Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x3wTCfShUw6jlUFFKIFfnHZ8UVs.cer
File: x3wTCfShUw6jlUFFKIFfnHZ8UVs.cer (raw, json)
Hash identifier: RtP+M80kgYS2T0fH+Kawrz02XUe1kZHjjOaKqihW2kg=
Subject key identifier: C7:7C:13:09:F4:A1:53:0E:A3:95:41:45:28:81:5F:9C:76:7C:51:5B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F897
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 11 Jun 2024 22:59:37 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 142125
IP: 103.166.148.0/23
IP: 2001:df6:9380::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129175 (0x1f897)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jun 11 22:59:37 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91E3377
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2d:e9:09:9d:85:bf:b3:84:b8:b9:bb:e8:11:
c0:41:46:08:13:35:55:71:6c:6d:df:2a:55:cc:78:
65:78:5b:2f:19:ea:e2:6a:41:05:8d:2a:85:54:0b:
84:20:8b:10:eb:aa:9b:99:23:5a:b4:75:84:42:b9:
b8:a1:d6:25:fc:5d:de:7a:80:9c:0f:06:68:fa:37:
38:82:c7:d8:25:2e:e7:e1:ca:58:df:10:18:b2:12:
24:68:19:00:d2:c4:91:21:26:c5:15:db:ea:f7:ee:
4e:aa:84:e8:4c:97:9c:d7:b6:24:14:15:c6:0a:52:
73:63:af:5b:89:e6:20:1d:65:4d:92:f4:27:ba:b3:
db:b9:00:74:95:d6:c0:eb:c1:72:ff:ab:9e:0f:32:
dc:5c:13:aa:25:b5:a8:66:b1:7d:d8:b2:81:b6:c0:
ad:38:b4:a8:69:b2:52:9d:eb:bd:5f:b6:60:70:b4:
8d:10:18:22:60:43:f0:6c:68:2b:8d:af:59:a1:ec:
f9:36:db:41:42:95:5c:5b:e9:f4:df:30:50:bd:70:
35:38:30:ae:d4:48:93:1c:f4:2e:f6:f9:dd:ee:02:
61:6f:1d:85:37:9c:db:d5:79:26:2e:8d:28:18:6b:
f5:7a:f3:55:25:5c:cc:3f:da:25:5c:cc:7d:4f:f1:
1e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:7C:13:09:F4:A1:53:0E:A3:95:41:45:28:81:5F:9C:76:7C:51:5B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142125
sbgp-ipAddrBlock: critical
IPv4:
103.166.148.0/23
IPv6:
2001:df6:9380::/48
Signature Algorithm: sha256WithRSAEncryption
d4:d7:9e:f1:20:7a:2e:05:9f:bd:03:c5:65:d5:d9:73:2f:0f:
24:c6:31:d6:6e:8b:07:b1:35:90:10:18:2a:4c:1d:cd:77:53:
fe:cd:57:4c:ea:fb:dc:2c:c5:3a:c5:83:08:5c:03:f8:08:eb:
27:1c:a2:a7:6e:e6:37:03:15:48:5a:38:d4:48:38:73:64:57:
8c:8e:28:5d:bd:93:f3:83:3d:25:9e:ff:c3:60:93:b1:f4:03:
24:d0:c7:81:89:80:41:de:41:44:c5:b5:be:2a:bc:62:28:40:
cd:73:77:8c:52:ec:de:58:2d:27:92:54:b4:ec:7d:b5:0b:52:
2b:61:56:f8:97:40:6c:7e:31:89:95:40:58:0b:89:d7:1a:07:
80:7c:eb:4f:4e:03:2a:17:0d:d8:cd:59:c1:cc:73:bb:14:6b:
8a:aa:31:c0:3b:b9:9d:28:fb:a5:bd:ba:71:79:2d:ff:4b:db:
91:13:1f:62:47:0f:d1:3b:c9:ec:25:da:f9:2c:33:03:89:8b:
e8:c9:40:52:68:12:8b:1a:09:a4:ba:49:4c:9f:d6:6a:da:8a:
17:9c:0b:c9:31:75:dd:20:cd:ad:eb:a2:26:32:20:3e:d1:21:
ac:13:02:e9:58:d0:61:e3:6d:9f:5d:5f:ae:60:bd:cd:cb:0d:
a9:73:3e:35
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:31:12 2025 by rpki-client