Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bfCTVmC1JNKoCAZDaLCvxWU4ppo.cer
File: bfCTVmC1JNKoCAZDaLCvxWU4ppo.cer (raw, json)
Hash identifier: I38YylxT0c0FD6l005Nj+Fzg1J6ZoUmuqbnvC4Fj/v4=
Subject key identifier: 6D:F0:93:56:60:B5:24:D2:A8:08:06:43:68:B0:AF:C5:65:38:A6:9A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0213BC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 13 Oct 2024 04:05:13 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 136142
IP: 103.76.110.0/23
IP: 2001:df2:e8c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136124 (0x213bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Oct 13 04:05:13 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A912978E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:03:a1:be:10:33:28:93:fe:ff:3c:d2:75:48:
8c:5f:ea:dc:4a:25:91:79:53:67:16:26:47:f9:ec:
12:05:e2:bb:eb:46:05:78:15:42:3d:76:b1:29:65:
da:fa:2e:d9:80:bf:07:8a:b9:07:30:0a:5d:85:4f:
c4:49:a1:77:2a:3c:9d:94:43:12:e2:08:10:15:88:
2e:8c:1a:44:92:75:2b:15:75:69:14:e6:87:a3:0d:
5a:03:68:88:b7:99:dc:7e:e9:c5:0f:91:89:88:55:
a8:e5:8c:ce:73:98:c2:77:fb:b5:b5:1c:3b:53:7b:
8b:ab:1b:52:3d:4e:c4:b2:c3:59:74:3e:5c:15:60:
c0:c8:3a:57:4a:36:4c:a2:84:ff:64:c2:82:9c:d5:
f3:7e:70:3f:ac:05:49:33:c1:4e:0b:de:c8:5f:ee:
c2:19:4f:db:24:46:6c:5f:05:ad:80:83:d8:07:ef:
9e:ef:9f:5d:d2:fa:55:0e:39:8d:1c:3c:a8:a0:5c:
9c:4b:03:1e:36:c5:1f:76:15:db:64:bc:32:e3:b3:
b6:61:f2:a9:bc:54:ba:ab:32:9f:5f:c7:33:ad:0f:
17:26:09:03:ee:09:7c:b8:f9:e7:a1:dd:08:ae:41:
b4:1f:7c:33:d6:ff:19:33:ba:43:e1:43:17:86:4b:
ca:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:F0:93:56:60:B5:24:D2:A8:08:06:43:68:B0:AF:C5:65:38:A6:9A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136142
sbgp-ipAddrBlock: critical
IPv4:
103.76.110.0/23
IPv6:
2001:df2:e8c0::/48
Signature Algorithm: sha256WithRSAEncryption
9d:f3:82:46:0c:95:63:39:89:13:be:b6:58:56:d8:d0:de:81:
cd:e5:19:96:9e:f5:61:f2:86:47:16:fd:9e:e4:f2:af:7c:4e:
f7:b0:b8:00:0b:16:40:2b:12:73:8c:b3:9e:cd:d9:e7:4c:53:
65:be:14:af:f1:6c:47:0d:15:3c:72:89:69:93:8b:f8:b3:cd:
0a:55:77:ff:84:53:62:18:1d:de:d8:72:37:1c:c9:84:93:73:
47:9e:51:d1:c8:6a:b5:68:ae:69:61:2d:e1:39:30:3c:9a:5c:
36:8b:74:50:3d:0c:f8:8e:ad:88:db:d9:dd:b9:79:68:cc:8d:
ed:3f:da:7d:c2:ee:65:52:9e:79:02:d2:2e:a5:de:3e:05:4b:
26:57:a5:47:77:19:24:93:9a:0f:07:9a:9f:5d:d0:27:03:0e:
f7:5c:54:e9:9b:ce:7f:ac:e6:8a:37:26:32:54:4f:7a:13:2f:
2c:2b:37:99:c6:57:94:59:3d:d1:cb:f7:1b:95:08:65:cd:3c:
4e:fc:cc:b9:7d:7a:88:c6:43:08:e4:b0:87:89:3e:29:77:96:
6b:20:a9:6c:4b:f7:10:00:47:24:95:8e:eb:9c:97:15:40:40:
98:16:69:74:43:f6:b7:d2:e4:2c:83:93:75:f1:c9:96:f9:dd:
0c:2d:3a:0a
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:23:20 2025 by rpki-client