Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShevZqBI_IHa6FRffjXZ2qvUAnE.cer
File: ShevZqBI_IHa6FRffjXZ2qvUAnE.cer (raw, json)
Hash identifier: +4bn3G/DnR6/LBvU6lpXk3AoZERpHOffbN2K1npq8/8=
Subject key identifier: 4A:17:AF:66:A0:48:FC:81:DA:E8:54:5F:7E:35:D9:DA:AB:D4:02:71
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D8FA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/ShevZqBI_IHa6FRffjXZ2qvUAnE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 17 Jan 2024 18:17:36 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 64087
IP: 103.200.112.0/22
IP: 124.108.20.0/22
IP: 2403:a280::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 12:36:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121082 (0x1d8fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 17 18:17:36 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91B6E73/serialNumber=4A17AF66A048FC81DAE8545F7E35D9DAABD40271
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:75:8c:ac:ce:d3:20:85:6c:6f:4c:f4:17:28:
a3:d5:93:91:f4:f4:1e:14:24:35:31:fc:36:54:8d:
13:e3:a1:6b:73:85:d7:8e:db:1a:99:21:50:c6:b9:
5e:b5:4f:e9:e5:c3:ae:a2:f2:90:7e:35:3b:c9:30:
06:0a:23:a4:30:dd:cc:f3:27:e2:1a:ae:06:8c:7d:
22:06:68:39:8a:4e:31:29:5c:26:8c:23:e3:b5:8a:
11:ae:c1:4b:93:22:75:c8:2d:a5:1a:09:52:8d:0f:
f5:cb:46:c2:89:d8:ac:3f:2e:60:03:eb:de:77:4e:
89:8c:e4:b0:2a:2c:21:54:1e:34:9f:cf:c7:bc:c6:
58:30:a1:22:8f:99:02:1c:26:05:9b:4c:87:5c:27:
44:f0:f9:eb:8c:6f:5c:82:8c:90:3e:a2:26:93:93:
2f:eb:2c:8d:dc:c9:8d:e0:df:08:31:99:d7:53:97:
22:2a:cd:9f:39:1d:8f:e3:fe:62:2d:f5:df:b6:c4:
93:b2:ed:03:f7:61:ae:68:d6:c2:2c:ac:02:33:9f:
12:16:02:d8:d3:f5:9a:ab:22:f4:b5:b7:58:94:9f:
4d:42:db:1f:d5:c1:3e:af:0d:dd:7a:ff:10:8a:ef:
73:64:e6:c6:90:aa:c2:33:3f:49:44:63:66:98:1b:
dd:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:17:AF:66:A0:48:FC:81:DA:E8:54:5F:7E:35:D9:DA:AB:D4:02:71
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/ShevZqBI_IHa6FRffjXZ2qvUAnE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
64087
sbgp-ipAddrBlock: critical
IPv4:
103.200.112.0/22
124.108.20.0/22
IPv6:
2403:a280::/32
Signature Algorithm: sha256WithRSAEncryption
94:d8:44:15:14:63:7b:9f:43:fa:7e:85:2f:79:10:8b:4a:f5:
71:6a:a7:e9:cc:84:1e:9f:d4:35:12:80:62:0d:e6:a7:75:01:
cf:27:c1:e2:7f:59:d0:6d:4e:9e:1a:05:c2:d3:93:2f:25:ee:
a8:4a:c2:21:30:7e:05:93:2e:de:82:f0:91:29:ea:55:53:08:
48:9a:e6:56:0d:4e:76:c9:d1:e0:1b:b5:2a:fb:30:dc:c5:58:
f6:38:94:57:3c:ce:e8:20:cb:a2:e4:37:79:b9:0b:cb:5b:a1:
8d:2d:9a:41:7f:2d:3a:e1:c8:df:0c:5e:20:0a:5e:58:e3:a0:
67:c9:d5:a5:47:1f:3d:2a:6a:c0:13:1d:7b:e6:41:c7:44:49:
19:43:5b:a3:ea:f2:ba:5d:3e:a0:c4:5f:b6:a5:bc:47:f5:e9:
6b:26:27:79:88:1c:ff:a3:e6:3c:6b:1b:f4:1d:7c:02:60:88:
de:7e:81:50:5a:8e:c9:bf:d0:af:d4:0c:ae:fd:9b:c8:28:b5:
62:38:e1:ce:4f:82:f0:a0:ed:0c:27:d1:e7:5b:54:e3:39:62:
ec:d1:19:df:a5:a5:e0:b6:29:2d:9a:27:46:25:c9:04:27:2d:
e0:07:12:ba:d6:02:89:0d:e0:13:52:f9:87:1b:71:e6:7f:b5:
26:7f:fa:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 13:47:06 2024 by rpki-client on console-ams.rpki-client.org