Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoJBeVOzWp-LWaQuyUb00CTYd2s.cer
File: XoJBeVOzWp-LWaQuyUb00CTYd2s.cer (raw, json)
Hash identifier: j0ibg+gqAOEEk+UdghDShA0ngumUQzKkBfNJJN+oVFU=
Subject key identifier: 5E:82:41:79:53:B3:5A:9F:8B:59:A4:2E:C9:46:F4:D0:24:D8:77:6B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0222E2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915B2F1/26007FB68DF111EB8D0EA511C4F9AE02/XoJBeVOzWp-LWaQuyUb00CTYd2s.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915B2F1/26007FB68DF111EB8D0EA511C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 16 Dec 2024 14:39:32 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 137258
IP: 103.103.112.0/24
IP: 2001:df3:700::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140002 (0x222e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 16 14:39:32 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A915B2F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:5e:13:59:8c:19:55:4f:ab:3b:88:7d:fa:18:
63:b6:49:99:ae:31:2d:66:10:40:7d:54:5d:dc:f6:
87:56:c3:1f:02:38:87:07:c1:bb:19:24:7e:cd:06:
32:73:da:f6:64:98:52:28:87:d7:d8:30:f8:ba:86:
40:3b:8a:51:a3:98:1e:d0:05:0f:24:82:4b:d1:2f:
af:da:ac:7b:80:f3:23:63:95:2e:0a:0c:ae:43:19:
8f:2c:2b:c7:2f:39:08:43:18:70:b1:e5:d7:2a:04:
01:0f:32:26:18:df:b4:95:e8:21:43:dd:e1:53:7b:
58:24:0b:e8:4a:1c:26:85:82:5b:3e:e7:0f:ab:31:
10:10:d0:75:e0:a7:d5:5b:80:4a:6e:bf:22:d7:a9:
5e:86:d4:c5:85:ef:21:a6:f2:3b:4b:30:6a:3b:0e:
5a:f1:a1:67:cf:76:ae:46:fc:55:49:21:d0:71:56:
60:f1:1b:8f:4b:b4:ae:a8:80:31:8e:40:b9:21:9e:
66:a4:a7:4b:f4:00:3b:25:5b:ea:0c:71:b4:a9:88:
dc:2d:28:b9:2a:a9:cd:07:10:69:0c:b3:dc:b0:60:
ba:b3:65:a8:78:68:e2:a5:e2:a3:b7:b4:2e:9f:c5:
30:c0:bb:af:53:14:81:8c:ce:02:b2:51:21:8a:f9:
10:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:82:41:79:53:B3:5A:9F:8B:59:A4:2E:C9:46:F4:D0:24:D8:77:6B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915B2F1/26007FB68DF111EB8D0EA511C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915B2F1/26007FB68DF111EB8D0EA511C4F9AE02/XoJBeVOzWp-LWaQuyUb00CTYd2s.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137258
sbgp-ipAddrBlock: critical
IPv4:
103.103.112.0/24
IPv6:
2001:df3:700::/48
Signature Algorithm: sha256WithRSAEncryption
aa:f3:73:e7:7c:04:00:6e:57:b0:f7:94:6b:0e:cf:c1:a4:0f:
35:57:03:ba:f9:e3:ab:cd:2f:cb:01:87:d5:6e:99:f7:d0:91:
17:c3:01:10:8b:c9:ac:74:87:61:dd:c7:e2:f4:f7:ea:e0:86:
c9:6b:9d:3a:c8:30:8c:0b:f1:5c:1e:9e:76:42:58:9c:29:7c:
65:c6:95:4a:18:c6:42:a9:38:8c:e5:4a:ff:75:47:7f:ae:e9:
18:7e:a1:4d:de:ce:e6:0e:d6:13:cf:93:0e:d6:d5:4a:6f:44:
ac:fc:02:84:92:23:d7:50:27:e2:eb:cd:bf:4f:d7:57:8a:2f:
fa:5c:3f:b6:98:65:6d:a9:2a:14:f5:50:e4:e4:71:00:62:6e:
8f:bc:1b:0c:0e:93:85:5c:95:4d:9c:43:48:90:99:d7:01:26:
60:c5:94:5b:72:1a:7b:d7:04:27:cf:3d:a6:3f:c8:36:60:63:
a7:59:df:b4:d7:be:36:ee:7c:a2:3b:9b:a7:34:13:ef:aa:cb:
d0:76:82:2c:3b:d6:1a:1d:79:6e:6f:56:3d:64:32:e3:1c:7a:
f2:f2:c9:04:75:91:7c:f2:0d:35:30:f6:2b:eb:4d:d5:d0:f7:
21:e2:90:e8:55:8f:a9:f0:06:81:86:0a:8e:41:cf:89:37:f0:
5a:f9:da:7a
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:07:50 2025 by rpki-client