Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i99RGJodvfloQ0tec2qpq_1FVhw.cer
File: i99RGJodvfloQ0tec2qpq_1FVhw.cer (raw, json)
Hash identifier: Zhb8aaQWYRqs4NuTF1epM12xhmJyy94oNJBzX1o2Njk=
Subject key identifier: 8B:DF:51:18:9A:1D:BD:F9:68:43:4B:5E:73:6A:A9:AB:FD:45:56:1C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F8AB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/i99RGJodvfloQ0tec2qpq_1FVhw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 12 Jun 2024 12:40:34 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: IP: 43.242.240.0/22
IP: 103.26.192.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129195 (0x1f8ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jun 12 12:40:34 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A9119510
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:28:7d:78:b5:ed:6a:d3:03:1f:f4:dc:43:da:
a1:b7:8c:b7:f2:da:8d:62:7c:e0:9b:17:39:48:6e:
ef:50:8b:f8:61:52:f0:6c:65:d0:c5:e5:68:07:d5:
69:43:34:3a:47:5f:95:28:9a:a0:27:d9:20:d3:e1:
4f:6f:cc:b8:10:7c:e0:da:f9:37:e3:40:83:45:06:
a1:21:66:9c:b8:f3:44:10:10:26:61:46:19:2a:3a:
15:81:e4:0d:f5:72:7f:eb:8b:3d:61:4e:70:86:7d:
39:54:bb:65:ed:f0:5d:72:cf:a0:b9:26:30:a0:07:
25:ea:6a:09:ac:d8:06:83:46:5c:fd:64:d0:43:d4:
55:d9:00:21:d7:ec:ca:b8:71:61:de:5e:da:c4:5a:
3d:b0:87:32:e6:de:44:18:4d:d7:0a:ef:d4:0b:9e:
54:d6:22:8f:6f:e6:02:dc:11:e8:e5:b0:4a:c6:a3:
3f:e4:46:7a:c0:e4:be:44:71:a6:09:38:12:bd:2d:
be:83:61:a6:17:d8:35:aa:2a:fe:c3:5a:f1:10:8c:
c9:15:8c:18:e7:47:bb:cd:8a:42:e2:66:9b:96:02:
2c:2a:f3:52:03:e0:91:bf:0a:9e:77:1b:92:99:84:
60:76:26:40:24:72:bf:ee:63:23:6f:5b:d6:49:35:
66:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:DF:51:18:9A:1D:BD:F9:68:43:4B:5E:73:6A:A9:AB:FD:45:56:1C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/i99RGJodvfloQ0tec2qpq_1FVhw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.242.240.0/22
103.26.192.0/22
Signature Algorithm: sha256WithRSAEncryption
8e:39:93:d5:8a:6e:66:7d:ac:79:5d:d6:50:a5:5c:ef:81:b7:
a2:27:1f:59:6b:b0:2e:07:49:2c:f9:ae:65:50:9a:d5:6a:f2:
94:1a:9a:c0:e5:3b:4c:ad:22:6e:73:ef:28:95:9f:b9:10:05:
88:a9:f0:09:2b:af:7b:8f:b6:9d:4e:ce:68:ee:6e:72:a6:ac:
6c:83:c9:78:70:94:59:56:93:3d:02:63:79:00:44:5e:27:88:
a2:96:57:56:25:e4:7c:60:b8:0f:dd:4e:82:34:b8:89:60:64:
b4:55:bb:39:5b:a1:35:ad:53:62:9b:6e:51:7b:6b:97:52:b1:
64:0b:8f:12:0d:f2:f7:69:bd:06:29:ec:05:28:b9:75:50:4b:
26:ed:bc:3e:52:04:db:0f:6a:b8:34:96:9f:86:0c:c6:70:12:
5d:29:51:88:2f:31:38:e1:b2:40:99:0b:e2:41:a7:dd:c5:ef:
3c:1d:97:82:f4:b9:cd:86:7a:d2:28:58:b9:0f:66:fb:35:86:
63:cc:09:33:11:53:9c:22:b3:a8:28:34:16:f1:eb:7f:72:1b:
a7:43:c4:8f:10:3d:90:c0:62:37:02:ac:61:02:1e:74:1c:a0:
13:e6:ac:02:8b:d1:4e:ed:9a:35:32:79:a0:6d:24:be:e4:ce:
10:3f:74:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:28:09 2025 by rpki-client