Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-7rBZWoMY3CLzNYNyCXmwxkacZs.cer
File: -7rBZWoMY3CLzNYNyCXmwxkacZs.cer (raw, json)
Hash identifier: kaPBulI7VvV+s/ijlrxY+i8ANTOiaS60o5z2xqNDiBY=
Subject key identifier: FB:BA:C1:65:6A:0C:63:70:8B:CC:D6:0D:C8:25:E6:C3:19:1A:71:9B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B35D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91657DD/AD615F6E6E5611E9BD9B5E69C4F9AE02/-7rBZWoMY3CLzNYNyCXmwxkacZs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91657DD/AD615F6E6E5611E9BD9B5E69C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 31 Jul 2023 16:55:58 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 63996
AS: 135001
IP: 45.120.112.0/22
IP: 103.60.172.0/22
IP: 103.205.68.0/22
IP: 192.144.86.0/23
IP: 203.95.220.0/22
IP: 2400:3240::/32
IP: 2404:1380::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111453 (0x1b35d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 31 16:55:58 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91657DD/serialNumber=FBBAC1656A0C63708BCCD60DC825E6C3191A719B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1f:1e:11:ed:3d:bc:5a:f7:f4:b5:9b:c8:87:
34:3e:09:d3:dc:85:82:9d:cb:5d:ce:00:95:45:f4:
cf:48:28:57:24:bd:f9:f9:39:b9:c4:91:54:c3:8f:
83:4f:99:55:5d:8b:c5:6c:25:d2:bd:9f:e4:18:18:
ef:f6:16:dc:54:c2:fd:d8:a5:82:26:46:d4:d2:1f:
95:7b:e1:a1:22:d8:5f:7b:f9:00:7b:7c:68:50:5a:
d3:45:04:b3:c5:5b:b8:ec:2c:1c:43:48:48:4e:51:
fa:37:bc:45:df:b9:2d:01:fa:82:1b:9a:5f:d4:fa:
96:5b:20:4d:39:c4:76:0c:f6:c0:b3:14:93:26:d0:
3d:ef:c5:78:6f:b7:c8:70:1a:ad:64:a4:b4:e8:16:
02:aa:31:1e:59:eb:85:63:f7:1d:b1:ba:ba:b0:14:
ad:0a:86:4e:7d:9d:ea:36:a5:33:11:5c:71:96:e6:
7d:cf:60:e2:6d:f6:d2:ba:a9:d5:7b:af:f7:54:7b:
64:4e:67:32:0a:9b:dd:d1:09:a2:f2:f7:54:28:ff:
da:3c:70:b0:14:ef:e7:3d:db:5c:e1:52:cd:28:89:
1e:e3:e0:58:c5:36:89:a6:c3:d1:f4:23:a4:34:a9:
2f:49:77:02:25:bc:cf:e6:0a:af:0d:dd:7a:9f:b1:
0d:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:BA:C1:65:6A:0C:63:70:8B:CC:D6:0D:C8:25:E6:C3:19:1A:71:9B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91657DD/AD615F6E6E5611E9BD9B5E69C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91657DD/AD615F6E6E5611E9BD9B5E69C4F9AE02/-7rBZWoMY3CLzNYNyCXmwxkacZs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
63996
135001
sbgp-ipAddrBlock: critical
IPv4:
45.120.112.0/22
103.60.172.0/22
103.205.68.0/22
192.144.86.0/23
203.95.220.0/22
IPv6:
2400:3240::/32
2404:1380::/32
Signature Algorithm: sha256WithRSAEncryption
44:a7:38:d0:4c:e6:a1:33:14:04:50:bc:a2:e1:9a:a5:8a:3a:
73:4b:99:23:e4:0c:d3:99:8f:44:51:00:48:51:5c:d4:57:58:
8e:69:59:54:d5:bc:56:7d:ba:03:59:c6:cf:0c:0d:7c:96:24:
02:dd:c1:0a:67:0d:1a:dc:af:72:a9:07:0f:72:f3:4e:7a:9b:
bf:eb:06:f3:ac:e3:12:2c:58:88:67:b2:93:c3:2b:4d:8d:91:
dd:dd:bb:d9:42:6b:6a:c2:de:2e:f7:fc:b9:bf:76:54:df:d3:
35:24:11:9f:0d:3c:48:a7:77:b4:b8:97:60:ab:15:72:86:bc:
45:84:b0:ac:b1:35:a4:d5:85:b0:c7:8d:8c:2c:86:4e:7f:29:
7a:fa:ed:cd:8c:a7:05:4f:ce:c5:02:55:0d:5d:40:ea:3c:db:
bb:70:9c:30:7f:a4:79:e2:0b:5c:26:8a:34:7f:d9:04:5f:08:
d7:fc:5d:28:ec:3f:89:d6:c8:40:f0:19:23:f2:95:58:d0:04:
94:17:0b:be:55:5a:9c:10:82:c9:27:24:5d:91:c4:76:de:f9:
77:46:5e:a4:5a:ed:7b:d5:18:d3:6a:f9:17:22:bd:3d:87:a8:
e0:e7:a2:16:15:55:ea:7f:de:6d:94:5f:c0:aa:59:8b:d3:c9:
b6:f7:4d:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 10:10:19 2024 by rpki-client on console-ams.rpki-client.org