Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer
File: up0rragmh4TwCuhYcC744p5ytLw.cer (raw, json)
Hash identifier: I7CEa76Q2PoK0uHB9srKdED/13Gg9Rp9uauaIHv9tIo=
Subject key identifier: BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022F93
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 06 Feb 2025 14:29:32 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 17480
AS: 131248
AS: 149003
IP: 43.255.236.0/22
IP: 103.23.52.0/22
IP: 113.21.96.0/19
IP: 202.171.64.0/20
IP: 203.20.74.0/23
IP: 203.147.64.0 -- 203.147.87.255
IP: 220.156.160.0/20
IP: 2401:c00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143251 (0x22f93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 6 14:29:32 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A91A9EE2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4b:8c:8a:e6:86:b3:c9:a2:d6:e1:3a:21:96:
17:88:f5:05:f9:65:f7:47:e8:c0:c7:57:d6:74:bc:
1f:c4:e2:01:07:72:ea:82:2c:d9:0e:0a:78:3f:8d:
06:16:17:e6:c0:35:b6:3f:97:86:9b:3e:01:dd:3d:
d4:78:d7:53:ba:18:05:0c:9c:49:04:d9:35:24:d0:
8f:30:cf:c4:8a:4f:17:07:5a:59:92:85:41:d0:ad:
22:21:fb:16:04:cb:8b:e1:9f:f6:19:65:0d:a5:29:
ef:a9:92:83:7b:d7:04:93:9b:de:f9:3d:8d:fa:78:
e3:7b:a8:47:32:4a:85:c4:41:a8:0e:11:f3:28:74:
74:68:cb:1d:07:39:f9:87:b3:0e:56:bf:ad:ad:9e:
77:d2:78:cd:dc:d5:8a:db:94:73:e5:b5:b7:82:58:
19:35:c7:e2:e8:87:10:39:f8:e7:92:91:27:aa:c6:
a8:68:e8:b8:94:d5:35:33:77:5f:a5:09:85:b6:12:
f5:b7:34:88:f4:08:05:fc:1b:24:73:c0:c7:62:2b:
21:c5:a3:0e:89:13:43:17:59:1f:8c:90:da:5f:a3:
6a:93:7a:c5:28:64:9b:51:c2:dc:d4:2d:54:a9:e4:
e6:7f:6d:51:3a:d8:6b:07:e4:e1:fd:63:68:9f:d6:
42:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17480
131248
149003
sbgp-ipAddrBlock: critical
IPv4:
43.255.236.0/22
103.23.52.0/22
113.21.96.0/19
202.171.64.0/20
203.20.74.0/23
203.147.64.0-203.147.87.255
220.156.160.0/20
IPv6:
2401:c00::/32
Signature Algorithm: sha256WithRSAEncryption
d2:5d:c9:fa:b4:b4:5a:f4:2c:14:f8:47:ef:27:27:18:40:43:
91:2a:3a:e1:13:52:e9:43:4b:9a:92:28:60:35:94:6c:dc:95:
da:58:df:5f:e4:16:73:8b:75:bd:cd:2f:da:88:a1:bb:3c:03:
47:fc:23:1a:bf:d0:49:9b:af:00:bc:db:7d:d2:ae:ff:68:b5:
e8:cc:fb:bc:7d:83:07:ff:a5:51:06:f9:88:c9:a9:24:4b:b4:
c9:13:db:fa:f1:c3:da:9a:a0:d8:60:ed:5d:52:b1:dc:ba:8b:
3a:b3:3c:e0:af:c7:40:66:d0:d6:a6:73:89:0c:bd:63:ab:98:
f3:0b:9e:8f:45:8c:e6:c5:c3:34:3c:78:64:a3:2d:55:a2:e6:
71:0e:d2:bb:a4:32:a7:03:e0:27:88:e7:f4:9f:ce:fa:dc:3e:
7a:24:49:26:9a:04:20:44:b4:5b:ac:3f:85:9f:cc:52:33:5e:
64:ad:9f:9c:b4:24:67:9c:7c:16:b6:05:c8:e5:4a:a1:f5:05:
ce:61:8c:f0:b7:0d:af:0e:43:18:08:ed:e8:c9:41:c6:97:e1:
3d:5f:d6:de:52:34:70:8c:65:cc:d2:ab:42:f1:cd:b0:29:cf:
25:fb:4a:4f:48:80:43:69:a8:93:61:b2:ed:b0:2d:ad:d8:4c:
36:46:0b:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:21:54 2025 by rpki-client