Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer
File: gYkRn4AeKAprTdViZT7xA2lh0Js.cer (raw, json)
Hash identifier: xd8eHaUQ8jlM9ukvp37rnzHr2rX+OmG4Aop6DIzwqXg=
Subject key identifier: 81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021CA5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 20 Nov 2024 18:42:15 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 17921
IP: 103.143.216.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138405 (0x21ca5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 20 18:42:15 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91D9CAE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:4d:04:48:f1:98:2d:2c:37:0b:c9:c2:be:b7:
c7:64:4e:99:5a:0b:21:25:3b:78:a9:60:c2:47:f5:
a2:2f:17:78:b4:f3:de:e7:15:f0:d3:b2:13:e6:46:
1c:74:6b:43:9c:2c:17:57:88:4c:56:25:d9:1a:a5:
60:e0:fb:77:48:d8:0a:21:20:5e:9a:70:29:51:11:
cf:69:b0:45:0e:5b:84:ee:41:b7:53:2f:e0:6d:74:
a1:53:7b:33:f1:d8:ff:1d:48:8e:5d:2e:4a:73:ff:
99:db:c1:36:e9:65:76:d7:4c:87:d4:ba:da:74:18:
dd:36:39:d5:49:dc:82:94:24:bf:9e:fd:a6:a6:d1:
b4:79:28:ff:2e:dd:38:a2:fb:42:e2:2d:52:8b:24:
e8:b6:dc:40:a3:33:a6:3c:8d:37:d2:25:1e:64:bf:
ad:9a:94:ce:70:8f:62:1f:05:87:55:7d:1c:2a:bf:
d8:04:b5:d5:f2:ff:e3:b5:41:11:36:90:53:f5:8b:
25:69:30:c7:fe:e0:b7:c5:31:03:f4:50:86:de:c7:
e2:75:59:6d:33:fe:55:36:a6:b7:2f:d1:6b:a2:fa:
8d:90:bf:ae:dd:29:8b:5b:02:ed:55:80:96:d9:86:
fd:f6:e7:55:7d:cc:54:ce:0f:ba:8d:08:0b:7c:07:
43:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17921
sbgp-ipAddrBlock: critical
IPv4:
103.143.216.0/23
Signature Algorithm: sha256WithRSAEncryption
d4:12:57:ae:0b:cc:35:8e:21:d2:6e:0d:3d:cb:29:f9:fe:ba:
cb:f2:f6:04:78:74:89:53:4f:98:ac:66:7e:3c:e2:7c:fe:4b:
35:71:57:07:2c:c5:21:28:d2:27:c5:30:40:5c:22:e8:56:89:
6f:ea:78:3b:97:b5:a2:f4:d1:e0:e8:d7:23:e8:50:8d:f4:bf:
9e:8e:27:22:05:a7:b5:02:ec:72:0c:2f:97:61:b3:ca:22:ac:
a2:4d:65:eb:f5:11:1c:2e:28:d1:3d:bd:33:eb:3c:b8:57:ba:
ca:6a:47:69:df:89:45:0d:49:2e:8b:85:4f:9e:58:ed:32:57:
12:a6:9c:d3:a0:73:c3:d3:b0:bb:c2:e7:e7:0b:9c:9a:8d:33:
fa:6f:5d:20:b1:41:3b:b3:52:ce:5c:e2:25:45:af:2f:52:70:
2c:36:14:18:45:be:bd:f7:bd:43:a6:16:16:45:84:62:24:f8:
76:38:58:13:83:b4:da:a5:d1:2f:22:de:3d:80:f4:7d:42:9d:
39:c9:28:28:40:86:b4:ec:a4:09:d4:46:c1:96:c0:ce:56:28:
a5:02:07:75:7c:60:8a:fe:97:02:d4:0f:7e:70:ae:0b:e5:0b:
8b:c4:2b:80:cf:ed:82:cf:3f:34:37:87:9c:3d:95:a3:b6:d8:
3f:ad:be:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:21:29 2025 by rpki-client