Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tjiXkb1UCWrQCZmnWR-yBBia8Zg.cer
File: tjiXkb1UCWrQCZmnWR-yBBia8Zg.cer (raw, json)
Hash identifier: zq3AmWC2swFkROrFsD9uYlg2IADmQ//MAFzsb6TGkcs=
Subject key identifier: B6:38:97:91:BD:54:09:6A:D0:09:99:A7:59:1F:B2:04:18:9A:F1:98
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0214C5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DB551/DBF6E1D4E2E411E99CD0A969C4F9AE02/tjiXkb1UCWrQCZmnWR-yBBia8Zg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DB551/DBF6E1D4E2E411E99CD0A969C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 18 Oct 2024 18:12:37 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 103.99.86.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136389 (0x214c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Oct 18 18:12:37 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91DB551
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:a3:f2:8e:08:a4:67:a6:66:c7:15:db:f9:f4:
2f:35:7f:53:62:15:07:11:ef:44:14:4f:ef:c1:17:
e2:90:08:2d:59:9c:64:71:99:e6:cc:41:5d:bc:4f:
91:58:b9:a6:48:39:3e:95:a4:f6:d6:fb:ea:f4:bc:
42:ee:b6:95:13:48:e9:df:8c:d2:f8:ef:72:2d:1e:
ac:35:70:2f:39:40:39:33:d4:ed:a9:fc:56:b7:10:
4b:1a:7c:26:2e:09:76:ee:0f:1e:91:38:5d:a3:87:
9a:c9:d9:79:ba:d6:58:8b:2e:a5:59:73:c6:5e:ae:
bc:18:5d:c9:57:d1:b2:3a:22:e2:86:a5:da:0b:3f:
31:b4:f9:6d:f0:90:77:40:ee:26:c9:0f:c8:22:7e:
0f:b8:d1:7a:47:2c:b1:bd:d0:7a:49:2d:95:20:e1:
ef:c6:7f:d4:3d:fc:18:a7:61:7e:27:d5:e9:73:ff:
bb:3c:44:79:c3:8b:15:8b:0a:3a:5a:52:8d:27:86:
0b:b2:46:b9:74:99:1b:bf:3a:5a:82:f1:c3:f2:e9:
9e:8a:46:8b:4c:45:ef:5a:73:20:ce:95:c9:4b:18:
16:c2:b4:ab:4b:72:b8:c8:7d:d3:33:1c:c2:25:6e:
a2:2e:37:bd:d0:e5:72:f7:18:4a:59:56:c9:31:03:
49:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:38:97:91:BD:54:09:6A:D0:09:99:A7:59:1F:B2:04:18:9A:F1:98
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DB551/DBF6E1D4E2E411E99CD0A969C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DB551/DBF6E1D4E2E411E99CD0A969C4F9AE02/tjiXkb1UCWrQCZmnWR-yBBia8Zg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.99.86.0/23
Signature Algorithm: sha256WithRSAEncryption
75:5e:7f:ed:50:05:f3:4a:25:3c:00:c8:75:35:63:30:03:04:
a5:6e:20:82:e3:e9:d2:a0:a6:6e:29:19:c0:c7:f1:56:79:78:
eb:72:11:56:26:73:15:39:e2:31:8d:f4:83:08:94:ea:43:5e:
30:4b:64:df:0b:6b:72:d8:dc:c2:95:bd:6f:58:b5:8e:ae:a1:
03:63:a8:c6:2b:32:89:68:09:b5:06:7f:c3:2b:f9:1d:fe:b5:
a9:82:10:1c:bb:d2:c4:f9:c2:4d:b6:ec:ff:b2:60:a9:56:95:
de:08:34:f4:4a:f3:a2:a6:95:e1:b7:70:8f:4c:8c:38:29:51:
a7:15:a4:d5:13:e1:26:2d:05:a2:05:d1:f0:eb:88:3f:8a:53:
40:04:3e:59:6a:5a:7f:28:0c:6b:ed:57:cf:99:24:a4:1e:10:
ad:11:e5:05:0b:24:0f:9b:a8:ce:bc:c2:e6:68:64:1d:62:a6:
f1:f4:15:14:25:7f:e8:22:c1:bd:98:a6:7b:7c:30:3e:58:aa:
a6:fb:d3:2f:c1:55:e7:cc:35:68:25:e0:f3:19:89:9d:03:1d:
46:d3:7e:58:14:88:50:6b:d5:14:f3:b3:6c:86:b9:2e:76:67:
36:85:75:e8:53:d4:0f:d7:d9:82:73:a5:17:83:ba:e6:e8:61:
e7:4b:fc:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:22:13 2025 by rpki-client