Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/evNKJg5qKenXvIqxrCZW4Ue4iiI.cer
File: evNKJg5qKenXvIqxrCZW4Ue4iiI.cer (raw, json)
Hash identifier: By+fPlfBV9bTCiemSMUeTNPPY1lWdTWYyeR8ihUhZFQ=
Subject key identifier: 7A:F3:4A:26:0E:6A:29:E9:D7:BC:8A:B1:AC:26:56:E1:47:B8:8A:22
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022E45
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A4D1F/49152A44680411EDA2D2BD3CC4F9AE02/evNKJg5qKenXvIqxrCZW4Ue4iiI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A4D1F/49152A44680411EDA2D2BD3CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 02 Feb 2025 20:48:15 +0000
Certificate not after: Mon 02 Jun 2025 00:00:00 +0000
Subordinate resources: AS: 150435
IP: 103.41.94.0/23
IP: 2001:df1:8d40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142917 (0x22e45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 2 20:48:15 2025 GMT
Not After : Jun 2 00:00:00 2025 GMT
Subject: CN=A91A4D1F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:81:df:e5:99:28:fd:62:b9:a8:55:57:71:c0:
33:7e:8b:ee:96:33:09:1c:9a:66:1f:0e:2f:5e:e2:
bb:7a:5a:01:47:8f:78:f2:7e:d7:85:ad:6f:c6:e7:
dd:f7:2f:c4:1e:27:7a:a6:33:47:87:b3:8d:9b:7e:
c3:be:2d:07:fc:c3:e3:63:be:0c:8e:ec:02:fb:90:
7b:bb:34:df:33:5d:43:79:b4:89:bd:4b:81:82:bf:
df:2a:3c:8c:ec:a9:6b:9b:20:34:4b:c6:9c:6c:d2:
1a:07:9b:bd:9e:9e:34:fa:78:2c:bc:72:86:dc:c6:
63:b0:93:e2:83:b9:09:75:95:c7:0d:e2:e3:73:6f:
3c:0c:ef:22:86:2d:da:4a:17:99:36:fd:ba:51:59:
6f:61:e5:cf:3e:2f:53:ca:ce:00:f0:1c:63:11:eb:
44:dc:7d:13:f3:31:45:d3:24:30:4f:88:72:9e:4b:
c8:3a:bd:44:7a:0a:3b:9c:81:c7:55:4f:d1:f0:63:
5d:2f:fe:c2:0f:e2:51:36:a7:7d:92:e6:b9:bd:1a:
24:32:2c:b1:d8:4d:68:81:fb:a0:d9:eb:23:9a:bb:
87:cc:4b:4f:97:ab:5a:ea:20:a2:b2:0c:14:18:05:
34:65:54:b6:58:b7:24:ef:97:e4:2c:30:04:b1:7c:
70:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:F3:4A:26:0E:6A:29:E9:D7:BC:8A:B1:AC:26:56:E1:47:B8:8A:22
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A4D1F/49152A44680411EDA2D2BD3CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A4D1F/49152A44680411EDA2D2BD3CC4F9AE02/evNKJg5qKenXvIqxrCZW4Ue4iiI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150435
sbgp-ipAddrBlock: critical
IPv4:
103.41.94.0/23
IPv6:
2001:df1:8d40::/48
Signature Algorithm: sha256WithRSAEncryption
17:55:23:7b:65:4b:ec:bb:b7:97:60:5a:fe:22:4a:a1:64:b6:
24:54:58:1d:23:0a:e8:f7:86:7a:46:99:a1:60:98:cb:35:b0:
28:2d:a7:f0:7d:bb:7c:51:3c:ec:14:14:cd:01:6a:27:9f:67:
6e:c4:fb:32:36:67:c5:9a:2a:77:1d:f8:f0:32:f8:c7:fc:27:
2b:77:a5:2d:dd:13:80:7c:0e:80:c2:7f:52:5a:29:00:3c:63:
a9:22:df:8d:34:3d:68:e1:e0:fb:c5:25:55:c2:97:4a:6c:c7:
d9:7b:11:e5:4f:b2:83:ff:b6:05:6c:61:99:3f:72:12:18:f3:
44:d9:56:3d:fe:72:43:21:f1:04:61:cc:cf:0a:10:9e:b6:09:
70:9f:f5:13:d8:c9:c0:82:0f:3b:87:35:29:08:2d:66:49:ec:
41:3a:12:62:ac:8f:3b:d4:ea:d7:d6:5a:97:42:b8:52:c2:65:
8a:3f:2b:94:83:34:d6:c7:84:bc:cc:2a:6b:a5:05:31:b9:db:
19:25:e0:a7:3c:ee:35:17:ad:68:c1:77:ae:71:7b:7c:e7:8b:
bd:4e:1d:18:8e:27:3b:b9:0b:35:3c:d4:2a:29:18:a0:b8:00:
82:ab:36:42:7a:03:2a:49:45:8b:62:46:cd:0e:30:5d:69:a5:
42:f2:42:10
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:14:20 2025 by rpki-client