Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j5ZyrK2aUfA9SLxDtjOpVzSY494.cer
File: j5ZyrK2aUfA9SLxDtjOpVzSY494.cer (raw, json)
Hash identifier: 8JKn2QtOhSQ9ni1WfVw46r1CNHol6HoQnyJmJFRpL8I=
Subject key identifier: 8F:96:72:AC:AD:9A:51:F0:3D:48:BC:43:B6:33:A9:57:34:98:E3:DE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0219E1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 06 Nov 2024 14:25:35 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: IP: 103.14.100.0/22
IP: 116.193.164.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137697 (0x219e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 6 14:25:35 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91FC1DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:77:28:81:6e:a6:a9:7a:76:03:29:73:01:fc:
26:5b:8b:0c:54:7a:73:d7:eb:91:e1:4d:5a:40:55:
f3:37:23:4d:ed:4c:cf:ee:77:0d:75:01:42:c7:21:
68:70:88:93:21:5d:8d:34:99:36:b3:71:89:77:fe:
53:21:c3:90:bf:cf:78:5b:5f:a5:0c:67:77:cc:aa:
7e:42:64:13:9a:83:34:f3:84:7a:ff:72:88:c7:17:
fa:b8:5b:54:b4:a6:0a:30:86:85:68:28:d9:6f:af:
8d:53:1f:80:cd:79:c2:ea:54:91:63:87:cf:2b:76:
00:b1:6a:ca:3e:36:a3:8f:c1:3b:a5:9b:94:5a:f2:
7f:55:c6:6d:ea:f9:26:71:4e:10:69:66:58:d2:6d:
16:73:b7:a8:af:7f:14:05:18:16:40:93:6b:98:8b:
15:69:d3:60:d4:0a:ed:cf:e8:60:df:57:3f:2e:d3:
c3:59:6b:d5:a2:20:42:bc:67:42:09:6f:01:2b:23:
e4:ca:56:53:07:d2:75:b7:b7:de:24:0a:70:8d:a4:
cc:d7:62:e0:54:51:d5:f3:7b:e1:b6:0e:8f:6a:ac:
47:b7:a6:20:7a:17:ae:a8:a6:b8:16:be:a0:34:e1:
4e:a7:8e:cc:95:f7:29:60:18:6d:c6:c5:60:d6:b6:
5f:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:96:72:AC:AD:9A:51:F0:3D:48:BC:43:B6:33:A9:57:34:98:E3:DE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.14.100.0/22
116.193.164.0/22
Signature Algorithm: sha256WithRSAEncryption
2e:5b:8e:b9:9a:88:73:fe:d1:ca:77:ad:65:ac:4d:0b:ee:3c:
1a:c5:a4:f6:c0:30:b2:ca:f8:47:99:14:63:31:7e:bd:9d:71:
af:c9:d7:2a:68:8a:29:a9:3c:ec:4b:e3:d5:81:85:76:f9:a8:
91:16:af:9c:9b:b0:1f:68:ad:5e:be:3b:4e:4d:4d:03:74:68:
c7:51:72:9e:e0:a3:ce:af:a7:55:65:bb:18:bd:1e:f7:56:34:
49:c6:5a:0a:18:4d:b4:6b:51:15:a7:6d:8a:b3:af:a1:2f:d2:
dc:51:a4:75:f2:19:5a:e5:45:87:f9:68:b4:2b:1c:4e:cf:78:
77:cf:04:fc:5a:eb:3b:9f:23:4e:dd:e1:5b:9a:2b:ca:17:4d:
e7:e8:6f:d4:1c:ed:9b:64:97:97:8d:c4:33:37:ce:d6:ba:60:
00:3a:c5:ea:cc:81:87:8d:4a:6a:06:a0:8a:21:70:6f:48:7b:
88:4d:ae:fc:2b:1e:14:85:19:d4:3e:27:95:87:b9:11:70:98:
1d:a6:f5:4f:98:53:b1:0a:21:64:64:76:6e:67:1e:7e:0d:54:
6e:c6:8c:4d:f4:92:36:75:d4:a3:c7:29:03:4c:41:9f:07:94:
82:94:aa:a9:d3:66:a7:84:af:54:56:5b:c9:95:bb:a8:40:e2:
2d:58:15:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:17 2025 by rpki-client