Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer
File: hA_W9-iR44BKfbMJ0EzoXBr3htE.cer (raw, json)
Hash identifier: My+dLv8wH30FfsEJMzJ3LVvsa+Cs9TLu21qS3pco8qs=
Subject key identifier: 84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 63A0
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 01 Apr 2025 14:50:03 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 45.158.180.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 03 May 2025 14:50:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25504 (0x63a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Apr 1 14:50:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A912C8AF, serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:dc:42:9e:63:c0:9e:bf:ac:59:41:71:d8:36:
37:68:86:fc:95:78:53:86:d8:72:5d:65:59:28:2a:
e0:c5:61:12:45:b7:82:5c:f9:4c:d1:c8:50:23:d7:
30:3b:33:05:a2:b1:ab:f4:41:b5:40:4a:1b:fe:d0:
5d:f9:12:ca:a4:04:84:d9:58:2c:6a:d1:f5:2d:31:
80:8a:3f:cd:89:2f:38:f7:64:af:26:2a:7d:81:1e:
f5:02:50:f8:31:94:ec:c5:91:70:d1:e6:90:a4:93:
49:8a:f9:ae:81:58:e2:24:7a:e6:40:ca:31:7e:79:
b0:86:c2:2c:61:33:48:09:0a:28:2a:e8:cb:92:03:
47:21:9f:ea:af:59:0c:b5:29:71:a8:dd:ee:41:a0:
51:ef:a1:16:33:56:71:90:07:df:15:23:bd:3b:86:
79:e5:b0:6f:0b:9c:53:71:6d:e0:2b:26:09:26:8d:
57:ad:0b:80:79:0f:b5:9e:9c:f6:c6:39:10:ba:82:
39:1a:e6:77:67:cb:9e:2e:b0:1c:6a:67:5a:0c:e7:
e7:80:f1:fd:c4:bd:bc:3d:57:5c:6a:93:7f:df:28:
6e:43:5e:93:e9:96:bd:55:5d:af:a1:ff:4a:78:3e:
6f:29:6d:62:c9:bd:6e:6c:65:fc:26:42:ae:ea:0a:
c9:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.158.180.0/22
Signature Algorithm: sha256WithRSAEncryption
13:6f:8b:1a:63:f7:f0:3b:a3:a0:b2:92:40:28:fa:49:5c:d4:
83:06:a2:ea:08:d2:a8:a8:c4:7f:68:99:f5:a3:3b:38:26:70:
39:2b:4c:89:aa:87:f9:6e:31:d0:78:84:7c:a7:51:59:e4:99:
40:cd:b3:17:ab:1f:80:e9:71:05:ec:1b:17:2b:0e:b0:a9:1e:
38:fd:bf:c4:2c:e1:10:fc:65:40:f3:a6:db:34:b1:bf:80:94:
bb:1b:45:7a:37:4d:28:6b:af:8e:2c:51:6a:ea:27:80:93:37:
52:b9:d5:7c:56:2b:ff:c9:2b:0e:fc:1a:9f:25:73:6e:79:1b:
7a:46:0d:79:63:ac:88:87:1e:5f:ea:40:e5:14:93:3a:6d:6d:
26:a1:87:10:de:8b:ad:7f:d9:a8:1a:95:37:99:a9:d5:e0:e6:
6a:59:15:07:a2:bb:94:a5:ee:10:86:62:fb:5e:b1:f1:40:09:
2c:62:1b:78:28:c0:3b:81:d1:6d:7d:29:9e:97:44:4f:73:a1:
7a:19:17:7d:24:fe:5c:28:b7:d6:d1:78:a8:32:07:5f:d8:46:
6e:17:cd:97:9a:1c:b0:15:af:dc:c5:a6:f7:74:02:41:3c:7c:
4f:0b:f6:0f:55:85:cb:ec:8f:16:05:f5:40:70:a4:38:3f:54:
94:d1:d1:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 19:35:00 2025 by rpki-client