Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8C6F5rKocB50zxmk_RGcBBPzZg.cer
File: k8C6F5rKocB50zxmk_RGcBBPzZg.cer (raw, json)
Hash identifier: uPMxZsNismu9PPQwyOLuzb4u5vHSEkj4Gn4tnTthSPE=
Subject key identifier: 93:C0:BA:17:9A:CA:A1:C0:79:D3:3C:66:93:F4:46:70:10:4F:CD:98
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0219CE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9111788/3D0515A059AB11ED8EEBA456C4F9AE02/k8C6F5rKocB50zxmk_RGcBBPzZg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9111788/3D0515A059AB11ED8EEBA456C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 06 Nov 2024 12:22:06 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 150396
IP: 103.30.8.0/23
IP: 2400:bd60::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137678 (0x219ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 6 12:22:06 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A9111788
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:61:00:95:57:c5:1c:5c:a1:b0:2e:c8:6b:4b:
46:8f:25:81:44:c2:af:9e:e7:e7:09:2b:7d:41:c3:
63:7d:c4:13:a4:69:97:31:1d:94:cf:98:b0:16:dd:
fc:68:73:50:83:09:b5:ff:7a:78:cf:55:a2:3e:34:
82:e6:45:44:ae:06:1e:84:27:8f:ac:9d:d3:81:45:
6d:cd:2a:5d:4f:4d:47:65:bc:0c:7f:31:27:72:7c:
02:5f:b1:29:16:f4:c2:b3:80:9b:9c:d2:f9:06:85:
1f:26:55:0c:89:51:f0:d7:af:40:81:80:29:a0:18:
68:20:3c:2f:21:86:82:59:ca:5d:db:1e:96:4b:43:
c1:5c:95:f7:d3:ba:30:95:9c:a1:92:4d:8a:22:06:
5a:ad:f8:d9:81:4a:8b:8c:46:cf:04:e6:a3:ab:74:
b9:fd:19:1a:fd:ae:5d:21:c6:3d:05:3a:d3:ee:33:
1d:a9:fd:ed:bc:fe:67:6a:5b:57:e3:3c:c7:32:c8:
d4:1e:ab:0a:3c:81:05:68:d4:13:37:2c:18:1c:7d:
3e:9c:63:06:5e:9a:12:1b:78:4e:e6:0f:25:5e:1c:
f1:13:49:21:3e:6a:59:af:73:88:66:44:0d:dd:93:
9c:d7:38:0a:91:32:87:d7:1f:b9:cb:89:8a:6e:c8:
10:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:C0:BA:17:9A:CA:A1:C0:79:D3:3C:66:93:F4:46:70:10:4F:CD:98
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9111788/3D0515A059AB11ED8EEBA456C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9111788/3D0515A059AB11ED8EEBA456C4F9AE02/k8C6F5rKocB50zxmk_RGcBBPzZg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150396
sbgp-ipAddrBlock: critical
IPv4:
103.30.8.0/23
IPv6:
2400:bd60::/32
Signature Algorithm: sha256WithRSAEncryption
17:e4:d1:04:13:78:4b:6a:44:ff:0e:92:71:77:bf:b5:27:60:
0e:dc:c9:42:34:18:37:bd:73:89:04:c3:91:54:f6:0d:24:2c:
93:c6:f1:c3:ca:81:ea:47:14:5d:50:8c:8c:5f:57:e5:c8:36:
7e:9f:60:cf:a9:f3:b2:57:04:c4:41:da:1d:6d:cb:78:2d:91:
a4:bb:e5:98:d7:ab:d3:df:be:cd:72:71:21:32:34:80:55:b6:
10:98:01:f0:ea:ed:1e:d2:19:aa:75:87:39:62:dd:b6:5c:ba:
40:de:3a:3f:36:04:e2:d1:a0:93:5e:15:e6:b0:85:16:c4:19:
d0:f1:8c:c8:89:4c:6f:6e:3e:ef:65:7c:f3:6c:dc:13:52:c9:
db:c0:e6:6a:de:7a:b8:ea:11:b3:7b:49:dd:7f:23:f7:b4:1d:
30:06:39:bd:a2:80:98:da:cd:4e:d7:a5:21:3e:b0:59:55:2b:
c9:87:44:e6:4b:4e:fe:7f:58:e4:49:7f:3c:64:bb:93:1d:1c:
c5:c7:a4:bd:21:91:bd:75:da:57:b1:14:a6:4f:82:8d:a3:1d:
bd:b4:a8:db:93:89:45:0a:8f:3a:c4:e2:da:7f:f6:b6:35:58:
d6:c8:62:8e:37:a5:6d:b7:7a:2b:3e:ed:9d:18:63:83:a0:66:
b8:81:da:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:25 2025 by rpki-client