Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer
File: aFEZgfy52vrY49MDBLtBqW-5p28.cer (raw, json)
Hash identifier: e4/NGXLP09BjvPMA9CW+qqxMUQ1rV7VNzMHGGtttiVw=
Subject key identifier: 68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022E5F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 02 Feb 2025 23:57:03 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 137267
AS: 147051
IP: 103.106.110.0/23
IP: 203.27.18.0/24
IP: 203.33.188.0/24
IP: 2001:df3:a300::/48
IP: 2400:1360::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142943 (0x22e5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 2 23:57:03 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A918196D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:19:6c:7b:ec:9c:35:db:36:44:d2:a9:ad:66:
a6:52:d0:23:f5:3d:74:00:02:ef:1a:de:bc:eb:49:
df:30:61:66:39:a9:f8:fa:41:00:57:48:94:aa:73:
0c:fc:d9:ab:2c:1e:9a:21:c3:07:5f:38:f6:ea:18:
e4:8f:09:7c:8d:94:c5:73:28:f2:8e:6c:f0:29:69:
0e:a3:af:45:28:fc:e4:90:7a:2b:98:71:c1:d9:22:
85:ce:e5:d8:75:3a:82:6a:cc:6f:6b:15:dc:d1:30:
5c:9d:2c:36:e8:48:2d:82:12:48:c6:64:0b:2f:bb:
33:7d:6f:96:24:36:d0:0c:5e:42:b5:b6:da:c4:82:
3f:52:b6:36:5f:0d:d1:02:48:2f:11:5b:82:4a:f4:
cf:e4:ad:49:ba:30:5a:8c:5d:26:e0:4e:e4:c1:80:
f6:cd:ca:d7:75:c5:5d:f1:4d:8e:19:56:2f:cd:2b:
a0:9b:c8:7a:19:48:cc:87:20:17:16:1c:de:0e:79:
12:70:35:dc:28:f6:d0:ba:0f:17:6b:5e:8b:af:00:
86:c9:89:48:3f:61:3a:04:26:00:e8:14:df:12:4a:
3a:31:06:aa:c2:44:15:00:fc:a1:76:26:f2:95:82:
79:53:6a:ca:7a:81:81:a7:24:91:0c:a9:99:07:46:
8b:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137267
147051
sbgp-ipAddrBlock: critical
IPv4:
103.106.110.0/23
203.27.18.0/24
203.33.188.0/24
IPv6:
2001:df3:a300::/48
2400:1360::/32
Signature Algorithm: sha256WithRSAEncryption
59:b2:97:70:69:20:8d:c5:ca:7c:b8:be:2e:45:2e:a6:c4:e8:
6f:f3:0f:f9:f7:92:55:d5:58:fa:6d:90:12:78:52:51:17:48:
8e:ac:3b:7f:87:3b:ca:81:b0:8b:e2:75:3f:f5:8b:4f:4a:e9:
a4:d1:a5:7b:a7:25:5f:da:da:10:90:62:c2:af:72:a5:d9:8d:
0c:6e:e6:ee:f8:7b:d9:14:9e:eb:55:27:e4:2d:ac:13:79:a2:
d5:c8:e6:b5:4c:ae:59:f2:48:7b:0b:a5:f1:fa:2a:61:eb:31:
af:e3:0d:d1:75:30:9d:82:26:a4:40:de:ff:dc:38:91:97:7e:
74:9b:43:88:4e:99:80:83:96:e9:dc:3b:bf:64:53:1f:6b:1d:
d8:6b:86:30:9c:0d:a4:31:1a:62:28:27:d8:76:1b:a2:0e:f4:
64:34:58:b6:9a:f1:4a:1c:5c:fd:5f:c8:0a:f8:0a:fb:90:1e:
84:93:6b:90:8b:ff:7f:18:11:f4:54:d2:45:53:19:0f:56:be:
b5:32:ec:f1:58:9a:98:60:cb:9b:41:ed:e7:77:dd:27:8e:d7:
41:a9:de:87:c3:49:b3:68:1b:b9:b6:72:07:a9:c8:66:dc:7b:
77:22:71:50:44:77:c1:92:40:22:d3:10:b2:4d:5b:28:55:35:
c8:d8:6c:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:58:15 2025 by rpki-client