Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ty_T8AtY8TSpqOPn3ajY0grANSc.cer
File: Ty_T8AtY8TSpqOPn3ajY0grANSc.cer (raw, json)
Hash identifier: HcRG+/mao0yKsUHveDbyaGU5at9kVpZZ5h26oYS8O/E=
Subject key identifier: 4F:2F:D3:F0:0B:58:F1:34:A9:A8:E3:E7:DD:A8:D8:D2:0A:C0:35:27
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D97D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9174880/69F04BA81D6A11E2BB7014A808B02CD2/Ty_T8AtY8TSpqOPn3ajY0grANSc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9174880/69F04BA81D6A11E2BB7014A808B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 19 Jan 2024 16:05:07 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 9236
AS: 9281
AS: 9439
AS: 9537
AS: 9560
AS: 23754 -- 23755
AS: 23904
AS: 23977
AS: 24318
AS: 24384 -- 24388
AS: 38178
AS: 38189
AS: 38329
AS: 45279
AS: 45585
AS: 45633
AS: 131110
AS: 132001
AS: 132040
AS: 134954 -- 134961
IP: 103.23.16.0/22
IP: 110.173.160.0/20
IP: 202.7.0.0/23
IP: 202.7.4.0/22
IP: 202.8.44.0/22
IP: 218.100.21.0/24
IP: 218.100.23.0 -- 218.100.26.255
IP: 218.100.56.0/24
IP: 218.100.65.0/24
IP: 2001:4410::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121213 (0x1d97d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 19 16:05:07 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A9174880/serialNumber=4F2FD3F00B58F134A9A8E3E7DDA8D8D20AC03527
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ed:57:15:de:21:a8:31:b9:a9:5c:1b:ab:f3:
e9:32:42:d3:f2:cc:06:2f:34:d5:0a:60:50:c0:ce:
79:f5:df:36:f0:f4:6c:46:a3:4c:8f:59:06:91:9a:
9c:2e:2d:b8:f2:36:69:6e:dc:2d:6b:64:6b:ce:4a:
73:8f:24:fa:a1:42:df:65:41:5e:34:ae:4b:58:6a:
4e:f5:db:e7:89:a9:49:8c:03:46:a4:64:be:1e:39:
80:f0:bf:54:fa:83:e8:1d:b6:ca:83:ac:ce:59:38:
b1:95:cc:cf:b5:60:b2:f5:c3:93:3d:4a:1e:04:d4:
60:65:9b:d5:c5:af:46:e1:e6:06:09:df:c3:76:1a:
ba:92:26:18:7b:0c:23:7d:ec:a8:f6:18:fa:6f:1c:
21:44:95:7d:ec:16:82:24:d7:c4:c3:95:e3:e7:d0:
f5:35:ed:24:50:ea:20:62:5d:b7:3f:2d:92:14:d5:
dd:42:af:0e:21:51:5b:88:f8:68:05:1b:37:b9:82:
a1:47:64:d8:ea:66:f6:8c:ab:b4:d0:b5:e2:85:9e:
65:cc:40:0f:83:fd:fe:ef:3d:5e:89:3e:34:4d:3e:
86:57:75:52:6c:9a:b4:21:51:3c:e7:32:e7:65:e3:
75:c2:4a:96:f7:68:87:86:7e:dc:9b:62:c1:6a:69:
d0:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:2F:D3:F0:0B:58:F1:34:A9:A8:E3:E7:DD:A8:D8:D2:0A:C0:35:27
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9174880/69F04BA81D6A11E2BB7014A808B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9174880/69F04BA81D6A11E2BB7014A808B02CD2/Ty_T8AtY8TSpqOPn3ajY0grANSc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9236
9281
9439
9537
9560
23754-23755
23904
23977
24318
24384-24388
38178
38189
38329
45279
45585
45633
131110
132001
132040
134954-134961
sbgp-ipAddrBlock: critical
IPv4:
103.23.16.0/22
110.173.160.0/20
202.7.0.0/23
202.7.4.0/22
202.8.44.0/22
218.100.21.0/24
218.100.23.0-218.100.26.255
218.100.56.0/24
218.100.65.0/24
IPv6:
2001:4410::/32
Signature Algorithm: sha256WithRSAEncryption
c3:08:88:93:7f:c5:2b:b9:57:40:66:00:85:ef:24:17:cb:ce:
a3:3a:22:61:b5:a1:be:c2:2c:70:58:5a:0b:1a:73:21:de:d3:
c0:ec:40:70:36:dd:cb:10:b8:b9:14:a1:d6:c0:a3:62:f4:57:
97:d4:ff:56:0d:c6:e4:72:6c:65:5d:72:61:21:36:80:37:62:
4a:98:49:5b:58:ac:ed:5e:f1:0d:16:51:1b:7a:86:19:94:a9:
06:25:30:e8:bc:0a:7f:d1:67:f3:47:30:a6:60:d8:f6:a0:08:
f7:6e:ba:d2:58:4e:39:04:6e:ee:07:5b:84:52:c8:7f:ac:e5:
e8:4f:d7:cb:d8:ea:ed:7f:fb:91:f5:ef:4d:b6:50:a5:d6:3b:
5f:bd:e2:59:1b:c1:85:ea:6f:cb:bb:99:68:83:d1:6e:5e:74:
87:5d:1a:8f:6d:2c:58:03:c5:26:b2:13:4b:1b:d5:65:b1:f8:
b3:41:ac:65:42:fa:11:c8:6b:a2:36:63:c0:63:ad:7a:3c:27:
3e:b7:3c:97:28:07:04:f0:27:29:fc:61:6d:b0:2f:d5:29:b0:
1e:57:a5:0e:f9:f4:97:a0:41:72:a3:2b:1f:f4:35:c2:73:ea:
04:c4:18:f6:d7:55:79:ed:c7:1d:9a:64:a5:db:10:e7:d5:8e:
a9:86:09:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 17:48:20 2024 by rpki-client on console-ams.rpki-client.org