Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUPt_mT2FOETBqh_HvJPKC5-NxQ.cer
File: PUPt_mT2FOETBqh_HvJPKC5-NxQ.cer (raw, json)
Hash identifier: x6QMl/tgWbrxvP9m1ueCsWjuwollcU4KaO/MzXZZNOQ=
Subject key identifier: 3D:43:ED:FE:64:F6:14:E1:13:06:A8:7F:1E:F2:4F:28:2E:7E:37:14
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EEC3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A92FE/71817F6CA5BE11E8A40C6F1EC4F9AE02/PUPt_mT2FOETBqh_HvJPKC5-NxQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A92FE/71817F6CA5BE11E8A40C6F1EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 30 Apr 2024 17:50:46 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 58868
IP: 103.17.250.0 -- 103.17.253.255
IP: 202.155.180.0/22
IP: 203.27.248.0/24
IP: 2406:6700::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126659 (0x1eec3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 30 17:50:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91A92FE/serialNumber=3D43EDFE64F614E11306A87F1EF24F282E7E3714
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:3b:fc:f0:55:13:1b:bd:0e:ff:78:dc:c8:b8:
ae:b9:b4:64:d2:76:bf:c8:98:c3:73:82:e3:ac:bf:
a7:98:4d:98:a6:4b:83:cc:e4:72:bd:45:57:a2:60:
23:89:fb:a3:17:90:54:51:73:a1:d7:29:95:8a:28:
11:c5:b1:2d:52:62:00:20:ed:da:c7:52:93:d4:ef:
2d:84:5f:e2:14:16:8a:a2:ab:dd:b7:5c:6b:73:47:
3e:99:72:11:eb:b0:02:0c:c9:8a:b6:89:6b:43:53:
1d:b7:9b:b4:44:ed:b0:b6:8c:30:33:74:1a:cf:8b:
f1:56:51:aa:52:ff:24:ba:c6:7f:52:d9:ab:5d:3c:
94:5b:cb:d1:53:56:c3:36:4a:f0:9e:a7:64:bf:34:
fc:a8:b8:09:9d:04:d0:b9:fe:75:40:f7:65:ff:1b:
3b:3d:13:d8:90:f9:ec:1e:2d:7f:27:88:6d:6b:59:
88:55:9e:f7:48:68:ef:80:27:fa:44:3d:85:b3:30:
c6:f9:82:19:62:1c:ed:ad:b8:f4:05:c1:f9:51:4e:
2b:19:39:00:82:25:09:44:1d:26:bb:f3:a6:31:a2:
c0:77:bc:b6:fa:8c:0b:ce:69:77:5b:55:55:2c:91:
27:e0:0d:a7:5e:51:95:68:9e:9c:f6:a1:b1:46:9e:
98:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:43:ED:FE:64:F6:14:E1:13:06:A8:7F:1E:F2:4F:28:2E:7E:37:14
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A92FE/71817F6CA5BE11E8A40C6F1EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A92FE/71817F6CA5BE11E8A40C6F1EC4F9AE02/PUPt_mT2FOETBqh_HvJPKC5-NxQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58868
sbgp-ipAddrBlock: critical
IPv4:
103.17.250.0-103.17.253.255
202.155.180.0/22
203.27.248.0/24
IPv6:
2406:6700::/32
Signature Algorithm: sha256WithRSAEncryption
79:a7:47:52:49:da:96:42:bb:5c:61:c0:0f:2d:f2:9c:3d:63:
8e:67:cb:7f:56:6a:32:b4:af:82:c4:bc:ca:8a:cd:e1:f6:00:
64:16:3a:9f:6c:c4:d7:7e:6c:53:9b:61:12:a5:22:97:1e:2d:
e5:5a:90:fd:1b:7a:30:41:d8:cd:4f:36:c7:93:ad:ce:66:91:
60:44:43:5b:4e:9c:25:1f:57:f7:05:cc:61:aa:d1:dc:24:ad:
0a:db:57:40:bb:6b:3e:1e:2a:19:af:d4:4a:f0:2e:b4:6e:69:
ca:f2:50:54:b5:b9:a7:1f:3a:df:dc:4e:b2:1c:5a:d7:7f:80:
0b:d2:1f:06:d9:5f:33:7f:15:2e:e5:51:5e:31:46:9c:d1:f0:
43:f4:a8:9f:ba:a6:25:da:f3:d8:13:75:bc:47:9b:bc:86:27:
3d:c5:52:c1:d3:b0:d1:f6:07:e5:33:cb:f7:c9:74:14:45:07:
dc:7e:4e:41:06:30:b0:f4:bb:5e:2e:3a:b4:a5:aa:53:9c:5d:
8e:f7:92:65:f9:7a:ec:35:74:7d:91:31:b8:93:93:bf:8c:80:
ce:30:81:f3:49:a0:12:14:ae:af:75:8e:e7:c2:13:bd:d2:07:
bb:57:ae:7f:e8:b7:d1:ea:a5:61:9f:e6:bd:fc:fc:9b:6c:47:
88:e4:c2:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 10:24:15 2024 by rpki-client on console-fra.rpki-client.org