Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t6pTc4MhTWSOYzvMQg071oYWeP0.cer
File: t6pTc4MhTWSOYzvMQg071oYWeP0.cer (raw, json)
Hash identifier: N26ep+0ablcCSkxpQ/Jd01j9fsunQBfuYwIsR1cE6Rk=
Subject key identifier: B7:AA:53:73:83:21:4D:64:8E:63:3B:CC:42:0D:3B:D6:86:16:78:FD
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02303B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C3083/A0CF059A2E6011E7B7473E70C4F9AE02/t6pTc4MhTWSOYzvMQg071oYWeP0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C3083/A0CF059A2E6011E7B7473E70C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 10 Feb 2025 16:24:09 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 133395
AS: 136151
AS: 137478
AS: 137483 -- 137484
AS: 139764
IP: 103.81.204.0/22
IP: 202.144.200.0/22
IP: 2400:7cc0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143419 (0x2303b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 10 16:24:09 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A91C3083
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:71:d2:85:e8:cf:82:9d:b0:39:0c:32:a6:19:
33:66:86:bd:c8:81:b1:aa:0f:da:9c:39:bb:9a:00:
24:af:50:01:a6:00:2c:3a:60:4a:5b:09:83:a3:ce:
9c:1b:e8:b9:f7:48:b5:41:90:a4:16:d8:ec:16:59:
9e:cc:96:a4:57:73:3a:8e:fb:82:a5:5b:53:bb:2e:
22:e0:98:2c:88:d4:1d:69:c2:7d:89:dd:53:79:2e:
cc:47:a8:ac:13:92:3b:0a:04:f4:a4:b6:e2:91:77:
26:3c:57:bd:f4:11:34:11:f4:90:76:99:73:6d:4e:
a7:e5:e3:15:0b:88:d6:3a:31:80:92:e1:13:01:82:
ae:f2:39:3b:a9:8e:ce:88:d9:e6:ce:db:d6:9a:c0:
ec:ed:01:91:73:b2:52:05:99:39:29:b6:5c:de:0a:
4a:f8:e9:5e:9f:c3:ab:a8:c8:55:30:0d:68:59:7d:
d6:da:7f:73:60:ab:d7:cf:be:d2:97:c1:6f:1e:69:
d6:46:4a:51:b4:69:3c:a0:1e:24:c7:02:57:b7:00:
9b:3d:76:43:ce:d6:4a:f1:25:c9:4f:2a:a1:fd:27:
62:b9:b8:87:f9:61:c2:fc:96:00:5a:3c:d3:c3:38:
f0:e3:c3:d6:19:59:a9:0c:0f:0b:28:72:38:ff:52:
87:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:AA:53:73:83:21:4D:64:8E:63:3B:CC:42:0D:3B:D6:86:16:78:FD
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C3083/A0CF059A2E6011E7B7473E70C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C3083/A0CF059A2E6011E7B7473E70C4F9AE02/t6pTc4MhTWSOYzvMQg071oYWeP0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133395
136151
137478
137483-137484
139764
sbgp-ipAddrBlock: critical
IPv4:
103.81.204.0/22
202.144.200.0/22
IPv6:
2400:7cc0::/32
Signature Algorithm: sha256WithRSAEncryption
ad:cf:01:2e:bf:99:1c:8f:74:29:d8:39:1d:d3:6d:70:eb:7b:
6e:7e:86:1b:37:99:b2:11:5a:af:3e:56:27:24:ce:52:92:13:
19:cc:d8:1e:1b:51:39:6a:e5:aa:90:25:ae:40:77:93:5a:1f:
2c:c8:b4:c9:d2:c4:e1:78:77:c0:80:e2:d2:3e:7f:1f:2a:2e:
9c:70:14:cf:3f:cb:54:83:c5:e0:05:eb:06:02:49:23:8f:5b:
2c:6f:f8:4c:25:88:74:f9:80:c9:a5:32:86:7e:78:c6:b1:ee:
83:70:2b:2a:be:a4:05:69:f0:0d:1a:bd:2a:0d:29:be:29:01:
c2:ba:fd:10:a8:aa:76:fa:fe:6a:7e:14:93:04:31:e6:c8:01:
8d:7d:5b:3b:a1:09:29:32:99:0a:fa:5d:38:8c:d6:b9:95:10:
40:b3:9c:75:75:14:29:2a:00:36:f1:2d:a9:42:57:af:6a:27:
5d:20:9b:29:7a:10:23:bc:89:26:71:16:0e:d3:03:bc:e8:03:
fe:d5:1c:7f:95:be:f8:cf:69:bb:fb:6c:b4:a8:79:84:ad:19:
a1:2e:32:79:a9:71:a0:34:3f:7d:c6:57:4c:80:cb:38:52:df:
dd:8c:3c:ed:64:de:8c:47:3a:59:9e:98:5c:89:77:ab:49:cd:
79:ee:47:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:23:13 2025 by rpki-client