Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer
File: siw9CrzTkZSGo-YejXiJI5Ir9qU.cer (raw, json)
Hash identifier: svnc/eosysfN160u+3O7UmrEKJFtH+8fuDwLzqb3cxQ=
Subject key identifier: B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020622
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 11 Aug 2024 06:09:14 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 38324
AS: 133617
IP: 103.118.40.0/22
IP: 103.236.224.0/23
IP: 2001:df2:ac40::/48
IP: 2403:27c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132642 (0x20622)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Aug 11 06:09:14 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A917A66F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e4:c7:41:81:97:b6:b0:ba:09:98:cb:cf:4a:
92:6c:67:84:ff:24:ea:db:3d:c5:a3:a4:c9:2a:6c:
01:c1:9f:c9:bb:01:de:95:08:3c:8a:61:25:46:a4:
26:c6:3e:55:80:6e:2d:b0:25:da:3d:77:c8:f7:21:
aa:25:48:0e:1e:d1:d0:d6:1a:b2:f1:b0:98:a9:4b:
5d:d8:43:87:4b:6e:54:2d:cd:b6:12:0e:47:f4:57:
8b:e9:b5:62:dc:c2:b4:85:6a:03:1e:8c:c5:8d:0a:
dd:db:95:d0:fa:31:92:57:d5:2d:3e:ff:9f:33:12:
ca:af:2c:6e:68:cb:d6:58:b8:d0:b9:84:10:9d:96:
ac:24:b4:24:c8:d5:19:fb:73:dc:87:22:49:64:c0:
24:92:1a:4b:8a:e8:9d:01:ee:fc:9d:2f:82:8e:c5:
e1:69:d7:7d:44:9a:fa:fd:16:0c:ca:72:c0:08:e9:
a0:95:c5:71:98:54:72:e5:1d:5b:80:87:4f:d2:c5:
7a:e6:9f:da:de:68:29:c5:88:4f:0d:66:4b:91:a0:
f0:84:bf:c3:33:cc:62:52:83:ec:7b:09:ae:01:8e:
e6:35:e4:6b:c7:5d:1e:7f:c4:58:7b:48:e7:74:ae:
fa:cf:05:ef:91:aa:c1:3e:54:77:cd:e1:a6:20:52:
a3:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38324
133617
sbgp-ipAddrBlock: critical
IPv4:
103.118.40.0/22
103.236.224.0/23
IPv6:
2001:df2:ac40::/48
2403:27c0::/32
Signature Algorithm: sha256WithRSAEncryption
4e:82:5b:b2:f3:c0:9a:6d:c9:06:9f:82:6f:2f:c1:f2:ad:e9:
35:b6:7e:dd:51:db:b4:ed:c1:c3:12:95:38:77:ca:a4:a3:96:
17:f9:38:04:6f:d5:92:1b:03:fc:4f:a4:22:cc:65:bc:e6:03:
f5:81:d3:f8:ac:31:9a:98:0e:91:99:f0:4e:b0:cb:6a:b0:a7:
21:6a:31:cc:8d:c2:35:1d:28:d2:13:4c:b6:05:08:f0:33:88:
89:c8:e3:42:63:77:19:c3:10:85:bb:cb:58:36:94:84:cd:24:
79:7a:30:07:55:bb:0d:b0:5d:a1:b4:f1:ec:bc:5d:57:02:d8:
19:49:d0:88:b5:78:ae:dd:75:9b:d6:e8:dc:11:9e:aa:0e:fa:
2b:ad:7a:98:40:c7:ff:79:ac:c3:51:03:6b:f1:df:45:ea:21:
ec:b7:73:30:0e:0b:e0:70:1a:e9:94:43:b3:af:ab:ce:1e:27:
57:1f:26:f9:24:3d:63:04:72:a9:7d:8d:90:4d:33:f6:ee:3d:
04:0b:a2:60:ee:1b:d9:5b:dd:64:2c:21:a5:fb:e4:14:b2:34:
98:8b:e1:d5:d1:c1:61:d1:5c:78:b5:a6:65:87:98:2a:b7:cb:
53:9a:78:88:fa:16:97:bc:18:33:e9:9f:97:99:b3:5f:22:94:
c4:c4:be:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:54:16 2025 by rpki-client