Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer
File: X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer (raw, json)
Hash identifier: +eYoeoLkBlvjxx4ba0pCniXx4bRfGSrchHDePVV+2ds=
Subject key identifier: 5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022014
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 03 Dec 2024 15:20:13 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 142420
IP: 103.12.96.0/23
IP: 2001:df1:69c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139284 (0x22014)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 3 15:20:13 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A9156255
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:1e:1e:d6:2c:ab:12:1d:40:81:b8:fd:67:98:
3f:5c:83:5b:df:53:d6:5e:b5:ce:70:6f:f7:4d:1e:
1d:9d:17:a2:fd:61:28:03:37:6c:32:e0:cf:5c:97:
c0:8d:64:e2:37:61:fd:fc:90:81:c8:8c:ad:2c:dc:
a5:d7:74:14:6c:e2:d9:6a:07:ed:8c:96:50:9f:cb:
53:17:80:f8:e6:50:44:f1:ac:14:93:5b:a0:48:bf:
ff:0f:39:53:16:f6:cc:8e:42:ff:32:f9:a9:af:e0:
7b:af:1c:d6:54:ab:53:5e:9c:41:e2:5b:e9:66:ee:
a5:8f:c9:2a:b4:ce:8c:11:c7:e1:71:7e:d6:46:9e:
1b:d6:ea:fe:69:d8:f9:8a:2f:b0:c7:a4:8f:6b:fd:
e3:38:7e:61:a9:08:60:1b:4e:16:ee:07:32:8e:d8:
aa:e9:90:a1:af:82:b1:ce:9a:33:9f:70:6f:21:01:
f7:85:39:18:8e:5a:c3:66:94:22:36:fe:17:68:1c:
7c:bf:ac:d4:ed:b8:19:2f:e3:e8:f4:2b:ed:10:ce:
bf:9b:30:91:6b:4f:cc:d8:1b:98:a5:5b:a4:69:59:
4b:3a:6d:52:a7:88:ed:ac:47:84:0c:e5:da:9c:fa:
a3:77:65:8d:90:8e:a4:2c:b8:1d:07:49:c2:e9:3f:
42:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142420
sbgp-ipAddrBlock: critical
IPv4:
103.12.96.0/23
IPv6:
2001:df1:69c0::/48
Signature Algorithm: sha256WithRSAEncryption
43:48:06:bd:af:ff:cf:31:5a:86:23:bf:7e:82:27:5a:6a:20:
26:6d:9c:b5:35:60:6a:6e:df:3b:70:3b:ad:62:38:d9:49:69:
2c:28:bf:63:f9:37:43:26:a8:94:81:15:8b:5c:a3:c2:86:f6:
cf:97:c5:9e:09:79:0a:c6:27:f9:d6:a6:78:c3:db:d4:c9:ab:
f2:50:2e:04:da:18:b5:54:cc:53:8c:f7:35:56:fb:b0:73:fe:
23:5d:de:7e:8a:56:00:32:cb:10:58:19:c3:3b:c9:e3:85:26:
15:05:18:53:d5:c0:c7:52:14:5d:50:89:75:7b:57:d7:de:21:
02:ac:ba:b6:2e:b8:07:b8:d2:89:05:46:31:1a:80:6b:8d:1f:
00:d5:69:c7:91:42:5d:f5:d6:d0:d1:b0:07:77:a9:55:c2:88:
09:b5:a3:35:10:c7:c9:4f:35:0b:28:a0:02:08:ad:fb:5a:74:
82:57:f8:76:48:9d:80:e9:27:f0:d6:ca:31:dc:5c:41:f1:84:
fa:13:2d:0f:f7:ee:50:a2:9c:82:38:c0:43:ef:08:72:ff:ef:
5a:c9:e0:89:75:fa:c2:15:ec:1c:ae:20:17:d3:24:db:fa:18:
a5:ca:c3:d2:4a:e2:cd:7c:32:35:c0:fb:a5:ee:f3:84:c0:1a:
28:b2:47:6d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:08:14 2025 by rpki-client