Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer
File: Z187oflqnh7CsBN2YsdU2x0eAHM.cer (raw, json)
Hash identifier: wKCA7tPS+ChvWkF7lh56OuBoP25PfTpisi0dd8LgXso=
Subject key identifier: 67:5F:3B:A1:F9:6A:9E:1E:C2:B0:13:76:62:C7:54:DB:1D:1E:00:73
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EE3D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 30 Apr 2024 01:22:38 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 58587
AS: 134685
IP: 103.7.248.0/22
IP: 103.229.82.0/23
IP: 163.47.156.0/22
IP: 2403:9300::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126525 (0x1ee3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Apr 30 01:22:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91A4517
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:bc:6f:f1:17:d6:94:30:76:3a:d1:73:09:72:
15:06:e1:74:5c:fa:99:53:57:95:27:9a:60:e1:11:
af:af:fe:5b:9d:77:33:3c:52:5f:8b:3b:0c:c9:15:
cd:7a:e0:bf:31:09:f7:59:08:87:9c:73:2c:8e:8d:
1d:96:04:87:65:8e:59:2f:20:60:76:f4:11:52:89:
be:2a:62:e4:f8:40:08:e7:50:60:c0:85:5f:7f:c5:
cc:c6:8f:6b:b5:c9:5e:51:aa:a8:4c:e0:38:45:b8:
3f:52:50:50:70:0e:85:4c:d2:3f:25:4d:86:15:98:
af:d4:0a:4d:7a:43:39:4e:65:24:ae:cd:b8:f3:14:
bc:5d:d1:a5:c5:c1:35:09:cc:5c:fd:c4:b3:97:3b:
38:db:f8:2d:ed:b4:29:c9:f1:5d:1d:21:15:39:4b:
0f:d7:d5:cd:ab:c0:8c:08:cb:3d:84:b5:63:24:b6:
ea:4f:c9:03:71:b5:0f:fc:d1:f3:c6:25:38:26:e9:
f9:fd:e5:47:3f:55:bd:cf:1d:71:67:ee:cf:68:cb:
c9:6d:6e:00:de:6a:a8:f1:9f:9d:0f:08:58:e9:4d:
f4:9d:75:a6:a5:ff:62:55:ac:4a:af:95:94:12:69:
94:7a:c6:9c:93:d0:bc:e6:2a:12:6b:0f:44:c5:e6:
35:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:5F:3B:A1:F9:6A:9E:1E:C2:B0:13:76:62:C7:54:DB:1D:1E:00:73
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58587
134685
sbgp-ipAddrBlock: critical
IPv4:
103.7.248.0/22
103.229.82.0/23
163.47.156.0/22
IPv6:
2403:9300::/32
Signature Algorithm: sha256WithRSAEncryption
06:2d:8a:9e:89:00:e4:d2:1c:d2:5b:20:c2:d4:8d:9a:f5:2f:
11:7d:a9:90:f1:6d:41:91:04:05:db:14:ba:04:e2:ae:d5:41:
86:c1:3a:ce:1d:3f:55:29:78:b2:79:4a:99:bb:0e:fa:73:10:
23:b7:f8:40:34:38:a3:16:4d:09:09:a9:e8:26:93:07:13:9f:
90:b8:f6:94:6c:55:13:1c:79:f1:34:3a:e4:8b:21:4d:bd:e0:
ab:7c:22:88:91:10:9e:c6:bd:e5:78:61:8d:14:7b:40:77:67:
99:17:59:a4:27:02:ff:b2:ff:84:e5:e0:01:a9:bd:d7:89:e3:
c2:23:57:43:4a:bb:a2:2e:bb:20:68:f3:7c:26:c0:7a:97:00:
55:58:c3:8a:51:08:14:27:45:ea:3a:43:f2:75:26:64:10:0d:
bb:b2:eb:58:14:00:43:4d:9f:70:c4:26:84:b0:1d:e2:5d:ff:
27:19:c2:06:b7:9d:fe:0f:af:ef:2c:ea:b6:bf:a0:03:5b:dd:
66:ee:9e:72:44:1c:0d:96:16:7f:0b:52:bb:51:66:6a:ee:67:
d2:ff:fb:d8:75:6a:8a:92:32:1b:45:02:bf:b6:4a:51:f0:de:
93:67:2b:91:3b:0c:19:35:0c:ea:a1:f9:bf:29:f1:99:72:6e:
24:ee:e9:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:22:55 2025 by rpki-client