Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EaQuwPg05YrSAjk0GyyajSQ5RY.cer
File: 8EaQuwPg05YrSAjk0GyyajSQ5RY.cer (raw, json)
Hash identifier: 5O3Z0uRC6A1jQ5wPPpSSVwqVcULSvewIkVP+xi4HlkU=
Subject key identifier: F0:46:90:BB:03:E0:D3:96:2B:48:08:E4:D0:6C:B2:6A:34:90:E5:16
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023515
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F1605/7250CA446C3411EB9E37AA21C4F9AE02/8EaQuwPg05YrSAjk0GyyajSQ5RY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F1605/7250CA446C3411EB9E37AA21C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 04 Mar 2025 01:56:13 +0000
Certificate not after: Thu 28 May 2026 00:00:00 +0000
Subordinate resources: AS: 135140
IP: 103.210.220.0/24
IP: 103.211.198.0/24
IP: 103.211.236.0/23
IP: 146.196.84.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 02 May 2025 20:27:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144661 (0x23515)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 4 01:56:13 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=A91F1605, serialNumber=F04690BB03E0D3962B4808E4D06CB26A3490E516
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:19:9b:06:53:a9:39:62:29:bd:11:2c:d6:46:
ed:1a:25:c1:b0:40:85:01:9a:d5:7a:d8:5d:bf:95:
a4:53:e5:8a:ae:86:cd:08:72:0c:bc:57:c7:d5:b6:
2a:9c:35:2f:df:c3:7c:73:55:24:74:e6:aa:80:95:
42:22:4c:97:0e:c9:5c:36:ed:8f:ee:2c:fa:09:ee:
bf:db:cd:15:2a:3e:bf:63:5b:f3:7a:57:8c:b6:e6:
d1:f7:39:41:f4:45:c0:df:c7:5c:7b:23:fe:49:89:
86:21:c6:76:0f:0a:f3:5b:1a:84:42:0a:ae:e4:f0:
c3:5f:eb:7a:72:c0:14:f3:05:44:c7:b2:90:89:78:
33:fd:65:c4:95:25:5f:66:7e:ea:6d:34:44:b4:72:
47:48:3a:d1:28:1b:3f:43:9c:dc:22:71:a4:cf:21:
d1:c2:d4:e8:e5:74:1c:aa:24:7b:76:cd:61:96:90:
d6:f3:3a:8c:a6:f7:92:9c:89:c8:5b:a2:ff:e4:53:
de:08:cf:c4:2f:83:8a:37:0d:0b:22:d6:19:81:c3:
5a:11:e4:dd:41:3d:fe:75:c2:a1:c2:09:4c:73:30:
16:e1:01:bb:a8:25:30:8f:da:e6:3e:22:85:c6:ec:
5f:d0:0a:24:24:02:47:34:7a:05:37:59:59:25:6f:
ba:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:46:90:BB:03:E0:D3:96:2B:48:08:E4:D0:6C:B2:6A:34:90:E5:16
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F1605/7250CA446C3411EB9E37AA21C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F1605/7250CA446C3411EB9E37AA21C4F9AE02/8EaQuwPg05YrSAjk0GyyajSQ5RY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135140
sbgp-ipAddrBlock: critical
IPv4:
103.210.220.0/24
103.211.198.0/24
103.211.236.0/23
146.196.84.0/22
Signature Algorithm: sha256WithRSAEncryption
5c:60:2b:77:d7:cb:d2:79:34:13:9e:61:88:fb:6f:b6:39:52:
c7:8e:d3:a5:1f:03:6d:ae:f6:0a:38:50:4f:67:89:8e:45:aa:
cf:9d:a1:80:56:a3:d7:1e:c1:7c:90:66:52:c7:42:3f:aa:18:
eb:0f:43:b9:e6:7d:4e:e2:7e:9f:fb:6b:c3:9c:68:6d:40:30:
98:a4:df:0c:0b:6c:96:77:c3:09:f0:d6:03:81:bc:fa:46:8d:
8a:9c:ca:24:37:08:79:33:af:02:62:54:a3:63:d8:e0:75:6d:
fd:2d:87:e4:bc:db:17:21:e3:19:7d:9c:95:f1:77:27:b2:bc:
4f:e0:c1:c4:86:2e:14:24:cf:8b:5f:0f:5c:40:1f:c0:cb:a0:
11:ee:cf:cd:b9:1a:18:f7:e5:1d:94:11:3b:3f:5c:2a:7e:d4:
3b:59:15:fa:46:60:48:67:a9:bf:c8:2a:02:99:1d:8e:5a:12:
ab:7a:e4:0e:a0:c3:61:31:f6:fa:f6:b4:82:27:70:7b:e3:43:
98:4e:84:17:78:64:d8:9e:01:d9:e3:a8:d1:f0:7a:cf:9a:2d:
d7:60:c0:4c:97:f6:cd:b9:2c:64:1b:ac:09:49:74:25:2c:53:
24:d0:45:07:8e:59:b2:c5:b4:a8:b7:63:c6:a5:4f:11:aa:ec:
bf:31:f6:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 22:58:52 2025 by rpki-client