Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hAGMCD0Qo55_aFxBrhZjcMbXesQ.cer
File: hAGMCD0Qo55_aFxBrhZjcMbXesQ.cer (raw, json)
Hash identifier: f0OZc/R2XiuYXsBYLhdUIjtuSU7K2vclYVdPpqREc2w=
Subject key identifier: 84:01:8C:08:3D:10:A3:9E:7F:68:5C:41:AE:16:63:70:C6:D7:7A:C4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FCD9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91505AB/05243AC64C2811E7968AD211C4F9AE02/hAGMCD0Qo55_aFxBrhZjcMbXesQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91505AB/05243AC64C2811E7968AD211C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 01 Jul 2024 16:38:25 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 133450
IP: 103.94.128.0/22
IP: 2401:3fc0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130265 (0x1fcd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jul 1 16:38:25 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91505AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f4:01:08:1b:67:a5:43:2a:10:a3:a2:cd:51:
b0:77:0f:89:7f:dd:56:3f:6c:38:71:cd:54:0e:84:
45:60:9a:c3:f3:a3:06:37:ec:a7:73:85:03:29:d4:
64:d9:ce:47:67:ef:5a:47:69:d3:69:71:91:e1:e0:
46:f0:24:1d:a9:fb:30:c4:7f:e6:c3:37:a0:ec:09:
40:5b:b8:61:57:65:93:7f:5c:d5:c2:7b:ac:b1:31:
52:a5:a9:bf:94:29:5d:49:2b:25:ef:89:e4:9e:a2:
ae:6d:50:52:80:5e:cc:9e:4c:32:42:d2:f2:f8:91:
b7:7e:8d:5f:3e:71:b3:2e:0f:ac:08:c2:39:41:bf:
7d:aa:ae:d8:39:0b:b8:24:18:6f:8d:50:2a:09:99:
ed:ea:6b:38:50:2f:a8:3f:0a:03:bd:4f:6b:4d:d1:
39:ca:2e:45:51:d4:dc:a7:ac:77:19:9a:f8:ae:6f:
91:bf:2f:02:c6:ad:f1:0f:1d:4f:59:82:e4:5e:5f:
49:0b:5b:5e:9e:da:45:98:0c:0b:67:52:c5:0f:14:
dd:6c:4e:8a:e1:79:51:8a:cc:f2:71:61:4f:85:dc:
7a:21:3d:7a:f0:64:42:34:5e:3e:90:5a:43:ae:1c:
bd:88:38:56:59:14:d7:34:fe:51:60:bb:de:ab:9f:
2c:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:01:8C:08:3D:10:A3:9E:7F:68:5C:41:AE:16:63:70:C6:D7:7A:C4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91505AB/05243AC64C2811E7968AD211C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91505AB/05243AC64C2811E7968AD211C4F9AE02/hAGMCD0Qo55_aFxBrhZjcMbXesQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133450
sbgp-ipAddrBlock: critical
IPv4:
103.94.128.0/22
IPv6:
2401:3fc0::/32
Signature Algorithm: sha256WithRSAEncryption
d0:6b:26:ca:01:2b:3a:00:d4:87:65:03:8d:ba:43:1b:40:40:
9e:c3:13:68:ec:1e:88:79:43:6d:d0:0d:c7:0e:62:ff:8b:77:
5e:95:ed:9e:80:fb:a1:96:f0:fe:40:90:cc:60:5a:90:ad:8a:
76:96:62:e4:6a:f7:7a:85:fe:18:f0:47:cc:70:54:97:cb:cf:
5f:dd:2f:29:44:cb:ee:86:f5:99:7d:2e:0f:bf:49:bd:69:bc:
b3:39:0b:1c:78:48:b7:29:f2:9e:07:7e:16:55:8e:d3:aa:d4:
af:dc:68:df:ec:42:f4:24:dc:01:eb:ed:e8:72:88:94:d9:31:
9b:20:15:0b:2a:4b:06:5b:35:2a:f6:71:38:3b:ba:df:c1:4b:
05:5e:fe:45:6b:58:ca:01:db:4f:d2:b3:a7:b6:11:f5:28:27:
d0:75:54:af:26:e0:d3:cd:e8:2d:7a:dd:18:33:59:4b:0b:b1:
c4:c4:3b:b4:df:c8:4d:19:57:e9:c0:47:05:f8:6e:e6:da:bc:
16:2b:62:ca:27:70:eb:00:1f:da:9e:80:6a:7c:f4:d3:e0:01:
d0:8d:90:59:35:09:d6:d3:fd:77:02:86:40:20:ea:90:e3:cb:
ea:ed:27:f8:05:70:26:be:0e:5f:57:cc:6f:1b:b0:71:1f:27:
5d:df:34:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:43 2025 by rpki-client