Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer
File: 526yVsD8sH4pB5eDQ-mtndIf4gY.cer (raw, json)
Hash identifier: 1+67+XmycnLxicjtNf1Mhdze5lzbJ6fcVwQ8UH2Uak8=
Subject key identifier: E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01ED74
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 25 Apr 2024 16:19:17 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 38616
AS: 38710
AS: 55414
IP: 103.246.108.0/22
IP: 111.88.0.0/16
IP: 115.186.0.0/17
IP: 117.102.0.0/18
IP: 203.81.192.0 -- 203.81.239.255
IP: 2406:7000::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126324 (0x1ed74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 25 16:19:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:20:c3:78:7c:1c:62:55:e2:dc:96:33:ef:d3:
ef:37:71:9f:7b:68:89:bb:f0:35:40:a8:1b:3c:6b:
e9:ce:69:bd:57:a3:35:40:b1:af:bd:74:c0:a1:e9:
8b:13:d8:e2:f8:28:12:94:a4:54:c3:5a:7a:7d:ae:
12:79:c7:94:ee:d7:58:41:60:1a:60:36:bf:a5:0d:
e3:2c:e5:99:6a:17:36:28:a6:d9:db:b1:83:fc:0d:
90:6c:ac:5f:e7:b5:a3:35:10:ab:f8:2f:a2:14:df:
71:d2:a6:7c:96:6e:40:04:c9:69:78:e1:07:61:14:
f0:14:b0:d6:8d:33:6a:46:0e:4b:03:3f:95:ff:45:
c0:dc:9c:5b:0b:d6:18:0c:ee:d9:fc:5f:12:40:f9:
45:5c:46:8e:7a:a8:3a:5c:4b:66:da:3f:ae:e8:0f:
33:a6:66:b1:03:73:42:ec:6f:e2:40:0e:54:37:54:
30:55:2f:6a:1d:95:fe:df:5b:a6:8d:58:16:9f:b1:
01:1c:4c:db:dc:a7:61:3d:49:04:f5:ff:1b:17:02:
76:6a:69:d0:cb:b8:3b:1b:84:b6:52:4f:e4:bc:1c:
ff:28:39:7d:db:d3:0b:7c:5c:29:f4:c0:8a:96:ae:
cc:7b:30:4e:7b:a4:e7:9f:9a:f6:bb:54:af:aa:dd:
15:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38616
38710
55414
sbgp-ipAddrBlock: critical
IPv4:
103.246.108.0/22
111.88.0.0/16
115.186.0.0/17
117.102.0.0/18
203.81.192.0-203.81.239.255
IPv6:
2406:7000::/32
Signature Algorithm: sha256WithRSAEncryption
d2:af:a7:6b:e8:f0:b5:d3:42:b8:ae:63:62:c8:9b:7c:13:f1:
57:27:83:b2:e4:75:1e:22:5a:8f:66:37:91:c1:01:bd:59:75:
5c:a6:bf:68:6a:a0:40:18:73:36:b8:69:4f:79:07:1a:2f:30:
6d:7b:e9:ca:84:0b:12:4b:0a:8f:9e:a5:d2:9f:c1:d0:8d:cb:
e0:10:63:d8:3b:09:12:84:a4:bb:71:ba:a5:d3:27:4d:c3:2b:
c6:25:29:62:13:9b:2a:2b:99:bc:26:e8:d1:96:a7:ad:75:ab:
6c:b1:fe:bc:51:8e:b3:27:1c:02:d7:b6:ef:46:36:5d:0a:c1:
ce:ca:45:f0:f3:c7:0d:f7:97:8a:d5:88:84:e2:bb:39:14:26:
fe:c0:b4:3a:b7:c9:bb:43:94:09:30:9a:1b:fc:2e:1a:2b:88:
da:42:36:45:49:c9:27:8b:14:0c:f1:51:be:97:8b:ee:05:3e:
94:44:86:41:ab:9f:ce:ce:e7:8b:ad:78:f2:f0:2a:f7:bb:8d:
21:a7:b1:3c:bc:f5:66:f8:c1:4a:b9:5d:8f:bd:6f:ba:46:2d:
18:10:e1:3f:02:63:13:1a:6d:55:14:0b:d3:98:37:74:07:5b:
e7:34:8f:5a:5f:f8:da:d5:4c:92:09:fc:dd:35:6e:72:64:3f:
ce:e6:2d:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 13:59:28 2024 by rpki-client on console-ams.rpki-client.org