Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3Z_4wTU8n9REYZLp0O5R5zhSns.cer
File: S3Z_4wTU8n9REYZLp0O5R5zhSns.cer (raw, json)
Hash identifier: EuU4FnC4fU2Tq8Urv3vd0nmfRmxfIf2Uc2VdhR/RvKE=
Subject key identifier: 4B:76:7F:E3:04:D4:F2:7F:51:11:86:4B:A7:43:B9:47:9C:E1:4A:7B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D8A9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 16 Jan 2024 14:56:52 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 38891
IP: 103.198.84.0/22
IP: 103.242.16.0/22
IP: 202.176.12.0/24
IP: 203.99.136.0/22
IP: 223.25.248.0/22
IP: 2407:9400::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121001 (0x1d8a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 16 14:56:52 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91D53AC/serialNumber=4B767FE304D4F27F5111864BA743B9479CE14A7B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:7f:6a:08:62:08:a9:52:84:a7:16:59:19:16:
59:db:4f:98:52:d2:33:9b:35:0c:33:16:05:e1:2f:
5b:fc:95:bf:7d:fa:64:0c:81:f8:cb:1f:10:01:b6:
35:40:bd:2a:cf:ee:1b:3c:75:a6:8f:5d:22:54:c7:
40:f8:57:25:f0:77:41:bb:61:22:51:b1:93:b8:7a:
6d:23:88:b2:5e:f7:3d:e1:12:6d:0c:94:b2:47:77:
33:72:2f:dc:1e:ac:ec:48:7a:02:09:c9:a8:64:e4:
6f:57:0f:e9:83:9b:fb:d1:4d:3d:78:14:17:e0:7a:
53:f3:46:8e:fd:04:c8:44:43:69:5a:d2:aa:4a:b9:
66:ea:a6:14:f3:92:46:97:16:ea:72:59:4a:6e:ae:
09:13:56:1a:08:c6:e2:0b:69:fc:61:a6:03:c6:82:
44:17:9a:5e:36:30:d1:a1:87:36:83:e5:e1:15:3a:
34:59:25:3a:72:a5:17:d3:bc:60:af:d5:ef:07:70:
1e:77:16:2d:7b:dc:58:49:44:22:65:f6:2f:3e:92:
cb:24:4f:c6:cb:7e:d3:fe:87:73:6e:fc:8c:42:73:
ba:71:bb:28:1c:63:de:dd:b5:3c:36:fb:9d:1c:32:
b4:72:d3:99:32:64:9a:d1:a6:dc:21:fe:0e:9f:c5:
f7:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:76:7F:E3:04:D4:F2:7F:51:11:86:4B:A7:43:B9:47:9C:E1:4A:7B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38891
sbgp-ipAddrBlock: critical
IPv4:
103.198.84.0/22
103.242.16.0/22
202.176.12.0/24
203.99.136.0/22
223.25.248.0/22
IPv6:
2407:9400::/32
Signature Algorithm: sha256WithRSAEncryption
60:06:c9:97:72:b0:af:18:5d:f9:98:d7:e4:fc:ec:43:dd:22:
fb:be:4c:cb:4d:e8:fc:93:71:5f:79:e9:07:b2:bf:c9:5a:8b:
b5:02:42:ff:d5:5a:c8:09:37:53:57:a2:52:e4:dc:6c:8d:3e:
d5:a4:89:77:3c:f6:ef:a0:b2:6d:31:f4:70:39:73:d9:45:4f:
83:86:51:f7:b3:20:68:94:15:68:9a:a9:5f:90:6b:6b:41:99:
4a:62:3b:0a:ff:e8:b0:9c:fb:55:f2:1e:99:be:50:1b:da:01:
37:40:81:7b:94:af:c1:c8:6c:f0:a9:a8:b3:fe:8b:08:eb:91:
d8:54:9d:03:41:1f:0b:be:6a:39:d6:5e:0f:7f:03:13:f6:24:
87:be:d6:cb:73:23:bd:04:61:04:c8:37:c2:6f:9a:a8:de:a9:
30:e6:f7:38:5a:ce:68:91:50:1b:4d:8a:34:d2:50:fb:71:2d:
8c:c7:15:fb:40:d0:ee:47:6a:ec:d3:81:c5:2f:b7:b5:c6:d1:
c2:37:69:84:aa:0e:27:f2:67:f7:d7:23:51:94:e8:41:08:5c:
af:74:9b:00:67:6d:39:4a:af:21:f5:c6:85:35:89:85:2e:b3:
ca:bc:ba:43:58:5d:cb:fc:60:a2:4f:96:c2:ee:e8:f4:72:c1:
d9:3f:df:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 07:42:54 2024 by rpki-client on console-ams.rpki-client.org