Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLh_nflqIHJhuXtMnjjIO1yA1m4.cer
File: pLh_nflqIHJhuXtMnjjIO1yA1m4.cer (raw, json)
Hash identifier: ECqyWZxF33cRPfZ1nDKSUhw0+7Vpo4+iLUI0G0Sup+g=
Subject key identifier: A4:B8:7F:9D:F9:6A:20:72:61:B9:7B:4C:9E:38:C8:3B:5C:80:D6:6E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02187E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BC6A6/A2C621A05F3911EF85DC8E2DC4F9AE02/pLh_nflqIHJhuXtMnjjIO1yA1m4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BC6A6/A2C621A05F3911EF85DC8E2DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 02 Nov 2024 10:48:21 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 132808
IP: 103.74.66.0/23
IP: 103.133.238.0/23
IP: 2405:7a40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137342 (0x2187e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 2 10:48:21 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91BC6A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:1b:59:1f:26:b2:0b:fb:94:d3:13:6d:f8:04:
bb:27:dc:42:95:d7:4a:4a:69:b6:d4:e8:3b:3b:4b:
fd:e5:53:98:ca:08:6a:32:32:4f:81:2d:7a:91:a2:
ab:6c:67:7a:47:98:9c:69:7a:7e:6e:e3:fc:15:4c:
6a:32:c6:c1:2d:b2:2a:06:c5:b4:e3:26:65:5c:20:
8d:a1:c8:45:3c:b3:74:69:bd:b5:bc:24:56:22:3d:
b5:40:7c:c9:18:90:23:25:c9:2e:f6:c7:d5:78:02:
e7:d5:40:5b:6a:53:fe:3a:dc:75:bf:0e:76:e3:46:
29:0c:94:0d:08:4a:fa:54:69:50:51:ce:33:38:68:
03:f5:fc:38:8f:3b:89:12:1b:9e:c9:b0:95:87:fd:
af:89:cf:58:91:c0:19:d2:59:a6:83:3c:b9:06:6e:
77:7f:e6:03:51:3b:a6:05:b4:e0:52:9f:85:8d:c8:
e3:f3:29:5f:c2:63:28:e0:90:49:5c:40:e7:ed:b0:
96:50:e1:6c:80:68:2a:c2:e5:f0:95:02:d1:63:ec:
5c:a1:2c:b2:c9:01:ac:ba:cf:de:30:70:de:6d:78:
31:99:a4:16:74:dc:9c:6e:6b:5c:a3:61:c7:c3:bc:
26:16:a4:2e:43:2d:f0:71:4b:bf:a0:f4:c0:4a:24:
7d:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:B8:7F:9D:F9:6A:20:72:61:B9:7B:4C:9E:38:C8:3B:5C:80:D6:6E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BC6A6/A2C621A05F3911EF85DC8E2DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BC6A6/A2C621A05F3911EF85DC8E2DC4F9AE02/pLh_nflqIHJhuXtMnjjIO1yA1m4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132808
sbgp-ipAddrBlock: critical
IPv4:
103.74.66.0/23
103.133.238.0/23
IPv6:
2405:7a40::/32
Signature Algorithm: sha256WithRSAEncryption
d3:26:24:0d:b5:73:91:49:b1:ea:06:3c:08:c0:04:24:f6:03:
cd:2d:04:66:08:81:99:51:c2:ca:86:e1:0b:a4:cd:2a:22:e5:
d0:64:14:08:c4:b6:4f:35:be:03:2f:d9:a3:35:86:3f:a4:33:
02:5c:db:02:02:4c:b0:cc:55:ff:ee:1c:50:0b:bb:1d:72:f9:
01:a9:47:14:79:2e:00:0c:1f:86:7f:77:6a:8b:a5:6b:ab:06:
17:68:f3:74:bb:82:b2:ce:a2:5c:3e:d6:e7:3b:c2:d6:42:ad:
2a:f6:d5:03:ad:4b:be:74:d3:2a:b3:7c:ae:b4:c5:09:62:61:
55:ac:90:39:28:e1:ca:53:9b:9f:ce:78:89:42:02:a4:4e:e2:
94:25:92:10:a6:25:6c:17:e9:fc:03:8f:df:0d:72:50:77:b9:
b7:03:72:31:32:8c:6d:74:ca:c4:a0:94:ff:a5:f0:0b:aa:f3:
fd:a3:3c:12:b3:f3:1b:bb:24:95:87:1a:49:43:6c:0a:a8:0d:
e3:5c:cc:da:61:62:45:94:b3:db:b5:f5:b6:b6:67:23:f1:ea:
57:11:bc:12:25:a1:a2:58:8b:98:d7:75:b7:fa:32:3d:bb:ed:
ad:1d:9b:92:6f:72:fd:8b:ec:21:e2:54:bd:e7:58:6c:89:21:
8d:ae:ca:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:26 2025 by rpki-client