Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a6pcUguOS_VkxLv0bh8xa9RfoDc.cer
File: a6pcUguOS_VkxLv0bh8xa9RfoDc.cer (raw, json)
Hash identifier: RiCaFFbBP5IMSFRr3bUY7CGH1x9ldqoVoYPA1SvX3Lo=
Subject key identifier: 6B:AA:5C:52:0B:8E:4B:F5:64:C4:BB:F4:6E:1F:31:6B:D4:5F:A0:37
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F394
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9144463/8BF5A5D4113611ED8F0AB712C4F9AE02/a6pcUguOS_VkxLv0bh8xa9RfoDc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9144463/8BF5A5D4113611ED8F0AB712C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 24 May 2024 14:39:15 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 56294
IP: 43.243.0.0/22
IP: 103.4.60.0/22
IP: 2401:2280::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127892 (0x1f394)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: May 24 14:39:15 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A9144463
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e6:68:cb:6f:7b:c7:e8:d9:30:b0:99:30:56:
1b:2c:5f:f7:8b:72:8c:c9:cf:c8:74:70:be:40:ac:
8c:73:c8:57:3b:e9:82:37:c0:a9:05:06:86:de:fe:
82:a8:b5:0b:8b:d9:aa:19:9d:9e:7b:b3:dc:14:97:
85:1f:0a:4f:8d:a4:2d:8b:9f:25:86:86:49:05:66:
53:48:58:a5:96:f1:fe:61:43:8e:74:23:a5:2a:77:
7c:61:ed:23:b0:a5:6f:e9:5e:a4:ff:f8:64:65:7c:
79:ee:0d:02:48:62:79:3e:1a:72:78:4c:84:5e:de:
50:40:d5:bb:12:2b:dc:b7:dd:5d:9b:82:89:c2:0a:
0f:dc:80:e3:9e:82:ea:be:b3:e5:b0:36:06:31:4f:
9b:a9:a1:c4:72:18:22:cc:36:31:90:52:74:a6:e3:
fd:3b:56:d7:39:5f:4b:a8:0f:34:22:e6:42:d0:f2:
32:c6:b5:09:54:4d:98:4e:18:b9:c2:f4:73:9c:50:
db:b5:9e:42:94:8a:4f:08:f9:10:21:10:b6:0c:1f:
e1:24:8d:3b:4b:3d:16:a4:b3:7b:47:da:a9:fb:ea:
6b:34:97:48:0c:ce:9e:65:0c:ac:55:a8:76:00:66:
f1:69:2a:da:66:bb:b8:57:5e:6d:b1:8e:81:d8:84:
42:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:AA:5C:52:0B:8E:4B:F5:64:C4:BB:F4:6E:1F:31:6B:D4:5F:A0:37
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9144463/8BF5A5D4113611ED8F0AB712C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9144463/8BF5A5D4113611ED8F0AB712C4F9AE02/a6pcUguOS_VkxLv0bh8xa9RfoDc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56294
sbgp-ipAddrBlock: critical
IPv4:
43.243.0.0/22
103.4.60.0/22
IPv6:
2401:2280::/32
Signature Algorithm: sha256WithRSAEncryption
63:94:89:d3:ac:c6:77:a4:c2:65:b1:b2:70:36:a9:35:d4:15:
61:45:30:ff:da:f0:14:be:4d:2d:c2:9c:82:f6:0a:61:b4:ea:
3c:87:90:16:5f:f6:96:3e:4a:83:6a:57:bd:6d:3d:aa:81:3f:
18:1a:35:11:68:9a:17:10:6a:52:fd:a2:55:6d:df:62:6f:d9:
0d:ec:1b:e0:76:47:35:15:f9:b8:01:52:8c:0b:f3:c1:7e:34:
80:a5:9c:ae:1e:d0:94:54:06:75:22:8a:de:d3:11:eb:e5:4a:
40:2a:5d:0b:50:67:58:d7:2f:2f:0a:07:a8:25:78:56:2a:34:
23:84:70:0d:30:4f:84:c1:d2:b7:b1:76:91:9c:6c:9f:4b:b2:
fc:ab:7c:82:e0:f1:a9:2b:c7:9d:c3:a2:54:3a:4c:1f:02:17:
22:70:20:71:f1:e5:e7:9f:bb:c8:5a:5c:77:0a:3b:4d:8c:46:
b2:8f:d9:cf:db:e1:e5:e7:06:a1:5c:d7:b3:16:a7:8c:22:e3:
7e:fb:7b:38:63:ee:2a:39:a7:b1:2a:4c:3d:96:3f:3f:70:07:
a8:78:dc:38:fa:54:53:19:fc:80:fa:95:24:61:03:76:d2:4f:
6f:22:98:37:92:20:3e:cb:83:f3:72:ff:1e:5c:e1:1d:a6:35:
bf:9e:16:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:13:08 2025 by rpki-client