Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer
File: maB2Nu64AHCDMDGWpYxBvsxoj4A.cer (raw, json)
Hash identifier: zObA1iRew7uld+Jx1U/h1ip98aaCavbj/5PniF0OCkY=
Subject key identifier: 99:A0:76:36:EE:B8:00:70:83:30:31:96:A5:8C:41:BE:CC:68:8F:80
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023122
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 13 Feb 2025 22:42:32 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 136917
IP: 103.110.126.0/24
IP: 2401:a840::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143650 (0x23122)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 13 22:42:32 2025 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91EEC3B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5e:76:e5:bd:07:11:e1:3c:d4:ad:ef:6f:9e:
10:93:ee:14:a8:ad:58:29:fa:a0:58:fe:fc:37:d4:
11:f6:25:b3:dd:86:55:e0:e9:23:7c:4e:de:34:5f:
f6:4e:08:bf:7a:65:12:82:3a:05:af:8e:9e:e3:7d:
f4:c0:5d:43:b5:53:aa:2f:0f:ed:08:9a:87:fd:a2:
06:aa:be:bb:2d:c1:0f:5f:ad:14:7d:f6:f6:49:99:
e0:76:fe:dc:ca:dc:29:3d:65:a0:51:75:34:77:46:
e7:d0:cc:db:fb:aa:b4:8c:e6:47:73:74:ef:fc:49:
50:8b:12:12:62:6a:bd:a6:08:c9:db:e9:a6:cf:53:
2e:56:e3:f5:6e:1c:bc:6f:45:3b:23:3f:21:f8:71:
06:18:7d:77:d4:ef:7c:f4:51:29:ab:75:80:bd:9e:
b1:72:e3:5a:f3:41:85:be:ac:98:f1:4f:84:7c:2c:
94:2a:49:e5:4a:c3:79:6b:37:be:54:f8:e4:54:97:
97:3e:88:34:46:09:75:4a:30:b6:a7:5b:2c:73:66:
09:c6:bc:4f:f5:fb:f1:88:f6:42:3b:b1:48:3e:7e:
76:92:45:0c:c5:4e:e0:58:d1:8a:68:97:e9:10:cf:
3b:5e:fd:2f:ef:1e:54:f5:64:21:81:72:1a:41:16:
3e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:A0:76:36:EE:B8:00:70:83:30:31:96:A5:8C:41:BE:CC:68:8F:80
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136917
sbgp-ipAddrBlock: critical
IPv4:
103.110.126.0/24
IPv6:
2401:a840::/32
Signature Algorithm: sha256WithRSAEncryption
32:19:de:b9:0a:c4:8b:ee:4b:cb:fd:2c:43:4f:8d:13:00:be:
4b:1c:5b:ba:97:2c:16:f4:d0:ce:d2:63:90:ee:7f:3f:da:14:
0c:ed:09:bf:ac:a9:c9:e4:c8:42:9a:be:85:b8:49:d8:6a:21:
36:9a:20:85:4f:95:d7:88:12:90:b1:6e:5c:40:9b:0f:b4:ec:
ed:ac:9e:0c:72:bf:dc:45:c9:78:2d:fb:6b:04:20:52:b8:cb:
9f:8a:2d:15:f8:ed:87:26:13:3f:fc:62:a5:7b:2b:3f:dd:f8:
f3:eb:dc:ea:06:f2:f5:0a:f5:8d:cd:46:7d:9f:11:44:e8:3a:
f3:ed:87:01:20:cb:0f:a9:ee:eb:02:fd:c8:62:f8:d1:1c:38:
62:0a:2b:c0:ef:d2:7a:90:6d:77:17:14:06:08:40:f5:88:72:
7c:7d:7d:b9:cf:10:34:0e:31:34:15:d1:45:3c:81:70:86:de:
a7:6f:56:70:66:ba:49:2a:dc:43:62:09:31:c4:b3:a2:2a:83:
6c:38:f3:80:cd:ae:99:60:55:1f:83:b5:50:46:35:08:5c:fd:
3b:0b:96:a6:32:c1:1a:6f:5a:b9:87:4e:56:95:82:c6:dd:69:
25:b5:17:c1:1d:82:71:24:ee:0b:3a:f3:bc:e9:16:27:97:43:
a0:f3:14:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:22:23 2025 by rpki-client