Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5r9G5TDfkimPrAMq-8mECcRDBDk.cer
File: 5r9G5TDfkimPrAMq-8mECcRDBDk.cer (raw, json)
Hash identifier: /Zoe52qwd1q3xKJmW5zZJW2WHRlFpylmMwS41mHsftg=
Subject key identifier: E6:BF:46:E5:30:DF:92:29:8F:AC:03:2A:FB:C9:84:09:C4:43:04:39
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C69B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91527F9/6ED2EBAA1D9A11E2AE93AD8708B02CD2/5r9G5TDfkimPrAMq-8mECcRDBDk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91527F9/6ED2EBAA1D9A11E2AE93AD8708B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 28 Oct 2023 14:49:48 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 136415
IP: 110.35.88.0/21
IP: 113.20.64.0/19
IP: 2401:e600::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116379 (0x1c69b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 28 14:49:48 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A91527F9/serialNumber=E6BF46E530DF92298FAC032AFBC98409C4430439
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:5e:6c:11:8c:73:6d:cc:7d:4f:8f:fd:96:09:
ec:8a:5f:17:8a:7d:1e:83:25:70:75:00:50:d1:6d:
fb:bc:a2:66:22:ae:42:e0:d1:b3:3b:21:37:3c:a0:
1d:61:52:89:00:1f:e5:fa:5f:2b:56:32:e3:c8:23:
1b:aa:88:58:8b:d0:2d:7a:43:ca:16:95:84:d3:bb:
bd:12:5c:23:da:f9:74:38:70:2b:0b:88:23:1d:f3:
fa:2e:93:12:cc:ac:73:61:ca:e3:cb:fd:31:c6:7d:
4f:15:2a:8f:2b:58:fb:fa:91:19:2d:b4:7c:50:ac:
cd:58:37:07:2f:06:7e:5d:a0:a1:54:10:49:f8:64:
69:e3:f4:cd:0a:d4:c8:63:8c:14:e9:1d:36:78:c8:
f8:3a:35:37:a2:e6:9d:f6:e1:f8:b8:2e:6a:93:12:
18:87:8c:80:77:ba:b7:eb:5b:99:c7:46:c9:26:45:
f1:ef:f8:cd:3f:23:ec:f0:97:0b:dc:c9:a6:40:32:
1c:76:e8:16:23:03:f6:46:84:c7:f8:5b:87:34:34:
a2:eb:fe:6a:dd:2d:ae:9e:c5:95:8a:65:1e:fa:4b:
96:d0:b2:29:75:00:5f:73:1d:3f:71:e8:45:1e:b8:
dd:23:21:92:ea:15:18:a0:1e:72:59:d9:62:e4:fb:
0f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:BF:46:E5:30:DF:92:29:8F:AC:03:2A:FB:C9:84:09:C4:43:04:39
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91527F9/6ED2EBAA1D9A11E2AE93AD8708B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91527F9/6ED2EBAA1D9A11E2AE93AD8708B02CD2/5r9G5TDfkimPrAMq-8mECcRDBDk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136415
sbgp-ipAddrBlock: critical
IPv4:
110.35.88.0/21
113.20.64.0/19
IPv6:
2401:e600::/32
Signature Algorithm: sha256WithRSAEncryption
17:4b:91:15:1b:4c:8d:69:b9:c0:ab:8c:dd:0e:b2:7c:54:0a:
47:19:e2:54:a3:91:c9:2f:63:a9:67:90:20:33:fa:d6:cb:2e:
a1:eb:3b:c5:6f:fb:aa:5a:26:0e:f7:9e:3d:eb:3d:03:d7:93:
05:01:26:71:e0:fb:37:ed:cc:19:4e:3b:99:8e:3c:03:c6:1d:
1a:53:b5:98:b6:a1:ca:a3:f0:ba:27:a6:b0:bf:0e:7c:fe:f0:
11:b2:57:16:21:a0:40:5c:7c:4f:d5:4e:88:86:e9:4c:3b:9f:
af:a8:26:a1:41:0f:f5:0f:4d:9a:ab:c9:58:c9:5f:70:23:63:
e8:0d:f0:4f:0e:b2:89:c0:65:c4:fb:a2:71:da:74:d8:ef:74:
26:51:ad:db:7e:d8:a0:e8:c3:50:93:f7:d6:a7:d9:88:83:78:
22:37:cf:2e:b7:4e:9e:49:ed:49:5f:61:c7:19:09:d7:e6:ac:
90:87:da:4f:7e:0d:e3:c4:46:3a:76:02:73:3f:ce:0c:78:74:
c3:64:ef:38:9a:ac:7f:71:69:0e:bf:d0:68:42:09:86:bc:f5:
1b:16:a8:4f:51:89:e1:e1:12:8f:08:ab:ff:15:7f:06:ec:9c:
d0:49:5c:e1:b0:e6:b0:59:cc:4a:75:0a:1b:a5:21:fe:23:49:
84:ff:25:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 10:23:53 2024 by rpki-client on console-fra.rpki-client.org