Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer
File: rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer (raw, json)
Hash identifier: uR5GVNNe5VYOz5CZBms4Ria4fCfV/69JxHKLWY27znM=
Subject key identifier: AC:D0:47:D0:D8:8E:26:57:E1:2C:F9:13:01:C1:60:F1:D3:CD:2F:33
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023E3C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 10 Apr 2025 03:52:13 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 152698
AS: 153508
IP: 103.14.22.0/23
IP: 2001:df3:ad40::/47
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 02 May 2025 02:50:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147004 (0x23e3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 10 03:52:13 2025 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91F9353, serialNumber=ACD047D0D88E2657E12CF91301C160F1D3CD2F33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ba:94:81:5b:59:5e:40:a8:e5:63:70:56:66:
fa:c9:18:14:2d:79:3f:51:70:de:c0:97:7b:4d:11:
75:67:2d:66:77:4a:37:c1:ee:c8:67:ad:9e:7c:68:
08:a2:75:0f:d9:ba:50:78:6d:be:d3:2f:29:46:c7:
3b:38:1f:f8:0e:d4:76:55:6c:5b:12:a2:ea:30:61:
db:9a:f2:9c:9c:15:c8:ad:26:17:78:fd:ac:fa:5c:
db:5f:75:5b:ff:89:76:41:ed:68:4d:c1:4e:5a:a0:
5a:9a:a2:98:11:49:9c:e0:2f:4d:ed:2d:39:8b:d6:
19:fe:83:9d:d6:ab:fe:bb:fd:84:4a:c0:60:84:ce:
5f:0a:74:0b:b4:ab:4d:e3:26:81:45:56:2f:09:55:
30:47:24:35:6e:7e:4b:97:56:aa:5d:4b:fe:ee:84:
7a:51:73:98:bc:f8:df:3d:fd:08:ee:ef:59:d3:b1:
b7:90:79:84:f3:e7:bc:7f:10:40:ae:3b:1a:c4:01:
59:54:cd:55:0a:20:58:79:d1:39:4a:0a:9a:da:82:
48:d9:b9:c6:ce:93:21:d3:40:21:97:9d:4a:8d:3b:
79:a1:97:bb:e7:3d:a6:65:54:b4:21:7d:89:9a:2e:
07:fb:28:cf:50:01:a0:0c:b3:c6:7e:9e:3c:2c:40:
2b:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:D0:47:D0:D8:8E:26:57:E1:2C:F9:13:01:C1:60:F1:D3:CD:2F:33
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152698
153508
sbgp-ipAddrBlock: critical
IPv4:
103.14.22.0/23
IPv6:
2001:df3:ad40::/47
Signature Algorithm: sha256WithRSAEncryption
71:4d:cf:2c:25:6f:f9:5c:33:01:f7:ec:f7:9d:4e:6b:30:15:
12:d4:68:2f:76:41:61:19:93:3f:0f:ed:9f:55:2c:08:09:6b:
2a:88:fa:30:88:55:91:21:2b:00:c4:99:55:88:47:4e:fb:d4:
b4:b1:76:eb:05:ed:0c:6c:4d:01:b0:ea:28:3f:3f:25:91:f7:
c5:9f:36:9b:0a:23:3d:d3:e5:d8:2e:d5:94:69:15:5d:a7:22:
12:55:ee:38:a2:7c:cb:f0:2d:8c:d2:ec:1c:99:c6:f2:f1:cb:
0d:45:19:f2:35:f3:70:f2:ba:12:1e:dd:63:92:b3:c9:e3:9c:
76:de:8e:60:a2:4c:4b:9f:93:30:b4:53:1d:ca:d3:97:7e:34:
34:63:4c:ef:33:35:46:42:e6:18:45:cf:da:51:df:a9:6b:9c:
40:8c:6c:c2:03:5b:08:a7:be:28:8a:7d:00:16:0a:81:a7:e5:
22:d5:0b:6c:0c:11:3b:cc:c4:2e:f0:7c:0a:2e:e1:af:e6:ef:
cb:51:19:96:f0:76:16:a2:77:31:7a:93:c1:5e:f5:64:aa:98:
cf:87:98:77:76:f2:14:c8:83:16:68:d6:f1:57:50:7b:1b:14:
b5:fe:83:df:cd:2a:e7:62:2f:55:23:12:a9:14:f3:ae:18:61:
50:95:1a:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 08:26:07 2025 by rpki-client on console.sobornost.net