Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yJEt9MR_ima8SJ7IQnJICiEbBoI.cer
File: yJEt9MR_ima8SJ7IQnJICiEbBoI.cer (raw, json)
Hash identifier: 4BCNhPikGiuORY1ekkaYuH2IJs0pnJPKRT680FsWtOY=
Subject key identifier: C8:91:2D:F4:C4:7F:8A:66:BC:48:9E:C8:42:72:48:0A:21:1B:06:82
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022558
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C9286/CA961C02208D11EA9FB7CA3FC4F9AE02/yJEt9MR_ima8SJ7IQnJICiEbBoI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C9286/CA961C02208D11EA9FB7CA3FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 29 Dec 2024 16:51:02 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 139881
IP: 103.146.150.0/23
IP: 2001:df2:6580::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140632 (0x22558)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 29 16:51:02 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91C9286
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:8b:c0:3f:ad:fe:2d:dc:61:a4:25:17:78:5b:
16:af:3d:2e:75:8b:b0:c4:89:b2:00:d3:94:5e:e6:
69:32:e1:13:70:48:ea:22:7d:00:ad:7f:f3:70:61:
11:98:37:03:3d:f2:d3:60:61:d4:da:91:97:10:23:
89:6e:a6:3f:34:b5:4c:a3:62:a9:ed:77:ed:78:e6:
5b:a1:2b:40:3d:b2:ea:31:e9:ca:70:2c:44:d4:d6:
82:32:fa:fb:54:6c:46:2e:c1:52:b5:a7:9a:a0:1d:
28:93:08:ae:3a:92:c8:69:f5:17:4c:cf:3a:3b:b7:
ec:9f:a6:8c:ca:2d:90:18:bf:d8:e2:dd:cd:d6:c1:
5c:43:62:be:10:ff:87:3b:8e:3c:0a:03:6f:25:77:
66:77:be:65:4e:71:bc:8f:22:58:f1:8b:11:47:cd:
c6:4e:7b:a4:8d:5f:26:f3:04:e4:56:73:be:1d:47:
f0:59:9c:58:f4:75:c2:28:36:a9:6e:fd:d1:d3:d8:
17:11:aa:cf:d4:c1:44:db:9c:ac:af:a0:5b:f2:af:
c0:68:24:ee:de:fd:18:3d:bb:c5:da:d0:23:2e:3a:
b9:e8:69:bb:1c:d7:62:4f:82:5e:14:5f:28:35:5e:
89:5e:59:6c:96:b5:48:ad:16:09:3e:df:92:91:9f:
91:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:91:2D:F4:C4:7F:8A:66:BC:48:9E:C8:42:72:48:0A:21:1B:06:82
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C9286/CA961C02208D11EA9FB7CA3FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C9286/CA961C02208D11EA9FB7CA3FC4F9AE02/yJEt9MR_ima8SJ7IQnJICiEbBoI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139881
sbgp-ipAddrBlock: critical
IPv4:
103.146.150.0/23
IPv6:
2001:df2:6580::/48
Signature Algorithm: sha256WithRSAEncryption
c8:d2:52:00:8b:cc:12:b5:a5:ad:d8:63:74:ed:c4:91:9d:09:
90:11:1a:fc:36:74:dc:68:85:06:d7:a9:11:e2:be:a2:81:f5:
da:fc:d2:90:96:74:55:be:3e:b4:08:cc:fa:81:e7:02:aa:80:
1a:51:c0:9b:f3:a1:78:1c:bd:ef:31:cf:dc:f1:fc:df:b5:1b:
45:85:18:d5:cc:16:4f:0b:73:b2:b3:6b:1e:6c:e4:0b:e2:1a:
6b:c6:06:3f:ba:12:f2:25:93:de:7a:6a:78:6d:83:43:0a:23:
63:c8:1b:ec:57:65:23:b1:93:97:ed:7a:ca:a3:03:b8:d2:8a:
19:77:29:54:84:06:61:e0:c5:36:58:ca:52:58:8a:0b:a1:37:
fb:82:65:70:0a:54:1c:db:a3:71:7e:f9:29:a4:de:ac:ed:10:
bc:0f:9c:57:02:b7:c6:79:02:4d:7c:c8:c4:b4:c8:d5:16:42:
57:a2:28:46:9a:37:a0:51:43:83:2d:73:89:47:16:ab:c4:f8:
e7:cd:a3:e4:1c:21:0d:46:e9:f1:d3:cc:cf:93:f8:48:98:5f:
a9:a8:48:c0:a5:35:f4:b5:8f:c6:d8:73:e9:51:a5:01:f2:0c:
83:67:0c:8a:f3:3e:fe:64:8d:37:6a:fe:29:fc:90:aa:a5:3e:
d1:58:60:b9
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:12:39 2025 by rpki-client