Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YhuBwQnlqnjYKfMKV9o1MwglT2k.cer
File: YhuBwQnlqnjYKfMKV9o1MwglT2k.cer (raw, json)
Hash identifier: D5wPU3tI1iC+8kBHf4Gj0D2s9qhXTUT4fwDAIUYdLOg=
Subject key identifier: 62:1B:81:C1:09:E5:AA:78:D8:29:F3:0A:57:DA:35:33:08:25:4F:69
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020E6B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 19 Sep 2024 13:26:06 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 58697
IP: 45.116.128.0/23
IP: 103.15.238.0/23
IP: 103.242.50.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134763 (0x20e6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Sep 19 13:26:06 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A9138D62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:9f:b2:b5:1b:1c:80:7b:ac:9f:e1:d0:dd:40:
f5:8d:4f:51:8b:b3:7f:41:63:b6:61:1b:ab:ac:6f:
e9:c3:e6:a3:14:b1:c6:bd:f6:ea:3c:b9:a7:00:64:
ac:62:08:13:57:17:36:83:8d:5b:f9:95:b4:1c:e4:
99:5d:14:b6:e6:82:98:2a:8f:8e:5d:09:8c:97:8e:
5b:0d:d3:df:b0:00:06:d2:ef:35:95:84:c8:21:e5:
8b:ac:7f:88:1a:4a:df:a1:cf:ed:0b:ec:06:d7:f4:
dc:ed:4b:6a:7b:69:c2:a0:b3:1c:c8:60:21:88:91:
b4:cb:aa:95:69:f0:a5:e6:fc:d7:b0:89:bb:a0:0c:
f1:6c:11:53:0c:1a:4b:0c:e7:fc:a2:5d:8e:21:1d:
0f:d1:56:68:b0:91:90:8a:48:c1:1a:e8:29:a3:a1:
ca:3f:10:ae:37:d8:11:a8:a5:dd:02:ff:5f:0e:f6:
c5:52:f8:cc:6f:5d:2b:ab:45:80:f3:dd:6c:b1:83:
4b:e8:ed:1d:c6:e0:81:0b:3b:bc:35:26:b0:65:9f:
97:2f:cd:6c:51:21:6e:9a:48:8e:a8:eb:e3:74:ae:
f2:cb:04:da:80:6c:db:64:c8:c7:98:89:d7:35:9c:
65:1b:d0:c7:48:a4:42:a4:4a:9e:47:4f:0d:a9:cd:
89:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:1B:81:C1:09:E5:AA:78:D8:29:F3:0A:57:DA:35:33:08:25:4F:69
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9138D62/BCB40A585FCF11EC8CF1E07BC4F9AE02/YhuBwQnlqnjYKfMKV9o1MwglT2k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58697
sbgp-ipAddrBlock: critical
IPv4:
45.116.128.0/23
103.15.238.0/23
103.242.50.0/23
Signature Algorithm: sha256WithRSAEncryption
a6:f4:b9:d6:2e:d1:63:2b:ff:35:6d:4f:bf:0f:eb:20:1c:2f:
c9:4f:13:a1:fb:cc:07:fb:82:cb:85:18:33:7c:a6:cd:16:cd:
61:84:60:8d:61:cd:72:34:e4:b0:37:ea:83:61:a6:ec:80:33:
30:e6:52:08:e0:6a:b1:21:87:cf:80:e2:00:0c:db:75:0d:98:
00:18:39:ca:6b:8f:0b:13:af:33:3c:6f:d8:17:ef:a5:bf:bd:
94:78:d6:31:8a:dd:d4:69:84:cd:3d:86:72:b6:4e:5d:bc:16:
02:51:03:c0:58:3e:9e:9e:81:48:44:a7:ce:1b:fd:20:8a:c5:
ee:31:6b:24:cf:9f:86:7b:a1:d7:36:05:06:b5:4c:34:5d:48:
16:90:b8:86:a0:5b:68:cf:21:4c:f6:cf:0f:44:22:36:62:35:
50:e2:c4:8b:5f:be:08:a3:22:7e:b2:6a:ee:11:f6:e3:66:59:
c2:ba:b7:2f:04:4a:9f:b1:95:b3:1a:ee:09:ca:b8:b5:8b:61:
c4:56:31:58:ad:fa:0c:43:c7:90:46:ec:87:19:bd:d9:59:f9:
00:b0:5e:84:8a:7f:8e:22:0e:97:38:ca:5f:d3:66:63:fd:84:
b5:c5:af:50:22:e7:1c:71:18:d9:ba:62:0f:b6:83:9d:3d:5f:
4d:af:2b:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:22 2025 by rpki-client