Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.cer
File: v3vK8ZCcELz-oNjn1F2CVPJpxr8.cer (raw, json)
Hash identifier: It/ohJL4vxZmvIkox3QCti+H1sktT0YhwsU39nENDss=
Subject key identifier: BF:7B:CA:F1:90:9C:10:BC:FE:A0:D8:E7:D4:5D:82:54:F2:69:C6:BF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0214FD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 21 Oct 2024 14:50:27 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 23752
AS: 55726
AS: 58413
IP: 45.116.20.0/22
IP: 49.244.0.0/16
IP: 103.95.16.0/22
IP: 113.199.128.0/17
IP: 120.89.96.0/19
IP: 202.70.64.0/19
IP: 2407:1400::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136445 (0x214fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Oct 21 14:50:27 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91401C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:2d:9e:79:76:71:bc:d8:09:53:2f:30:da:4c:
7b:be:84:65:ec:0b:42:81:4e:42:7a:82:d9:87:16:
e1:89:ec:e2:f9:e2:dc:d5:78:60:12:da:0c:95:28:
37:48:f5:06:89:ac:81:9a:cc:f7:46:18:dc:6e:34:
e2:7c:ed:f2:06:d1:e8:b0:e8:a8:29:1d:d9:ca:f6:
b3:f3:46:16:7a:f4:1e:e4:ee:9e:5e:82:c4:89:ce:
8a:93:e4:65:41:05:40:19:fc:bd:1e:da:c1:59:21:
ca:80:1f:64:a7:17:57:7d:e5:b5:8f:60:da:eb:c2:
23:cc:9e:2b:b9:84:ba:e7:b6:cb:36:30:82:ab:9e:
fe:2e:68:24:41:48:3e:86:b1:78:cc:5c:14:38:9c:
1b:cf:7f:4f:1e:03:8f:01:e1:44:9b:f4:7d:f1:55:
64:75:91:de:04:58:15:2a:8a:81:2c:24:e8:2a:c5:
ca:28:4e:01:cf:85:df:14:08:7e:b0:70:4f:23:ea:
87:df:2a:5f:99:07:de:70:ab:02:25:4f:75:bc:2c:
36:99:18:b5:47:10:ca:33:4a:6f:20:68:2b:a9:56:
c2:69:27:50:58:d7:f3:de:b9:48:19:9b:07:8b:6a:
b9:42:83:4d:5d:1c:ac:2d:2b:20:ab:e2:91:19:2b:
b7:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:7B:CA:F1:90:9C:10:BC:FE:A0:D8:E7:D4:5D:82:54:F2:69:C6:BF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91401C4/2B2B3C9E1D6911E2AAA055A608B02CD2/v3vK8ZCcELz-oNjn1F2CVPJpxr8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
23752
55726
58413
sbgp-ipAddrBlock: critical
IPv4:
45.116.20.0/22
49.244.0.0/16
103.95.16.0/22
113.199.128.0/17
120.89.96.0/19
202.70.64.0/19
IPv6:
2407:1400::/32
Signature Algorithm: sha256WithRSAEncryption
a0:05:84:56:df:dd:14:00:de:de:64:33:73:cc:05:90:55:da:
ba:c1:56:7e:56:d8:47:d7:9e:45:e2:8e:66:f8:a7:cb:75:a5:
07:79:bd:2c:97:db:9a:1e:88:c2:20:44:1b:44:d2:5e:6c:78:
f4:99:1a:27:27:4e:51:8e:55:a4:b0:f7:28:e5:a6:44:2d:7d:
56:63:51:43:b9:2f:86:21:67:c5:41:31:65:fb:aa:b7:9d:11:
d7:ae:a1:79:1e:1c:d9:68:17:9f:41:39:b7:b6:d9:55:ed:28:
52:37:bd:61:75:a1:dd:37:90:d2:db:43:d1:fc:0f:38:ab:a5:
1d:c0:d2:5f:68:51:17:5a:17:6e:6b:a1:5b:1f:bd:16:5f:b1:
28:34:50:e0:7c:cc:bb:f8:b5:0a:14:d2:6d:ab:1c:70:a1:6a:
d4:d3:99:38:41:83:94:e4:52:a4:2a:92:63:c7:9b:d8:30:52:
24:bd:13:5a:c5:c6:4a:1b:9d:10:ca:e1:e5:0a:34:75:63:86:
5e:e4:00:b3:4a:09:0a:7b:a7:d9:b9:02:9f:2b:bf:b9:4b:eb:
64:fa:1d:fa:74:e9:b6:45:72:a9:0c:7a:c9:f7:6b:c9:ca:4d:
12:58:8f:a2:07:9b:69:82:08:aa:97:cb:53:8d:37:b2:70:7f:
eb:70:cf:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:16:03 2025 by rpki-client