Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zXuGlWvtndYhW-SF8McVuSDJp3A.cer
File: zXuGlWvtndYhW-SF8McVuSDJp3A.cer (raw, json)
Hash identifier: uSr1v30yB8aFjREjXtTsKc5PB9fg+VHGes9N2mXW6Oc=
Subject key identifier: CD:7B:86:95:6B:ED:9D:D6:21:5B:E4:85:F0:C7:15:B9:20:C9:A7:70
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021A59
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/zXuGlWvtndYhW-SF8McVuSDJp3A.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 08 Nov 2024 16:37:45 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 133129
IP: 103.252.14.0/23
IP: 2001:df6:5000::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137817 (0x21a59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 8 16:37:45 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A918B61E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:d8:fd:3f:09:fe:9d:ec:0d:04:ae:32:18:88:
4a:9e:19:81:e7:ba:48:26:83:b4:7f:a8:a0:c8:4d:
0e:e2:d4:ea:e8:27:9d:c6:8b:d1:b0:69:90:62:3d:
96:99:96:73:84:1f:9e:c3:96:f9:8b:a6:17:40:12:
10:91:9e:17:03:74:b4:3d:6e:00:09:23:24:da:4e:
01:37:e0:5f:2f:c1:20:d2:4d:fe:e5:ec:2d:0f:7a:
9d:1e:3f:e5:67:3d:f7:80:fb:53:f1:a1:77:ca:26:
3d:49:08:5f:89:68:54:2a:ac:42:4a:80:73:62:93:
e5:73:50:f4:9a:64:73:0f:c2:e4:66:39:4c:98:88:
ee:54:85:02:c3:33:f5:34:3c:9c:c0:38:a4:a4:00:
0d:ad:73:e4:b2:7f:ee:c2:87:d7:79:7c:63:48:e2:
16:9e:fa:51:ec:1f:a6:41:94:78:23:df:e5:4f:d5:
e8:d8:1c:01:a9:38:79:ea:7a:ab:0d:37:e9:c2:97:
29:9c:07:ad:62:57:53:b5:a0:48:be:12:24:c0:7b:
bc:d1:94:77:33:88:8e:d6:e9:bc:68:14:95:7d:dd:
eb:b9:9e:7f:6c:be:01:6b:b5:f5:80:7b:cc:f2:a6:
ef:6b:38:de:ab:ab:4c:a6:82:b2:52:a0:d3:54:05:
80:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:7B:86:95:6B:ED:9D:D6:21:5B:E4:85:F0:C7:15:B9:20:C9:A7:70
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/zXuGlWvtndYhW-SF8McVuSDJp3A.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133129
sbgp-ipAddrBlock: critical
IPv4:
103.252.14.0/23
IPv6:
2001:df6:5000::/48
Signature Algorithm: sha256WithRSAEncryption
5a:dc:7c:7c:00:10:ea:58:de:13:ff:90:5b:12:cf:2c:66:9d:
85:d6:d9:86:b4:7a:b4:fa:15:1b:20:f3:e8:fb:92:70:34:f7:
ab:b8:d0:82:a7:f4:0b:ec:10:2c:8e:e0:46:ef:ea:7f:e7:b4:
63:be:65:47:6e:9c:ad:f9:59:14:28:9d:4f:da:33:b9:3f:e7:
0d:b7:dc:64:7f:41:74:54:73:8b:b9:49:08:11:36:b0:35:7b:
31:7f:56:28:26:45:0e:7c:36:fa:ba:7e:14:70:24:40:2d:d7:
c8:64:3b:d5:d7:77:a3:de:2d:fb:ab:6c:bf:50:f0:f4:06:a6:
35:04:24:c5:11:31:80:92:3f:39:0c:19:12:20:bc:e1:84:33:
b8:b5:6e:9c:69:a0:0e:21:65:63:31:80:39:b1:04:8a:1d:73:
bb:68:e5:d6:22:8f:f5:ac:c8:f7:c0:40:21:a7:bc:3e:3d:c3:
66:a0:28:f3:ae:a0:54:3e:01:83:29:b6:e8:09:87:98:be:80:
7c:e7:20:d1:be:ed:7f:ae:08:e6:1c:2b:a2:84:d8:30:de:b8:
b3:51:a5:78:cd:dc:51:4b:28:dd:8c:13:dd:be:e5:25:a3:b2:
3b:34:c2:11:0f:62:31:a5:32:f0:1e:c4:28:6a:26:15:33:17:
b9:6c:b6:8f
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:08:26 2025 by rpki-client