Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wqyUVBWKN8GhGJ1Gou4UU3UNqa8.cer
File: wqyUVBWKN8GhGJ1Gou4UU3UNqa8.cer (raw, json)
Hash identifier: vwVjb6kqk0vMxYPIcUe9gjZJWo3GAeRrXKWHB1iBXTQ=
Subject key identifier: C2:AC:94:54:15:8A:37:C1:A1:18:9D:46:A2:EE:14:53:75:0D:A9:AF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021C25
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912FF31/B56BB72413BC11EBBCFEB359C4F9AE02/wqyUVBWKN8GhGJ1Gou4UU3UNqa8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912FF31/B56BB72413BC11EBBCFEB359C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 18 Nov 2024 21:21:25 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 141355
IP: 103.157.85.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138277 (0x21c25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 18 21:21:25 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A912FF31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:3b:8e:f7:0f:21:06:6f:2b:0d:f0:cf:aa:7b:
99:9a:d2:22:7d:e5:e6:15:3e:77:f8:86:b6:19:39:
af:84:73:87:67:b6:89:87:b5:ea:d5:cf:aa:4f:ba:
c8:ee:b5:fb:c6:d5:16:c7:c8:5c:9c:e7:09:36:17:
33:af:8c:0a:7a:9b:d8:f9:56:e6:48:ad:39:a4:5d:
2a:fe:d4:d6:c7:09:04:fb:4d:48:1f:2d:12:69:07:
4d:7a:4c:f4:34:de:76:0c:2e:a9:75:9b:05:de:4e:
35:43:25:35:e8:35:fa:db:19:f8:e3:54:3d:09:54:
f5:ba:9c:38:9a:04:5a:11:db:dd:40:0b:b4:74:d4:
6c:f2:8d:f4:68:97:0e:5b:80:be:aa:b2:26:9d:ee:
cb:68:83:6d:67:a4:7c:6a:54:7a:b3:74:68:f1:ea:
6f:e5:66:87:33:c4:d3:17:84:59:33:34:dd:0c:df:
63:01:e0:cb:7e:b1:f0:e3:ba:8c:f7:e0:f5:2c:2b:
93:36:f9:8c:10:52:44:d4:bc:9d:6b:32:6a:fa:83:
19:1c:3a:e4:64:c2:de:18:2f:de:a5:c0:8f:11:e1:
81:2b:ca:f0:8b:03:30:2c:a9:85:5c:be:dc:6e:24:
3c:ec:48:f7:26:1e:e5:3d:34:30:52:8a:ce:1f:03:
02:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:AC:94:54:15:8A:37:C1:A1:18:9D:46:A2:EE:14:53:75:0D:A9:AF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912FF31/B56BB72413BC11EBBCFEB359C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912FF31/B56BB72413BC11EBBCFEB359C4F9AE02/wqyUVBWKN8GhGJ1Gou4UU3UNqa8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141355
sbgp-ipAddrBlock: critical
IPv4:
103.157.85.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:90:f4:ba:80:5d:d3:15:39:d4:ad:b3:29:0c:f6:b4:a4:fa:
80:cd:48:01:4c:3e:c3:62:9b:d7:fd:f0:00:35:81:58:a4:da:
d3:ac:42:59:c0:39:0d:68:9e:41:17:c5:cd:98:86:76:d3:4f:
88:21:18:df:23:36:ce:84:69:aa:a6:c8:57:06:e7:32:95:0c:
a4:9a:86:bd:85:55:56:f8:a8:a5:e7:3b:a7:b7:92:00:5d:08:
e1:b6:d5:a7:58:32:7e:c0:49:ee:89:f7:4a:31:68:3b:72:d9:
c1:89:8d:48:f3:9d:84:08:e9:28:b7:2b:7e:9b:d2:df:3c:0b:
9a:66:de:45:8a:33:bd:7a:f9:be:76:46:af:5c:65:1e:25:fe:
e4:2d:80:e3:f6:b0:61:a4:e1:b5:4f:19:2f:23:f3:cc:75:fd:
ec:7d:c0:ac:1c:e3:c9:07:47:7b:9d:db:ad:1b:57:7e:ec:87:
ac:70:c5:fa:18:3f:f3:03:c7:80:a5:d9:df:ca:26:18:0b:b5:
dc:e9:14:61:75:bd:c9:1e:55:fc:1e:3d:d5:bf:51:76:eb:69:
68:2c:43:45:12:38:06:4c:dc:16:84:c1:0b:4b:63:be:3b:d6:
5b:9a:3f:6a:ec:15:57:88:65:e7:85:17:b6:5e:cf:b0:a0:fd:
61:fe:57:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:25:11 2025 by rpki-client