Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yt792dXXaz4eaPmBKVcVDcD1PF0.cer
File: Yt792dXXaz4eaPmBKVcVDcD1PF0.cer (raw, json)
Hash identifier: t8l3WzUED8vhrEw32XcoE1sceysFC/Qe2b3GZqYKTAI=
Subject key identifier: 62:DE:FD:D9:D5:D7:6B:3E:1E:68:F9:81:29:57:15:0D:C0:F5:3C:5D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E216
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9195456/9C45B9B47A8D11EC84B90534C4F9AE02/Yt792dXXaz4eaPmBKVcVDcD1PF0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9195456/9C45B9B47A8D11EC84B90534C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 01 Mar 2024 20:48:00 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 38911
IP: 203.100.59.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123414 (0x1e216)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 1 20:48:00 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A9195456
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ce:91:d7:1e:6d:f2:9a:a8:70:56:0e:0a:ba:
7b:71:f6:95:4f:fb:5d:31:5c:fa:0b:62:c7:57:9b:
4b:65:38:2c:db:e0:82:cd:14:e3:95:07:50:96:de:
7d:b7:b8:67:68:aa:76:a4:69:c5:13:98:78:45:67:
a3:ce:df:81:62:c8:e9:64:0c:c7:84:be:13:2e:d7:
e1:d1:09:69:bd:eb:2e:24:0c:2b:30:ad:dc:07:52:
de:43:e1:da:26:bb:0f:c3:21:76:e9:11:39:ca:00:
41:a8:be:1b:15:5c:e0:16:f7:9b:be:ac:20:82:66:
c8:fe:9d:58:cd:d3:da:e5:10:6d:8f:e3:b5:9a:06:
e8:fc:0b:8c:49:37:cc:d0:69:da:0b:d4:6e:05:0b:
83:2f:93:02:2d:c3:73:13:d6:7d:07:f8:78:48:c7:
52:8c:9a:39:5e:5e:c2:64:ad:3f:c5:76:52:91:80:
cf:d9:31:af:e5:4f:60:35:3c:f3:ba:c4:95:92:22:
70:15:0a:55:36:a6:01:9d:fc:48:fc:26:97:2c:57:
84:bf:d0:f5:03:5d:42:3e:15:a3:38:b1:fa:0a:0a:
0c:c9:10:ca:1a:8c:bb:6b:e9:4f:e4:e6:a7:3d:9b:
d6:01:b1:c6:b1:3b:de:61:63:08:34:1f:02:ec:48:
76:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:DE:FD:D9:D5:D7:6B:3E:1E:68:F9:81:29:57:15:0D:C0:F5:3C:5D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9195456/9C45B9B47A8D11EC84B90534C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9195456/9C45B9B47A8D11EC84B90534C4F9AE02/Yt792dXXaz4eaPmBKVcVDcD1PF0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38911
sbgp-ipAddrBlock: critical
IPv4:
203.100.59.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:1e:ad:8c:e3:7b:f3:d3:cc:7f:9e:ba:ba:53:d2:0b:ff:3f:
58:6c:41:75:27:9b:f3:bb:65:01:03:f6:a0:9c:bd:7f:76:e3:
23:39:ce:c3:f4:c6:ab:b0:5b:4c:42:4b:a7:2c:02:eb:75:69:
d4:f1:eb:45:9f:1a:80:d7:2a:07:f1:b1:cd:c5:2d:7c:d6:ed:
14:79:fc:ea:a5:a1:35:d5:bc:77:f9:04:b4:e3:80:32:23:7a:
9b:f3:59:7f:11:a9:c1:d4:51:f1:91:c3:2a:21:32:66:08:36:
9a:f1:26:f5:bb:ec:7c:10:72:11:d6:a4:d8:c1:fd:7c:d9:1e:
5d:5c:71:eb:67:f6:20:50:27:58:d1:7b:32:7a:23:72:d6:29:
59:c9:95:2c:bf:97:ca:9b:ac:bb:f4:0a:8e:c5:0f:81:06:0e:
ad:d9:6e:cc:03:04:29:7f:14:f7:75:bd:9c:09:1c:1a:f4:f5:
ce:2e:d5:ad:fa:00:b0:da:3e:1a:72:0c:ac:4a:86:c3:0a:51:
88:33:0d:38:7c:05:6b:77:92:69:a8:ae:6a:2b:ad:c4:86:38:
d5:f2:ab:6b:99:fd:f9:84:9d:7c:79:34:57:00:e7:64:b2:3a:
49:fa:61:8b:22:16:b2:19:4f:6d:0d:95:cf:0e:e9:79:4f:0c:
11:e9:4b:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:16:54 2025 by rpki-client