Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer
File: PqQ0fS2f1utqAbROVXH4iwiswls.cer (raw, json)
Hash identifier: MpGJB+9FscIbcRX6HzEd4/dTfWSs+NBfkMoMZ3VGc3M=
Subject key identifier: 3E:A4:34:7D:2D:9F:D6:EB:6A:01:B4:4E:55:71:F8:8B:08:AC:C2:5B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02000B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 15 Jul 2024 13:50:27 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 134375
IP: 43.230.64.0/22
IP: 45.122.120.0/22
IP: 103.62.236.0/22
IP: 103.77.0.0/22
IP: 103.251.140.0/22
IP: 116.206.156.0/22
IP: 203.189.252.0/22
IP: 2402:8a80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131083 (0x2000b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 15 13:50:27 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A917BB51/serialNumber=3EA4347D2D9FD6EB6A01B44E5571F88B08ACC25B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:00:3e:70:80:a0:10:06:55:ca:b9:31:79:b0:
3b:f5:17:1c:59:e7:7f:24:04:ed:ba:83:d6:16:00:
64:65:0b:58:d2:a3:9e:ab:c7:d3:be:0e:94:d9:f3:
61:4a:2e:f3:22:10:ee:27:90:f6:98:39:04:25:b6:
21:d3:04:de:5a:14:d7:52:bb:9c:50:e4:00:49:10:
ab:4d:bd:d9:4b:0c:e1:42:4d:a7:2b:d9:d5:66:81:
28:fa:53:c5:7c:e6:33:48:83:af:e3:fd:26:74:58:
31:70:a4:be:85:06:df:cc:ab:9c:06:81:30:14:5d:
70:0a:20:46:ff:45:3a:ad:6d:03:76:1d:95:d7:7d:
ed:db:c0:50:ce:21:41:5d:3f:26:3c:33:c9:e8:e6:
af:12:e6:df:79:b4:fc:f3:57:b6:88:7a:b8:71:dd:
44:a6:b4:87:78:1c:a9:9c:5b:a4:4f:41:b6:99:47:
7a:3e:30:07:a1:36:f7:56:82:33:f2:a9:56:c2:b6:
38:0a:e6:64:ee:9a:47:f0:68:0f:4c:36:54:5d:fc:
ee:d5:96:6e:b2:38:49:c7:d6:fe:76:8e:91:b9:7a:
1c:03:2f:21:9b:02:36:80:01:64:0f:a5:68:ae:0b:
2b:48:6b:e1:3a:cf:f8:54:13:fe:b6:24:f5:d4:d3:
28:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:A4:34:7D:2D:9F:D6:EB:6A:01:B4:4E:55:71:F8:8B:08:AC:C2:5B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134375
sbgp-ipAddrBlock: critical
IPv4:
43.230.64.0/22
45.122.120.0/22
103.62.236.0/22
103.77.0.0/22
103.251.140.0/22
116.206.156.0/22
203.189.252.0/22
IPv6:
2402:8a80::/32
Signature Algorithm: sha256WithRSAEncryption
53:d0:c3:7a:8c:7e:02:61:54:7e:fc:2d:24:b9:9a:c6:b5:b2:
7d:2b:f2:01:77:dc:38:77:7f:48:af:8f:37:d7:56:03:6e:3f:
b1:05:2b:74:8a:e6:b6:8b:24:54:50:cc:9c:25:59:63:f0:63:
50:0a:cc:2e:c2:e2:51:75:9e:bb:39:69:74:ee:7b:30:a8:c0:
a6:c4:08:6b:66:ad:9a:51:8d:b9:bb:54:75:fb:87:ca:1f:d7:
c4:a8:3f:69:08:a4:0d:fb:8b:d7:ca:11:88:81:47:0b:ce:b5:
d4:cd:5a:91:8a:bb:42:32:0a:1e:74:16:f1:50:88:43:85:e4:
fd:85:86:d8:1d:95:0c:57:46:0f:c3:d1:a0:db:3b:85:1e:48:
4d:22:28:b8:87:4e:4f:b9:63:34:ba:b0:d6:a6:1f:e4:0d:4b:
67:27:36:21:50:10:ea:fc:02:49:2f:8b:82:4a:d1:bd:b0:bf:
47:c2:65:8e:c2:ec:d6:87:e9:8f:a5:e5:20:d0:53:29:c6:9a:
6e:88:e5:7b:86:0f:a5:7d:88:ed:0d:2d:52:50:be:80:05:2b:
7d:cb:aa:4e:cd:1e:95:4c:f5:3c:e8:4f:e7:58:ef:e4:8b:bf:
e9:2b:07:91:ba:57:df:57:a0:8a:d9:fe:f7:71:8b:49:f7:5c:
05:77:5c:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:24:41 2024 by rpki-client on console-fra.rpki-client.org