Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ER6YG60wGDD3weWQzBqotIImDtg.cer
File: ER6YG60wGDD3weWQzBqotIImDtg.cer (raw, json)
Hash identifier: A4KMax2hVnYQ5VnZTUXxtwDtdQqQja7df0HOncYF+Fs=
Subject key identifier: 11:1E:98:1B:AD:30:18:30:F7:C1:E5:90:CC:1A:A8:B4:82:26:0E:D8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E9AA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 04 Apr 2024 04:19:25 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 55795
IP: 101.128.4.0/22
IP: 103.9.16.0/22
IP: 202.52.46.0/24
IP: 2401:5b00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125354 (0x1e9aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 4 04:19:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91F0FE2/serialNumber=111E981BAD301830F7C1E590CC1AA8B482260ED8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f3:95:cc:bc:d4:1c:22:4e:6f:96:38:8b:5e:
c6:a8:f7:25:fa:76:84:f1:31:d5:fd:12:e4:b3:62:
b4:a6:5c:72:ab:18:ab:72:b2:c1:ec:a6:15:22:04:
26:e9:cb:03:85:cc:07:53:83:76:6e:e1:90:49:31:
c6:8b:0e:7f:a2:70:b4:f9:96:bb:13:6f:04:e5:b7:
52:80:64:e8:13:57:20:39:70:61:8f:58:83:2e:9f:
c2:f8:56:d8:b9:29:40:07:37:ad:c1:75:f0:cc:9d:
01:cc:ff:22:20:a8:e4:96:e6:63:05:47:62:6c:f5:
82:05:bd:eb:b9:d3:1e:5d:1f:f8:33:47:14:d5:04:
d6:d9:0a:22:21:a0:14:e6:8e:b3:07:98:b7:5d:b8:
67:7f:23:00:8d:e6:de:63:7f:82:b1:33:6b:e5:42:
30:be:d8:32:32:da:32:0a:c9:99:13:7b:e3:88:e2:
25:c3:63:cb:cb:80:40:90:4d:4e:cc:93:1e:1f:cd:
04:43:29:a4:29:62:d5:bf:f0:6a:d7:0b:3b:b3:e4:
63:e3:1c:1b:9d:ea:9f:31:f7:ec:da:0f:b0:c5:f7:
0f:98:be:f6:ba:7b:16:92:78:cf:0d:8a:eb:d9:fe:
cd:27:54:06:40:0e:84:e6:80:10:7e:1d:b8:ac:6e:
6e:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:1E:98:1B:AD:30:18:30:F7:C1:E5:90:CC:1A:A8:B4:82:26:0E:D8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55795
sbgp-ipAddrBlock: critical
IPv4:
101.128.4.0/22
103.9.16.0/22
202.52.46.0/24
IPv6:
2401:5b00::/32
Signature Algorithm: sha256WithRSAEncryption
6c:5f:91:0d:c3:cc:82:04:13:a0:1b:be:5e:80:a6:6e:da:59:
e8:67:1d:59:8f:09:aa:a0:1f:b4:54:af:fd:48:c6:c9:42:45:
0a:df:7d:66:34:e5:a6:c5:6f:df:12:55:b7:ec:c8:ba:45:57:
ff:6e:02:ca:f7:cd:89:f5:19:0c:b6:7b:29:1c:ec:40:1d:eb:
bd:07:6a:58:01:00:9c:b2:6c:11:0a:3e:4f:4f:41:81:fd:3e:
7c:8e:36:5a:9d:12:68:54:f9:d3:79:77:80:40:c6:a1:5c:98:
78:62:28:96:e8:6e:e4:3e:20:dd:e1:49:93:ca:01:bc:0a:26:
1e:8b:14:9b:32:48:69:3a:d6:d1:a3:88:22:21:2b:24:ba:8e:
2f:08:73:3e:9c:69:48:44:f7:3f:60:57:51:08:a3:61:7b:b2:
42:74:b0:8c:4f:fe:4f:7c:af:bb:f8:73:f5:28:b7:46:b6:9e:
23:16:1b:38:aa:3f:3f:ef:6a:4a:32:c2:9e:69:86:e7:86:7d:
a1:ba:21:d6:1c:f5:b9:71:45:12:ce:85:a9:94:b9:ea:95:73:
b5:da:8b:54:48:3e:60:6e:65:e6:08:20:05:bf:fe:4c:77:75:
bc:07:c0:0b:f7:a3:75:03:f9:37:5c:04:e0:b0:a0:e8:48:fa:
a2:97:97:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 03:29:49 2024 by rpki-client on console-fra.rpki-client.org