Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fKdQzAmQd9S0MpCnYoOre_C2Smg.cer
File: fKdQzAmQd9S0MpCnYoOre_C2Smg.cer (raw, json)
Hash identifier: QVWLuz9e5gcdDbJFJMqKyxN9JcArWrBCZ4LJV2eavr4=
Subject key identifier: 7C:A7:50:CC:09:90:77:D4:B4:32:90:A7:62:83:AB:7B:F0:B6:4A:68
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021470
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91300ED/0EC94A88622911EB8E1BC27CC4F9AE02/fKdQzAmQd9S0MpCnYoOre_C2Smg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91300ED/0EC94A88622911EB8E1BC27CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 17 Oct 2024 04:44:59 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 141701
IP: 103.162.58.0/23
IP: 2401:cde0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136304 (0x21470)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Oct 17 04:44:59 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91300ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e9:80:5f:d7:1f:ab:9b:ae:45:99:49:41:dd:
3b:c1:00:94:44:cc:5e:21:75:82:76:89:4b:d4:04:
e3:67:d8:34:2f:f0:98:02:3c:07:4e:54:1e:ba:7d:
56:85:ff:86:9c:10:63:cd:83:c4:57:89:71:fe:33:
dc:b6:0d:52:64:96:a0:52:4d:1d:4a:fb:e3:57:0c:
d7:91:2c:5a:97:8a:2a:88:60:d6:2d:25:b5:24:01:
f7:be:06:59:0b:e0:7e:a1:df:ac:24:7a:0b:4c:6a:
63:1d:11:17:1d:57:43:c9:24:9f:46:06:cc:db:bb:
ed:c7:3b:49:ec:d3:af:7d:8b:87:ce:c1:35:31:6c:
12:c2:0e:c1:55:dd:44:29:34:be:79:cc:7f:d3:e1:
7a:ff:81:1f:33:3a:4c:16:66:f0:2b:d6:02:7c:56:
4d:6a:24:a7:5c:45:f1:42:3f:bc:c4:26:fc:35:a2:
df:4b:b9:3d:bb:f1:2a:7f:34:8a:83:cb:03:e5:b7:
ef:f3:5f:c8:f9:e6:1f:7c:d4:d8:06:09:66:cb:24:
03:0b:1f:f1:a8:34:67:5f:4c:69:64:d9:39:64:c8:
21:a2:17:5f:a4:b6:99:f1:11:74:0a:8c:95:6f:4d:
3f:0b:aa:c9:b0:68:35:ac:b9:c7:ca:d3:04:81:04:
37:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:A7:50:CC:09:90:77:D4:B4:32:90:A7:62:83:AB:7B:F0:B6:4A:68
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91300ED/0EC94A88622911EB8E1BC27CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91300ED/0EC94A88622911EB8E1BC27CC4F9AE02/fKdQzAmQd9S0MpCnYoOre_C2Smg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141701
sbgp-ipAddrBlock: critical
IPv4:
103.162.58.0/23
IPv6:
2401:cde0::/32
Signature Algorithm: sha256WithRSAEncryption
71:c4:7f:a2:a4:c2:68:05:5f:5c:bb:c2:26:3f:79:33:b0:7f:
b5:46:b2:55:90:1a:8c:d1:ac:ba:98:c3:3d:5e:18:35:7e:18:
5e:87:d0:75:9c:08:a5:14:de:6b:eb:69:92:d4:04:38:87:2f:
ce:2c:6c:7f:70:e5:54:bd:74:f6:8e:f4:03:f7:85:70:1f:af:
b1:e4:1f:cf:d0:d7:37:50:c4:b7:2a:9f:a7:16:9f:3f:32:a6:
58:aa:64:11:52:d1:52:0c:c5:2d:6d:ff:fb:24:53:ca:e6:ef:
e5:28:cb:e3:88:c8:3b:a5:1a:6b:b0:df:22:f1:8c:35:31:5d:
69:e5:1a:b6:12:30:77:b6:a5:c1:60:d7:cb:2c:d9:0e:24:13:
8f:64:35:c3:10:fe:f8:72:57:ab:01:71:18:ba:7e:1d:68:bc:
ca:f5:4e:cf:be:da:1e:32:bb:7c:ba:4d:cb:74:fa:46:4e:24:
0b:8e:f5:74:89:29:00:c4:65:69:da:a0:76:c9:e2:09:75:76:
0c:c7:d5:55:d0:01:15:6c:7d:47:f8:66:07:80:3c:1e:1c:3c:
ae:f3:62:52:dc:c6:0d:59:e0:b8:55:85:59:9f:6a:c4:2b:b7:
c2:76:94:e5:ce:b3:e2:d8:6f:b6:e2:ec:42:64:3d:79:74:a7:
91:25:2d:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:55:19 2025 by rpki-client