Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer
File: DYtx2GteICkzvLAqW210CSpSoXw.cer (raw, json)
Hash identifier: XhFOCWJhUXaOOyewHpRTxLje7TDJbGXm0EAAWQwxwDY=
Subject key identifier: 0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D7A7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 10 Jan 2024 14:56:46 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 45590
AS: 55355
AS: 63521 -- 63522
AS: 133160
AS: 140551
IP: 103.247.228.0/22
IP: 112.137.16.0/20
IP: 114.134.80.0/21
IP: 175.100.192.0/20
IP: 2403:5000::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120743 (0x1d7a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 10 14:56:46 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91A395C/serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:40:37:4d:cb:05:3c:e6:1f:51:4d:fb:5d:a2:
47:a9:b0:59:55:43:8b:52:73:79:c5:ce:c6:41:73:
8f:3b:b8:22:6a:81:56:08:54:27:47:c0:ef:8f:9e:
30:3f:94:45:19:6c:45:ec:3b:71:4d:ac:cf:ba:00:
b2:ff:d9:9c:37:86:5d:81:18:13:28:31:4b:98:3e:
cc:a4:a0:b5:c3:5a:b4:a5:4d:85:76:3f:f6:6a:9f:
b0:e4:e7:ae:26:db:12:5c:a8:8a:b7:97:d5:18:d2:
fc:12:47:00:ea:0c:8a:b6:18:8c:cf:f7:82:90:a5:
ef:98:65:7e:57:b2:7d:a4:b3:3c:18:11:db:f1:40:
d4:42:77:d2:4d:4a:5f:14:01:85:5f:fa:64:4e:ef:
0c:f5:25:6a:ae:1c:60:24:27:a5:64:e1:6d:00:be:
9a:9d:d5:3c:12:95:72:e9:f1:b4:99:d7:23:1e:88:
c7:2e:81:71:97:8b:73:d4:58:c9:1d:61:bd:8f:09:
39:50:dd:6e:13:01:63:9e:bd:d0:93:e7:4f:93:1a:
a0:0d:33:11:50:75:ab:0d:f8:65:f9:91:4e:47:a1:
6b:2c:b1:15:85:72:2f:e2:89:90:96:f5:50:6e:45:
49:02:f0:c0:36:d0:d0:a5:3f:ff:1d:00:1c:d0:b5:
82:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
45590
55355
63521-63522
133160
140551
sbgp-ipAddrBlock: critical
IPv4:
103.247.228.0/22
112.137.16.0/20
114.134.80.0/21
175.100.192.0/20
IPv6:
2403:5000::/32
Signature Algorithm: sha256WithRSAEncryption
44:38:fb:c7:8a:1e:47:b9:a1:c3:35:ba:2c:36:43:fb:a6:29:
59:f7:36:23:3c:7c:15:58:64:a7:af:30:bd:f0:e4:75:79:ba:
90:e1:e1:35:33:4c:7b:00:2b:0a:00:8e:1d:92:85:93:ff:bb:
80:17:12:e8:f7:82:73:a0:4e:2e:9c:90:83:8c:cd:57:3c:15:
09:78:cc:63:90:c4:93:a7:2a:ab:55:0c:ae:a4:da:92:0c:4c:
2a:73:c4:2e:e5:42:b3:da:a3:7f:65:a6:5d:30:08:8b:95:53:
58:8d:1c:6b:85:39:fa:e3:93:79:18:43:f9:3a:a3:2d:87:31:
9b:b7:6a:e2:95:b0:a9:7a:df:37:a7:13:69:c6:76:93:2e:01:
c7:52:b0:09:3c:bd:a6:cb:4a:84:8b:d8:f0:ff:5e:c4:bd:34:
d2:67:47:35:ec:d2:97:bb:a6:21:2e:23:50:e4:a4:5b:bf:92:
1d:27:0b:c3:f7:e3:68:b3:71:9f:ff:b7:5d:87:77:85:7e:96:
5d:2e:ae:14:08:95:71:db:31:43:a9:78:c1:52:8c:c6:c7:e7:
6a:d6:c4:c0:f7:88:d4:f1:ac:86:a0:ec:96:61:da:d2:6e:23:
42:4f:23:87:9e:64:33:cd:2f:00:1b:43:d9:91:53:aa:aa:2b:
91:59:d0:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 10:10:33 2024 by rpki-client on console-ams.rpki-client.org