Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer
File: Y04osQAuVW6OsU-VPq1jttZ3WAk.cer (raw, json)
Hash identifier: juU8eXd0T12pGiVa/fkeZFRO3wxByYXrAxxVC4cdP/Y=
Subject key identifier: 63:4E:28:B1:00:2E:55:6E:8E:B1:4F:95:3E:AD:63:B6:D6:77:58:09
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021DD1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 27 Nov 2024 03:42:07 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 134090
IP: 45.249.116.0/22
IP: 103.51.112.0/22
IP: 103.85.36.0/22
IP: 103.95.112.0/22
IP: 103.106.88.0/22
IP: 123.253.188.0/22
IP: 124.158.96.0/22
IP: 175.111.176.0/22
IP: 202.128.112.0/20
IP: 202.179.128.0/22
IP: 2400:a840::/28
IP: 2402:2c80::/32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138705 (0x21dd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 27 03:42:07 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A9194C0D/serialNumber=634E28B1002E556E8EB14F953EAD63B6D6775809
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:39:4e:9e:17:d1:98:e7:ba:af:27:bd:22:af:
75:81:24:eb:d6:ac:79:9f:83:70:b4:8e:d5:df:cd:
91:c7:40:a8:46:79:1f:06:5a:12:e4:3a:5e:e5:d5:
5d:99:4e:57:07:cf:10:71:59:1b:db:9c:31:c3:ce:
7e:01:1a:d9:af:94:9d:5c:e7:74:5d:58:e5:d7:89:
5a:5a:da:eb:47:85:58:97:d3:7c:44:54:fb:46:f7:
aa:db:39:48:32:2c:92:0c:13:df:b4:f5:11:70:b6:
9c:21:bd:3b:77:0c:48:f6:99:1a:c3:2c:3c:28:bf:
03:ad:d7:c4:4b:20:7a:d6:62:99:ca:b5:7b:75:3b:
0a:5f:a9:89:4f:91:a0:20:aa:e7:c1:f4:3d:1e:3c:
c8:21:9e:27:0b:24:04:88:b5:79:86:d1:f9:9d:73:
5b:90:f5:2d:27:ad:7a:1b:c9:a9:39:60:76:b4:02:
ea:a2:cb:23:7c:9b:cf:c3:42:62:9a:eb:0c:f5:45:
98:f2:69:71:1d:93:73:8b:57:44:9d:a2:c1:03:2c:
19:99:81:58:46:33:99:58:cc:5c:6f:f2:1b:10:4e:
78:d5:6e:08:bb:b7:ae:6f:e0:18:67:56:96:fd:d6:
c9:2c:0e:c8:df:c6:63:1b:b8:b9:b7:8c:67:23:3f:
da:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:4E:28:B1:00:2E:55:6E:8E:B1:4F:95:3E:AD:63:B6:D6:77:58:09
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134090
sbgp-ipAddrBlock: critical
IPv4:
45.249.116.0/22
103.51.112.0/22
103.85.36.0/22
103.95.112.0/22
103.106.88.0/22
123.253.188.0/22
124.158.96.0/22
175.111.176.0/22
202.128.112.0/20
202.179.128.0/22
IPv6:
2400:a840::/28
2402:2c80::/32
Signature Algorithm: sha256WithRSAEncryption
69:a4:b9:14:fc:32:0f:0b:73:12:29:25:d3:01:1e:27:a6:43:
db:eb:7c:aa:26:3d:95:38:be:88:c5:d8:80:b0:1a:ab:7a:76:
f8:88:99:73:8c:91:ed:1f:4d:ab:9b:e9:10:14:ed:16:04:87:
5c:4a:f0:1a:16:31:b9:59:5e:46:a9:a4:04:68:54:54:f2:22:
03:d0:8a:04:f0:15:77:86:d5:9c:7a:ab:7d:c8:5e:c3:2e:62:
e4:f1:5b:bf:b0:ce:6b:76:9f:5b:85:e7:3f:31:c5:40:da:bf:
19:ed:49:c9:61:00:b7:1b:6e:19:8d:67:7d:3b:52:a5:1b:ec:
d1:70:9f:e0:ad:72:79:af:7d:7d:8d:a8:d7:74:f3:5c:63:fe:
07:39:1c:d0:b1:6e:7e:23:6a:ec:1d:c9:8a:de:0c:e5:4b:2f:
8d:e4:66:e3:3c:07:67:e4:fc:5c:d2:52:4a:b7:f2:64:63:9a:
fc:fd:0d:de:ab:b9:d4:2e:f5:72:12:c7:80:d2:81:4a:f5:30:
bc:0c:5e:55:61:9b:8c:ae:41:f1:d8:bb:f6:ac:fd:01:8b:f2:
e5:cd:00:b3:f1:39:e2:00:eb:87:14:65:a8:4c:cb:90:a3:b4:
b3:76:ce:aa:91:4e:99:34:b2:0a:52:65:17:27:ee:7b:12:0a:
9c:d1:1d:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 03:27:03 2025 by rpki-client