Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer
File: xbajYOSK75Kf3CcpbR1S9b9umRY.cer (raw, json)
Hash identifier: iDo2+pTzTDvUiynn4k19B/Ra7X4xyzmqYDQ4B9XWNQ4=
Subject key identifier: C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0225ED
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 31 Dec 2024 01:53:46 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 139840
IP: 103.145.238.0/23
IP: 2001:df2:3280::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140781 (0x225ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 31 01:53:46 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91FD088
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0d:75:85:91:1c:a1:7b:7e:26:c7:39:37:af:
9d:3a:33:3f:89:01:de:d0:6e:88:1a:4f:a4:0d:e3:
00:01:99:d1:6b:15:bd:3f:0c:f0:9e:2f:b7:5c:85:
fd:a7:72:b4:3c:59:b9:e1:47:6a:20:e6:ef:9e:77:
32:c2:77:23:36:9b:1c:90:b6:13:b4:d9:5d:19:ed:
63:d1:7d:3a:58:c1:0c:ed:e6:7b:5b:a7:5e:2c:2a:
4c:87:74:6d:04:16:f7:c6:08:df:1f:24:ba:0c:71:
11:0e:62:a3:33:12:f5:45:b8:82:be:fc:b2:db:cf:
aa:c5:05:bf:39:c3:d2:0a:70:21:e5:d8:42:7c:9b:
0a:59:f1:8d:2e:d9:8d:6c:d8:08:d3:e1:b4:58:52:
fb:8f:b1:69:b2:17:44:37:31:67:67:82:9a:db:4f:
f3:23:b5:41:e2:2a:4f:4a:e8:96:59:13:a7:14:50:
50:e3:ec:07:27:41:aa:33:d9:7b:6b:bf:35:0a:bf:
9d:05:fc:89:d8:c8:4a:21:b9:0e:55:0f:46:ed:c7:
fa:8e:8c:72:e2:ec:81:fe:2b:63:3b:4c:de:64:cd:
ea:e1:4d:54:93:21:95:93:f0:f9:d1:85:51:c3:ce:
37:6c:8a:db:cd:e0:f6:ce:a3:46:4d:f0:e6:7e:7d:
1d:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139840
sbgp-ipAddrBlock: critical
IPv4:
103.145.238.0/23
IPv6:
2001:df2:3280::/48
Signature Algorithm: sha256WithRSAEncryption
c8:cc:57:1f:c9:d9:e6:35:4f:5a:3c:1e:e5:81:0c:6a:c1:83:
13:0a:58:9b:fb:b3:0c:07:3e:da:a0:b7:5b:78:01:d8:57:8c:
fa:4c:ea:b4:a4:1b:ac:72:d3:1f:f5:b5:42:3c:a7:89:f1:e8:
7b:83:2b:ad:26:f9:1e:d0:ed:82:06:c1:e0:6c:a8:a8:20:ff:
7c:95:6a:e9:78:87:a5:74:18:88:26:30:5e:01:92:ca:72:d1:
25:2e:00:9b:c8:a7:b8:35:48:e3:52:c3:a0:1b:9e:46:db:ca:
9e:37:73:b5:8d:00:05:37:fb:61:48:d5:67:1d:a1:7e:ab:15:
05:ac:8c:11:32:79:0a:49:8c:c5:da:70:96:da:57:df:cc:4c:
eb:e2:51:b6:18:29:f1:ac:b4:03:fb:c6:e7:53:3f:75:87:47:
4f:49:e8:36:6f:32:98:47:9d:fd:a3:2d:e5:e8:e9:b2:f9:c8:
21:12:fb:cf:db:ad:6f:3e:d2:2d:67:f9:71:ac:e7:e3:a8:74:
61:0e:37:e4:15:d5:92:ea:88:5a:fb:8a:91:b7:fb:4d:81:44:
e2:19:7c:cd:30:c8:fb:d0:3c:75:51:ad:5a:77:f8:d3:c0:00:
69:29:e7:35:6b:8f:0a:3c:2d:7c:d4:83:d4:b9:17:d7:26:5e:
c5:8d:ba:1a
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:08:08 2025 by rpki-client