Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer
File: XUXapVj_ZfZmNblniAm4rPBAc9I.cer (raw, json)
Hash identifier: hA2jnf1W9TkrLDZ1/7fLpioQb/CEx1/J51INmkAc/E0=
Subject key identifier: 5D:45:DA:A5:58:FF:65:F6:66:35:B9:67:88:09:B8:AC:F0:40:73:D2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020141
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 18 Jul 2024 21:11:11 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 136562
IP: 103.92.212.0/22
IP: 2401:2140::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131393 (0x20141)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jul 18 21:11:11 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91F52FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:07:15:38:20:6e:d5:ed:f8:c8:08:43:6f:a0:
93:42:bf:c6:19:48:e4:f8:36:97:26:93:cc:8b:6c:
e7:34:31:cb:d5:55:47:17:6f:16:1d:82:40:49:da:
ff:d7:28:48:1d:6a:ce:82:9d:3e:2a:df:e3:8c:b3:
2a:6f:79:ac:7e:28:16:c0:6c:fb:d0:9b:b6:69:c0:
85:6e:bf:b2:2a:3a:db:0e:ff:a2:03:09:8d:49:c1:
b3:3b:89:67:e7:93:63:ff:73:c9:53:3d:6c:ff:a0:
2f:37:89:2f:07:28:dd:e4:97:87:60:a3:3e:5b:9f:
eb:ad:6a:65:e8:a3:e1:4a:d3:72:76:2e:c6:2b:0f:
d3:ef:51:60:38:35:8b:c2:c2:18:76:6e:d7:29:07:
60:7b:1f:d0:31:49:c0:85:c6:df:19:7b:15:d3:5d:
35:d1:31:08:0d:64:43:69:61:54:15:07:a0:4f:af:
58:ec:cb:d9:a0:19:05:4b:9b:2c:fe:27:67:b2:03:
56:13:77:07:cb:d7:90:31:4f:e8:5d:69:a1:bc:f8:
96:d8:b8:77:2b:1a:ef:38:94:eb:6b:b7:da:c6:fa:
d1:71:b5:d0:fb:63:30:ba:c7:a7:28:93:cf:e6:e5:
46:96:83:f7:df:1e:ad:7a:5f:83:97:ec:71:63:09:
9d:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:45:DA:A5:58:FF:65:F6:66:35:B9:67:88:09:B8:AC:F0:40:73:D2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136562
sbgp-ipAddrBlock: critical
IPv4:
103.92.212.0/22
IPv6:
2401:2140::/32
Signature Algorithm: sha256WithRSAEncryption
50:61:98:5e:45:65:03:91:59:b7:03:51:c0:14:ed:e9:eb:52:
f2:d4:7f:58:e1:8a:87:dc:54:62:bb:12:ed:50:d7:82:89:64:
23:f9:8a:13:ad:0d:b6:fe:12:25:50:7c:b7:4b:0f:59:80:f7:
a3:fd:09:61:29:9d:67:0e:bb:19:6a:4f:f0:36:79:f0:0b:65:
24:22:3c:0d:d2:b0:58:71:cf:1d:95:d4:e8:03:a8:ef:47:58:
06:35:78:10:e9:78:39:02:88:bb:e0:ff:f0:df:c3:4b:31:c2:
40:9c:4a:26:7c:0b:fd:e9:0c:58:95:c9:d9:30:ae:0f:cc:9d:
0d:b6:06:6d:7e:48:df:40:05:10:aa:41:0a:75:90:03:39:5c:
1f:1b:a1:d0:e7:c8:c1:99:71:2b:3b:c5:28:1a:7f:54:34:98:
c8:95:e4:5f:70:f3:e6:53:41:69:fe:f8:0f:c1:1a:b8:e0:24:
df:91:f1:5b:14:ae:ba:d1:89:89:8b:3c:62:c2:5b:52:69:2d:
9f:a8:d3:d4:85:ac:c6:ff:d9:a0:98:bc:b6:22:a8:bb:83:b3:
f0:bd:58:f6:4d:77:e1:0d:39:f3:58:75:70:28:18:59:51:2f:
b2:a0:55:e2:67:79:f2:e5:e9:ee:4e:99:53:50:b8:59:28:f5:
78:a3:88:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:15:02 2025 by rpki-client