Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.cer
File: Vq8c0LTgfQAMZKsBbDP3hqDdkPo.cer (raw, json)
Hash identifier: mD4pnScOZ+jQ0bQ3CtoYMbsHlTA4kngtznAwjO6sArY=
Subject key identifier: 56:AF:1C:D0:B4:E0:7D:00:0C:64:AB:01:6C:33:F7:86:A0:DD:90:FA
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0201FA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 24 Jul 2024 14:31:28 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 135604
IP: 103.68.4.0/22
IP: 2405:de80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131578 (0x201fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jul 24 14:31:28 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A914F22A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:bb:c7:8c:80:9d:b5:1c:5d:68:bb:22:a5:18:
bc:f5:69:3d:4c:f4:3d:c2:ac:95:6b:20:39:63:30:
8c:66:12:01:53:bc:a9:a7:c4:86:85:ff:78:17:c4:
6a:53:e8:94:c0:b7:0d:ba:91:d6:56:ee:57:ba:30:
01:88:ff:7b:84:79:e6:89:4d:10:4e:80:87:c5:7f:
50:dd:6f:a0:71:01:55:e4:c8:df:88:38:ed:b5:2f:
81:16:0c:ab:9e:40:a6:ca:ef:d2:eb:d4:cf:03:0e:
c4:cd:68:3b:71:84:8b:d6:22:49:fc:6c:c0:de:3f:
9d:3e:23:c8:6b:ac:79:c6:8e:fe:30:6a:55:21:35:
69:4c:fb:69:73:65:28:96:15:8f:fa:26:82:52:b4:
ad:83:ce:9a:41:76:d0:c5:3c:99:b1:a7:1d:fe:7b:
1c:4b:9c:bd:65:ea:fb:d0:10:e0:42:46:3a:08:d2:
a0:1d:9d:0f:ca:52:3c:8b:61:fa:76:3a:e3:2a:9b:
d9:d1:bc:a8:39:66:11:b3:5d:19:4a:8b:43:c3:07:
71:0b:e9:94:35:96:9d:eb:48:f5:20:91:a5:6e:3e:
05:e4:a6:67:42:e6:bd:42:a1:38:94:13:c2:2c:8b:
20:12:c5:63:53:18:95:bf:45:b7:9e:ea:a5:f2:92:
f2:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:AF:1C:D0:B4:E0:7D:00:0C:64:AB:01:6C:33:F7:86:A0:DD:90:FA
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135604
sbgp-ipAddrBlock: critical
IPv4:
103.68.4.0/22
IPv6:
2405:de80::/32
Signature Algorithm: sha256WithRSAEncryption
7e:e2:f4:79:f6:df:ce:67:b9:ec:22:c0:c8:77:aa:96:93:aa:
c6:39:c0:e8:db:d2:a4:16:d6:cb:20:3a:0b:0f:f6:de:be:c4:
4f:6c:11:67:b2:9a:ff:4f:eb:af:3b:fd:f3:c8:91:30:55:a3:
9a:24:21:27:64:38:ce:fc:80:fa:c2:71:1d:f1:c8:cf:31:95:
94:ee:42:a0:1d:f0:3b:9d:31:78:cb:f4:3b:33:40:4e:6a:7d:
16:4a:15:a0:d9:3b:b0:60:00:e9:8a:56:d6:8d:3a:f1:6f:55:
32:eb:51:f4:b7:20:05:54:12:4c:88:67:2d:ef:b4:e6:60:a1:
16:b7:d6:42:88:94:e4:70:28:0f:96:42:3c:63:50:28:f8:7b:
85:ae:d9:28:4b:48:d0:91:c7:15:30:99:2a:2e:b9:8d:31:ae:
9a:2d:69:f3:a8:9b:32:45:26:8d:cc:9d:7b:94:28:6b:70:cb:
c7:0e:4b:f6:97:e1:6d:a9:e1:0a:16:65:b7:78:25:04:57:68:
51:51:fa:8b:e7:66:da:de:1a:c6:1a:99:db:09:2c:6e:ee:42:
ec:47:c9:41:3c:bd:9c:a0:ea:6d:38:5c:96:aa:a6:53:3d:77:
8d:33:92:77:c8:b2:03:2a:1b:cf:c2:ed:7d:19:4f:de:7e:fa:
69:de:6f:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:02:58 2025 by rpki-client