Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x40eWVkb4MdSTTa9-FyKxuoZD44.cer
File: x40eWVkb4MdSTTa9-FyKxuoZD44.cer (raw, json)
Hash identifier: dGEeXpauMciK+KX3NPUAqR/EACQvH/QzBGG7MN6pnPY=
Subject key identifier: C7:8D:1E:59:59:1B:E0:C7:52:4D:36:BD:F8:5C:8A:C6:EA:19:0F:8E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FEEB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/x40eWVkb4MdSTTa9-FyKxuoZD44.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 09 Jul 2024 03:11:52 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 149866
IP: 103.189.160.0/23
IP: 2400:8760::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130795 (0x1feeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jul 9 03:11:52 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91554E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:95:b7:9f:5b:e6:59:02:52:c2:ae:30:e9:85:
1b:70:c8:dd:0d:9b:17:37:84:51:79:5e:d5:dd:d0:
8e:fa:7f:d1:6d:3b:2a:aa:91:ff:c0:53:e6:2d:77:
42:3f:a4:fe:78:0b:08:be:74:39:74:0d:4b:c1:25:
c7:77:cd:ea:12:3e:b7:b3:a0:8d:0c:6c:5c:88:a5:
11:c0:0e:f6:53:ed:54:08:6b:0c:ef:d8:81:3e:c7:
57:6e:7d:8f:2b:0b:d8:03:d8:f3:cf:86:07:cc:12:
ee:46:77:91:21:ed:7d:4d:65:f1:9c:96:14:7e:4f:
e3:60:35:3c:2a:fa:76:9b:ab:3c:70:64:da:46:ee:
ae:b2:98:cf:75:72:49:a8:78:55:ca:d7:17:3d:6a:
de:37:cb:8a:81:5e:ae:1b:67:70:37:71:29:e4:ae:
27:29:90:ea:c4:e6:d8:2f:d8:86:40:bf:90:40:a5:
10:e4:df:da:51:1b:aa:85:cf:83:0a:f1:05:b2:52:
42:d7:ae:34:92:e2:04:59:a8:4e:0a:aa:66:3f:7f:
4d:62:05:52:3a:10:33:86:0d:25:2a:1f:3f:8b:f5:
fa:82:14:4f:38:dc:b5:8c:aa:94:18:6c:b1:44:97:
d2:79:a2:50:b9:0d:db:47:b4:77:45:22:dd:a3:e8:
93:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:8D:1E:59:59:1B:E0:C7:52:4D:36:BD:F8:5C:8A:C6:EA:19:0F:8E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/x40eWVkb4MdSTTa9-FyKxuoZD44.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149866
sbgp-ipAddrBlock: critical
IPv4:
103.189.160.0/23
IPv6:
2400:8760::/32
Signature Algorithm: sha256WithRSAEncryption
ba:64:7e:59:b8:dc:d5:12:32:72:c3:46:44:5a:1e:e8:cc:fa:
58:08:f8:c3:f4:71:89:d6:97:a4:61:d0:54:b1:24:c6:fc:12:
b4:24:a6:55:7f:e4:ec:15:20:65:1a:7b:3d:9e:8b:94:39:a3:
7a:69:74:24:f7:62:30:aa:a3:10:73:63:c1:6e:af:77:ae:b3:
95:80:5d:14:a8:4e:a1:fe:10:24:02:cc:2f:5d:31:b9:30:c8:
4c:52:78:1b:dc:52:d3:1c:62:1d:47:55:cc:05:ae:b5:bd:c6:
f4:09:a5:4d:83:36:e4:19:8b:d5:3e:a2:6c:da:0e:61:26:68:
6a:02:7e:28:8c:7f:fc:9e:1c:51:17:fa:aa:b0:34:14:97:ec:
aa:ec:ea:ee:65:88:cb:42:96:b5:5e:9f:39:32:eb:e1:fa:b0:
91:c6:dd:8b:35:95:d8:da:82:41:a4:3f:a7:bf:ce:ce:fe:42:
b9:e3:c7:d1:15:53:1c:d5:d9:8e:0b:cb:c8:92:2b:55:f9:c7:
94:1a:75:9d:c8:5c:c1:43:a6:46:ca:f8:de:be:81:db:64:b4:
96:91:1e:cd:78:62:9f:3b:84:b8:ad:cc:39:75:4b:62:8d:d1:
93:51:55:4d:89:20:0e:97:ba:66:57:b6:f9:ef:14:ba:4f:e2:
40:43:98:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:45:38 2025 by rpki-client