Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBRJ7peREatw2N-Y2rpOJrprxls.cer
File: vBRJ7peREatw2N-Y2rpOJrprxls.cer (raw, json)
Hash identifier: ti+1vZ2x+KjDbfL4rkc/NVg1JeMwPAltJFYAk99Kzkk=
Subject key identifier: BC:14:49:EE:97:91:11:AB:70:D8:DF:98:DA:BA:4E:26:BA:6B:C6:5B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020F59
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 24 Sep 2024 21:03:37 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 138339
IP: 103.130.148.0/22
IP: 2403:bc40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135001 (0x20f59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Sep 24 21:03:37 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91CCA34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:df:0f:58:d4:03:38:e1:67:a9:f5:a6:cb:6a:
56:cd:b3:f4:cb:d6:49:82:31:d3:d0:ea:75:f5:6f:
b1:af:2d:f5:c5:f0:f7:fb:d7:cf:52:07:99:14:8e:
14:47:ce:ab:df:34:01:7c:91:8a:fc:55:1f:fe:88:
b4:c6:e8:69:45:e2:cb:de:69:c8:04:fe:6c:0b:9d:
f0:b7:5f:1c:78:e9:fc:e9:e6:80:17:98:18:1a:bd:
a2:cb:8b:c2:11:46:bc:e6:23:e0:92:8f:42:07:d7:
af:b5:aa:36:4b:11:34:16:73:45:18:15:d8:dd:b1:
3d:62:4c:b4:ed:7d:e1:c3:5b:df:41:f7:44:71:26:
bd:d4:8e:64:b5:19:fa:cc:94:f9:db:18:bd:7f:bf:
25:55:32:7b:dc:3e:2f:7a:70:53:d2:21:00:f4:eb:
c9:10:81:c8:8d:45:2d:5a:3c:f1:1e:3c:5a:6d:9c:
44:cb:3c:b3:6d:c5:97:f8:13:2f:5d:15:6e:69:5c:
9a:c3:0c:d1:6a:f4:63:b1:c0:ee:27:e9:7f:c7:42:
b8:fd:79:a7:40:f8:94:2d:a8:53:bd:7c:1d:04:e8:
ff:9c:05:bc:0a:1d:2d:8c:21:13:27:91:ae:f4:44:
59:b3:b9:85:3a:39:61:e4:9d:e4:03:81:60:5e:2d:
97:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:14:49:EE:97:91:11:AB:70:D8:DF:98:DA:BA:4E:26:BA:6B:C6:5B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138339
sbgp-ipAddrBlock: critical
IPv4:
103.130.148.0/22
IPv6:
2403:bc40::/32
Signature Algorithm: sha256WithRSAEncryption
4e:50:0a:2a:f2:60:14:19:93:c3:39:ac:c0:26:22:c9:e0:a4:
45:d0:6a:ef:5c:b8:f2:55:be:a1:d8:77:85:84:13:b1:1e:ec:
db:ee:06:0e:5c:71:77:fc:03:fb:87:be:45:29:34:09:ca:82:
d8:f0:17:5a:98:3a:c0:94:cd:83:13:f8:3e:9c:5e:c7:6a:f7:
8d:e0:0c:ad:05:4d:ec:b7:f1:1e:58:9d:51:ab:bf:be:20:bb:
97:6e:3d:5b:f6:ce:a0:cc:6a:48:27:2c:8d:ae:80:ce:46:3c:
93:af:c6:4d:45:9e:31:64:88:73:64:f2:8d:6f:9a:7c:6c:97:
16:64:fb:84:47:3a:c7:0e:98:ff:99:31:5c:3b:d6:8d:65:93:
12:08:d2:4a:b2:bd:03:73:20:8b:a7:0a:76:f8:ad:6e:05:38:
83:b1:63:43:df:42:e4:12:05:88:11:40:09:6e:83:25:1b:4d:
21:be:01:d0:6d:cf:d1:63:ab:b5:1c:46:ff:a3:2e:3c:52:ab:
97:ac:ba:7d:58:a0:df:f8:8b:eb:52:a6:fa:b4:c6:a9:14:8b:
e0:8c:10:1b:9c:3c:05:aa:e7:ee:cd:24:60:ce:cc:4f:3d:d9:
6c:20:54:64:ff:50:ed:b6:62:af:5d:ff:a6:3a:93:06:16:88:
5a:20:59:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:07:00 2025 by rpki-client