:b1:39:9e:ae:9d:dd:18:2f:a7:8d:38:
30:eb:3f:b0:79:6f:8b:93:78:19:fd:91:18:c8:bf:
61:64:0b:44:84:42:87:53:66:15:9e:ea:da:02:cf:
93:5f:82:9c:34:08:84:8c:c5:c7:a4:06:ec:c0:8b:
a4:73:80:37:3a:70:aa:9f:51:83:b3:5d:02:a6:51:
28:39:fe:35:3a:ce:6f:a4:91:08:28:76:20:44:aa:
94:23:b6:a8:74:19:26:55:b5:a0:60:fd:89:08:bb:
a0:53:bd:51:05:fa:01:fb:53:28:1b:f9:00:e0:21:
d3:e2:6b:37:5e:b8:0e:72:bb:ca:46:02:78:a9:9f:
b0:4b:87:96:c2:80:6f:43:a8:33:b6:cb:e9:e8:e0:
43:68:9e:e1:27:01:10:55:e6:f0:5b:ec:10:9e:1b:
a4:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:2E:62:71:63:20:AF:D4:A0:17:00:67:6B:E8:BF:92:64:F4:5E:42
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A10E4/449868FCB88511E7A482891AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A10E4/449868FCB88511E7A482891AC4F9AE02/TC5icWMgr9SgFwBna-i_kmT0XkI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137042
sbgp-ipAddrBlock: critical
IPv4:
103.102.222.0/23
IPv6:
2406:93c0::/32
Signature Algorithm: sha256WithRSAEncryption
ad:67:30:85:d5:23:a2:68:91:ba:5b:76:f9:a3:e9:0b:1e:3b:
ee:5f:96:cc:bd:0b:e5:67:55:ee:eb:7b:18:b2:7f:d9:92:8b:
b2:35:23:7b:f8:77:d9:8c:c5:9a:e4:d1:cb:19:be:d5:2e:bb:
7a:cc:d7:59:5a:3e:63:8c:1a:e1:4a:fb:3c:3e:34:8e:0d:a7:
6f:98:f9:72:bf:21:65:f5:d0:7c:6e:b2:9e:42:75:68:00:a6:
7a:68:7c:63:ab:bf:92:15:45:b6:d6:97:9e:5c:8a:70:f4:c9:
1b:64:56:1c:3a:16:99:7c:29:49:84:e1:29:54:00:f3:dc:02:
3a:1e:4f:cc:54:ee:0b:90:3b:be:07:25:db:60:58:48:cb:60:
72:56:6f:84:0c:a7:b1:ec:d7:b1:c7:29:3e:4d:e2:32:9f:06:
b6:a4:b9:b1:a4:f4:7e:8e:cb:af:a2:c8:7c:5a:1b:0e:44:5b:
d4:94:57:56:50:55:8d:85:80:b4:0a:1e:01:85:5a:32:64:4d:
a0:99:b4:fa:3f:77:5d:10:73:ea:7e:fb:41:8d:49:cd:18:7c:
e9:b3:36:f0:13:0b:0f:3c:06:69:6d:a4:64:dc:f8:77:e1:0c:
d7:30:49:98:df:4d:a8:9d:97:19:6a:21:1e:9f:4f:61:58:52:
89:6b:a4:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:29:35 2025 by rpki-client