Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer
File: XK9B9ks3Umh5jipdqgwUAADNdHM.cer (raw, json)
Hash identifier: skwjJFJFqs0t1T9Wtm34QIpEYL+FMXuGaH7UKfZPv2E=
Subject key identifier: 5C:AF:41:F6:4B:37:52:68:79:8E:2A:5D:AA:0C:14:00:00:CD:74:73
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020843
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 21 Aug 2024 20:46:21 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 137972
IP: 103.146.24.0/24
IP: 2001:df5:d700::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133187 (0x20843)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Aug 21 20:46:21 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91ED73E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:12:03:8e:e5:e4:1b:d1:7e:19:85:4e:36:82:
ff:b3:13:8a:f3:27:95:22:20:57:06:d7:a7:6b:a8:
94:10:2d:4d:1c:da:68:ae:a1:1f:3d:90:60:9d:cd:
76:10:84:82:ae:31:f0:00:a4:f6:b0:e1:8e:d5:ef:
31:4c:73:f4:fe:d5:1e:13:17:fe:bc:6b:e0:0f:cf:
e8:49:4f:7b:c6:86:11:d1:84:83:e7:20:ce:a7:c0:
c0:05:76:60:0f:f6:11:fc:bf:a9:80:a7:da:30:36:
19:c8:d0:a0:28:03:ed:59:eb:48:83:52:36:b0:4c:
3d:8e:be:14:25:50:e4:30:74:ba:6c:19:bc:c0:59:
fe:56:a9:3b:6e:d7:97:3f:26:8a:71:0a:46:2c:8e:
93:09:9d:a4:36:16:eb:5c:5b:3b:69:b2:d0:80:af:
81:14:c6:b5:5b:ab:a7:9f:88:d5:22:ce:3f:5d:27:
b0:44:47:45:32:92:cd:a6:a1:c3:d5:44:35:ef:07:
87:a6:4f:68:e5:4f:9c:4d:50:29:91:80:a4:cf:4f:
9a:8e:4d:eb:04:2b:ea:ef:4f:09:35:40:3c:22:72:
82:f5:cd:d3:63:52:f9:33:2b:82:4e:d8:f6:bd:c5:
57:0c:3a:05:63:e3:fb:84:fe:6b:dd:e3:e9:f1:c0:
52:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:AF:41:F6:4B:37:52:68:79:8E:2A:5D:AA:0C:14:00:00:CD:74:73
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137972
sbgp-ipAddrBlock: critical
IPv4:
103.146.24.0/24
IPv6:
2001:df5:d700::/48
Signature Algorithm: sha256WithRSAEncryption
a3:c7:de:96:95:9b:4c:6d:ec:81:ff:8a:ad:82:59:6c:1a:03:
8e:60:39:3d:a3:57:45:2f:dc:08:c8:3b:3a:7c:1a:da:02:9d:
8e:93:c1:88:83:19:0d:5a:d1:a5:d2:df:4d:c8:9d:16:b5:8e:
6f:ac:76:50:8b:af:99:15:2a:c9:21:52:dd:1d:15:59:0c:a4:
ea:3f:06:66:4c:fe:c5:64:5f:df:2a:27:d5:65:3c:95:fc:e0:
31:46:38:8e:d3:2f:de:b8:4a:3b:2f:bb:a8:34:0c:7f:66:98:
52:d9:de:91:8d:dd:5e:6e:2c:8e:f0:3e:d2:95:d0:c1:84:6c:
aa:8a:aa:84:4d:b4:cd:15:54:ab:cf:d3:bc:76:86:41:d1:a3:
2d:e3:72:80:8f:ad:5d:a7:2a:52:2e:6e:05:c8:11:b8:cf:28:
f7:e6:bb:17:a5:a0:30:b7:d9:09:f1:3d:a7:89:9f:e5:8d:5d:
16:5e:25:ac:d5:04:10:f2:62:3a:8c:79:c3:03:50:13:48:af:
24:96:9d:4c:1f:37:57:d3:d3:bc:ce:64:2d:f5:c6:01:31:74:
9b:cf:99:20:5e:8f:ae:0c:5d:d4:17:fa:f5:10:55:0a:be:d3:
bf:b5:9e:e9:2f:57:4a:aa:d0:a3:7f:60:52:69:5d:93:b3:d2:
36:f0:ac:b5
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:16:01 2025 by rpki-client