Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h25oE78sGBHNEd6ZKBrNRL7A3nM.cer
File: h25oE78sGBHNEd6ZKBrNRL7A3nM.cer (raw, json)
Hash identifier: jl4zV+8SoPTcaPCB6BcC+rMl3aNS0vefJu2KI5heckg=
Subject key identifier: 87:6E:68:13:BF:2C:18:11:CD:11:DE:99:28:1A:CD:44:BE:C0:DE:73
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022C00
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 28 Jan 2025 21:04:20 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 149172
IP: 103.177.196.0/23
IP: 2400:3d20::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142336 (0x22c00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 28 21:04:20 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A91F4FB0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e7:45:22:11:d3:f6:b9:75:4f:7d:a8:31:86:
06:48:5c:90:19:be:62:e8:fc:1a:4a:be:c3:25:42:
46:2b:a4:f9:83:a0:0f:22:9f:3f:70:b0:f9:30:57:
7f:c9:26:e3:e4:71:ac:f2:4e:d9:a7:e8:c6:95:ff:
50:d4:49:52:9e:e4:f8:b8:2f:92:d5:ee:9f:21:85:
06:2c:d2:b5:cb:71:23:f3:f3:60:7d:79:49:1d:20:
3b:8f:e7:f7:d8:46:f5:00:47:ae:49:34:38:ef:9c:
0a:eb:90:15:38:11:4e:91:19:41:d8:08:b6:9b:3d:
9a:12:20:c8:e5:3d:36:a4:48:81:8e:72:85:ac:12:
4e:1b:c4:4c:42:00:2c:ae:e2:f1:6b:e9:c3:3b:a7:
12:0e:e2:50:43:1a:69:1d:05:18:6e:77:3e:10:c1:
09:d4:4d:e0:ad:2c:4d:07:bf:2c:51:23:7b:37:d9:
4e:f7:08:ba:a6:d0:c9:57:f9:6c:c9:7d:39:a9:48:
de:ed:1f:7e:9b:51:ce:f7:37:e9:5c:e9:04:1d:15:
b1:56:54:44:30:c1:28:ba:a7:aa:58:e1:63:e7:a0:
41:7e:e9:ba:74:54:b2:1e:ab:19:83:b9:aa:06:c7:
b4:bc:b7:84:a5:1a:da:7d:56:4b:9d:35:a7:8a:ae:
30:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:6E:68:13:BF:2C:18:11:CD:11:DE:99:28:1A:CD:44:BE:C0:DE:73
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149172
sbgp-ipAddrBlock: critical
IPv4:
103.177.196.0/23
IPv6:
2400:3d20::/32
Signature Algorithm: sha256WithRSAEncryption
05:cf:3a:88:53:25:bb:ed:75:53:27:24:7e:15:3c:45:27:bb:
22:a4:d0:e9:92:84:ca:78:10:b4:b8:ae:5c:be:ff:d8:09:58:
7a:4f:f9:b3:55:68:9d:de:b5:ab:0f:a8:4c:17:79:67:e8:de:
27:68:d7:1c:eb:73:ad:6e:c3:b2:56:97:5d:f2:d0:0d:d6:9f:
82:46:67:d1:a7:00:77:4b:f7:9e:46:56:12:6d:8a:7e:ae:47:
19:d8:24:6d:0a:00:14:9c:e3:00:56:e1:3b:d4:62:e4:d3:3d:
94:1d:7f:69:11:f7:c7:59:21:25:76:51:f8:85:76:98:c0:e9:
ea:ca:05:95:e1:d8:08:9f:24:70:0f:55:9e:09:f3:07:94:f5:
55:ee:47:14:da:e6:db:0c:d4:35:21:d1:fe:8b:ed:d2:1f:e6:
89:cb:a0:05:a7:54:b7:fc:9a:9d:81:a2:6b:07:5c:d4:4e:a1:
5c:01:89:9a:e0:3d:00:df:e5:7f:73:21:73:c1:01:4a:ce:8a:
99:0b:70:6f:17:a5:76:7e:0a:fb:ba:f2:63:6a:fd:09:96:0a:
03:ee:c5:22:db:bd:cc:50:c6:14:ac:16:0e:60:3f:d6:50:03:
48:7b:5e:52:29:04:fa:84:b1:7a:ad:e8:be:6f:2d:39:e8:5e:
6f:f5:17:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:18:17 2025 by rpki-client