Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q30L1dKrXe4vHNaWuCm675d_eM4.cer
File: q30L1dKrXe4vHNaWuCm675d_eM4.cer (raw, json)
Hash identifier: gngYNBFRkgm6pposXuBhrJwGeq7EYXhFS2ZWDH9vGVk=
Subject key identifier: AB:7D:0B:D5:D2:AB:5D:EE:2F:1C:D6:96:B8:29:BA:EF:97:7F:78:CE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023105
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9171A5B/17E10102993B11E79ABB8181C4F9AE02/q30L1dKrXe4vHNaWuCm675d_eM4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9171A5B/17E10102993B11E79ABB8181C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 13 Feb 2025 15:36:28 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 17627
IP: 123.231.0.0/17
IP: 203.189.64.0/20
IP: 2405:4400::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143621 (0x23105)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 13 15:36:28 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A9171A5B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4e:57:dd:7e:b0:86:55:98:c6:2c:4d:5c:8f:
1a:77:ba:be:0c:01:3a:4e:bc:0b:6f:7f:8f:75:b7:
ba:fd:ee:a7:21:40:ee:16:ee:57:35:c1:a2:47:69:
b6:72:b5:11:75:c0:9a:3e:58:c7:0d:30:79:2a:8f:
69:b3:a6:c6:bf:74:90:00:1d:f7:92:d0:25:c4:64:
d5:35:98:40:ec:79:75:87:23:67:1d:1d:05:e1:d7:
b9:13:64:62:15:35:f8:be:46:ad:c6:27:24:5d:f5:
e4:ac:1e:a7:37:97:3e:e6:7a:17:3e:1a:71:3d:42:
5b:5b:90:8b:ce:ff:b9:d3:be:f6:b6:bf:51:2e:89:
b0:8d:31:df:b2:e0:8d:9e:51:0b:7f:c8:bd:3a:9f:
bd:88:eb:af:c9:70:6b:65:a1:29:12:3b:26:35:6a:
54:76:ba:e9:47:91:73:ba:f6:bd:06:8a:f1:ac:99:
54:0c:0d:4b:e4:c5:ce:8a:7e:c3:f3:4a:5e:27:6b:
17:33:20:33:1e:59:38:68:c8:b3:f2:4b:f2:ed:13:
46:d3:a7:83:32:5d:02:41:d0:4f:78:e6:01:db:9a:
10:85:79:d4:24:6f:07:46:d5:97:a4:b0:22:ab:f6:
5e:0a:a1:61:6d:1c:1c:c5:b8:08:66:5c:8f:6e:92:
98:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:7D:0B:D5:D2:AB:5D:EE:2F:1C:D6:96:B8:29:BA:EF:97:7F:78:CE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9171A5B/17E10102993B11E79ABB8181C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9171A5B/17E10102993B11E79ABB8181C4F9AE02/q30L1dKrXe4vHNaWuCm675d_eM4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17627
sbgp-ipAddrBlock: critical
IPv4:
123.231.0.0/17
203.189.64.0/20
IPv6:
2405:4400::/32
Signature Algorithm: sha256WithRSAEncryption
24:e9:cb:d0:18:db:39:ea:07:60:54:bf:52:e6:b9:85:e8:77:
6b:65:fe:03:1d:d5:a1:35:aa:2e:09:98:f0:e1:94:e5:5a:0d:
28:db:f9:56:4d:26:16:76:48:5e:95:66:bc:6f:42:89:81:c2:
16:4c:1e:99:54:da:ba:38:57:b4:5e:4d:cd:34:aa:87:15:9b:
1d:0f:b5:b2:c5:84:3a:f9:4a:aa:7e:42:00:98:79:c8:34:ce:
c7:2a:0b:7a:cb:5b:86:3e:39:8c:90:c9:85:55:96:2a:72:3e:
72:8e:bf:70:eb:f9:18:e5:29:01:9e:50:25:ff:10:3b:3a:48:
4e:00:83:88:7d:d2:71:e8:2b:da:7e:dc:6b:69:6e:42:ad:55:
96:e4:b6:d0:e0:14:1f:7f:35:06:2c:49:18:7d:e6:46:08:f3:
ca:c8:ba:72:06:07:13:de:c0:fc:67:a2:ac:cc:c9:cf:d6:1d:
c2:6f:96:82:81:f1:be:65:c5:79:07:07:1a:ff:02:3c:b4:f4:
6c:31:5b:e1:dd:07:ee:6c:a2:c8:43:3d:8f:2a:8a:b5:ff:6d:
40:07:35:d5:73:49:3b:b1:6b:b8:ed:f9:1a:3a:e9:8e:cb:1a:
a9:13:6c:fd:75:4f:84:83:7a:d4:f7:9c:f3:03:6b:b1:4b:06:
16:c3:fb:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:12:45 2025 by rpki-client