Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dOSCYGNYsugSWKrw2-THyWPYfhw.cer
File: dOSCYGNYsugSWKrw2-THyWPYfhw.cer (raw, json)
Hash identifier: 0z2Mm+Ikp3dV4lbC6YhLphbseSsLZL+zalSmBktr2z8=
Subject key identifier: 74:E4:82:60:63:58:B2:E8:12:58:AA:F0:DB:E4:C7:C9:63:D8:7E:1C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023F9A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D3633/62909F38A24111E6BCA8D078C4F9AE02/dOSCYGNYsugSWKrw2-THyWPYfhw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D3633/62909F38A24111E6BCA8D078C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 17 Apr 2025 19:44:03 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 38880
AS: 132002
IP: 27.131.64.0/18
IP: 43.245.68.0/22
IP: 103.13.56.0/22
IP: 103.31.28.0/22
IP: 103.204.106.0/23
IP: 103.213.100.0/22
IP: 111.223.224.0/20
IP: 119.31.224.0/21
IP: 192.140.140.0/22
IP: 203.29.20.0/24
IP: 2400:9c00::/32
IP: 2407:ca80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 02 May 2025 20:27:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147354 (0x23f9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 17 19:44:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=A91D3633, serialNumber=74E482606358B2E81258AAF0DBE4C7C963D87E1C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:2b:7d:68:3d:17:4c:71:eb:a0:99:4e:e2:dc:
2f:ae:2d:3e:ef:eb:c2:2f:7d:5d:f7:1d:72:1b:c2:
3d:fc:6e:30:5b:0b:64:3e:46:e7:f3:e8:94:e1:ed:
02:bf:d9:a6:d4:56:88:42:fe:f3:64:f0:eb:1a:33:
68:bd:99:82:2c:eb:e3:6e:b4:8c:18:16:89:60:b6:
4b:f6:40:d4:ab:53:14:35:1c:8c:2d:ae:14:c3:4e:
93:4d:a6:cb:b2:8f:47:6c:df:38:e1:9a:0f:25:74:
24:b6:ce:e0:65:17:78:a5:a5:e0:bb:3d:1e:8f:63:
da:fc:e5:7c:bf:01:f2:d5:8d:13:1c:c1:bf:d2:ca:
38:2e:cc:88:db:fc:2e:b5:41:13:03:5b:ae:47:4c:
b0:78:63:f9:93:84:82:68:74:8c:6c:01:fb:7c:a9:
9c:6b:0c:d1:a0:55:b2:c4:77:28:9e:d0:b1:28:79:
fe:d5:16:2c:50:9b:9a:90:5d:27:c4:ad:66:88:26:
7e:07:b3:93:5c:6e:01:d0:74:a6:6f:44:93:68:15:
83:4d:b2:97:30:05:b0:e6:25:93:16:3e:fa:94:8d:
54:2f:0c:7c:66:d7:5e:13:2c:99:36:75:05:33:ca:
8e:6c:49:96:df:7b:b5:45:37:aa:96:8c:3f:57:20:
8f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:E4:82:60:63:58:B2:E8:12:58:AA:F0:DB:E4:C7:C9:63:D8:7E:1C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D3633/62909F38A24111E6BCA8D078C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D3633/62909F38A24111E6BCA8D078C4F9AE02/dOSCYGNYsugSWKrw2-THyWPYfhw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38880
132002
sbgp-ipAddrBlock: critical
IPv4:
27.131.64.0/18
43.245.68.0/22
103.13.56.0/22
103.31.28.0/22
103.204.106.0/23
103.213.100.0/22
111.223.224.0/20
119.31.224.0/21
192.140.140.0/22
203.29.20.0/24
IPv6:
2400:9c00::/32
2407:ca80::/32
Signature Algorithm: sha256WithRSAEncryption
34:29:17:37:e3:75:f8:aa:38:c0:3f:19:63:d2:25:05:dc:fd:
5e:96:10:f4:d8:0c:43:d8:bf:db:bb:3e:e1:73:cb:c9:c0:3c:
33:18:b7:09:84:25:ff:58:ff:9e:17:ca:bc:57:97:f2:c4:a7:
d0:71:e2:51:09:53:f0:27:65:9b:67:4e:5c:8b:c5:53:2f:75:
66:05:09:2f:2e:35:36:d3:d1:1e:18:32:21:cc:1a:1a:7e:58:
18:09:f6:90:bf:37:3a:45:c1:ce:23:22:11:ba:46:e8:c7:72:
fd:a5:6d:5c:eb:7f:df:12:e6:b6:ff:ab:81:69:b4:bb:23:6b:
53:3b:b3:af:77:23:bb:92:2c:0d:f8:06:7a:01:65:ab:1e:80:
65:32:84:e4:a6:69:95:78:e9:8d:6c:9d:88:b9:88:74:53:e3:
da:f7:c9:c7:8f:bc:4f:ee:a5:d2:59:9d:d2:ed:cd:de:1a:d0:
99:ad:8b:6a:41:ff:47:59:69:ab:1a:9f:10:2c:2d:64:8f:18:
b2:6a:6f:28:1b:e7:0c:f5:6f:83:68:0c:93:56:61:b5:66:fb:
ca:8f:63:da:c6:ca:bd:81:eb:c1:72:da:8b:ec:32:17:85:bf:
4f:04:b6:14:0e:57:17:dd:13:f7:28:60:8f:de:9b:59:9d:1d:
41:15:9a:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 22:55:23 2025 by rpki-client