Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b7CqV86Epc0prEfZ19CJSOsh8Go.cer
File: b7CqV86Epc0prEfZ19CJSOsh8Go.cer (raw, json)
Hash identifier: BtUGpoCbAVKE1UR318H3LR+vnRiM07vqgemxDuM+XNQ=
Subject key identifier: 6F:B0:AA:57:CE:84:A5:CD:29:AC:47:D9:D7:D0:89:48:EB:21:F0:6A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02236F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C6861/5CC21000254C11EAB702D41BC4F9AE02/b7CqV86Epc0prEfZ19CJSOsh8Go.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C6861/5CC21000254C11EAB702D41BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 18 Dec 2024 18:59:47 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 64063
IP: 103.200.92.0/22
IP: 2407:3380::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140143 (0x2236f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 18 18:59:47 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91C6861
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:8d:40:30:54:5f:b1:18:53:c4:eb:33:0d:8e:
e6:86:8b:88:6c:f6:6b:cc:dd:f5:1d:51:4c:75:89:
73:6d:b7:f5:16:b3:b3:1e:c4:0e:0d:fd:a3:1d:4c:
3e:e2:84:6c:60:31:c1:51:8a:a0:18:f7:a5:25:55:
47:53:92:fc:5b:ea:be:e7:0d:72:68:3b:f3:b1:95:
e3:1e:f0:f7:5d:ba:a9:11:2e:20:89:3b:ae:4b:eb:
18:b8:54:f0:6a:91:2f:c9:e9:3f:09:2c:a9:78:96:
b3:10:c5:94:d2:c3:6e:f5:b2:e9:14:09:b6:4a:86:
3a:51:e4:2b:7d:6f:b8:69:ad:9f:02:58:f4:e6:49:
5c:f4:13:ce:9e:f0:43:0c:0a:d1:af:78:36:1b:2d:
ed:7e:0f:53:7c:95:ac:d6:d3:7b:ff:eb:75:2f:a7:
f0:96:78:4a:f4:cf:fa:e5:af:75:36:b2:02:10:2e:
08:7f:b0:73:3f:51:7d:32:61:08:b5:a6:c0:cb:72:
93:fc:b8:37:d8:35:fd:8d:2d:4e:19:ec:8e:fd:2f:
6b:ae:d0:08:67:6a:9d:5a:8d:f3:01:71:5c:73:8a:
5c:d3:fa:b0:61:0a:e4:96:95:54:ba:6d:86:aa:3b:
94:07:ac:a0:4f:a7:79:0d:20:8e:ed:17:ab:c8:98:
30:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:B0:AA:57:CE:84:A5:CD:29:AC:47:D9:D7:D0:89:48:EB:21:F0:6A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C6861/5CC21000254C11EAB702D41BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C6861/5CC21000254C11EAB702D41BC4F9AE02/b7CqV86Epc0prEfZ19CJSOsh8Go.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
64063
sbgp-ipAddrBlock: critical
IPv4:
103.200.92.0/22
IPv6:
2407:3380::/32
Signature Algorithm: sha256WithRSAEncryption
2b:5e:93:e4:f0:b9:67:9e:fb:84:54:a9:f1:d2:21:89:61:9c:
0a:d3:b9:a6:26:ad:fc:b1:d0:8c:b0:3a:f9:74:62:d5:b8:6e:
a9:b9:dd:21:2c:59:c9:00:bb:b4:76:ed:d5:02:5e:e8:df:c6:
84:73:f4:80:16:99:6a:8a:72:09:96:17:89:63:d8:e2:5c:79:
3c:16:39:5d:4b:7e:43:da:c2:3c:9e:60:9b:55:87:4e:23:33:
d4:c6:63:8e:42:82:09:18:65:27:f4:2a:ab:e4:02:81:0a:ce:
45:ea:60:03:fc:0b:58:1f:d5:e7:ed:7e:ce:7f:be:aa:2f:fe:
a7:3e:ed:38:48:3f:c3:6d:c8:56:89:d8:8c:a9:c6:f7:7f:d9:
63:ea:cc:16:9e:f6:6b:29:ad:49:71:b1:9c:b2:d2:11:a0:65:
be:f0:b0:77:5c:01:5c:ff:55:e4:41:dc:c0:f6:b2:6c:11:29:
b1:c3:46:78:65:af:78:a2:d6:d2:25:37:fc:96:b8:0b:35:d8:
59:a7:32:75:9f:98:d9:69:51:27:2c:d2:e5:52:2f:4f:e9:49:
e2:1f:e9:33:52:66:79:ae:70:35:f6:17:0e:81:a5:75:e0:27:
b7:78:cc:c0:a6:23:e3:91:09:d9:f2:b7:c8:da:4c:31:d0:bf:
b8:7d:45:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:59:00 2025 by rpki-client