Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer
File: U73ibYJfZ3-axChvmmdmH1xJtWk.cer (raw, json)
Hash identifier: CaanaZcO7+mAI7eod9vecsDJduxeGKzdLqvwWHBCnYA=
Subject key identifier: 53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B58D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 07 Aug 2023 19:07:04 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 17924
IP: 45.64.240.0/22
IP: 49.130.0.0/15
IP: 103.1.16.0/22
IP: 121.202.0.0/15
IP: 180.219.0.0/16
IP: 182.152.0.0/15
IP: 203.78.32.0/20
IP: 2407:b400::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112013 (0x1b58d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 7 19:07:04 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A919E1AE/serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:88:18:71:60:54:6c:40:2c:7b:2d:cf:ea:0a:
0d:c8:cb:5b:6a:1a:f8:30:a0:d7:95:b3:b2:ca:d9:
cb:0c:86:41:00:21:a3:e4:9f:38:bb:a4:16:f6:10:
4e:74:72:ed:1b:ee:05:22:71:b4:35:24:a8:59:e8:
9b:d2:d8:d1:50:73:46:aa:ad:37:8d:3e:c0:34:ea:
1d:fd:d0:cb:f0:38:85:d2:ff:80:26:0e:9f:a3:e8:
6a:fe:a3:25:86:b4:ed:33:24:75:e6:91:f7:fc:d6:
e6:97:01:09:fc:e1:48:87:ca:85:45:28:8f:ce:22:
9b:f4:f2:c9:f8:ae:51:7f:37:98:18:c9:cc:5c:5a:
f4:55:4c:3e:fc:51:74:35:83:28:45:5b:9e:66:e3:
70:25:cd:8f:66:42:28:cd:c5:a1:8f:b5:71:80:aa:
6b:ff:29:be:5a:85:a6:db:87:2b:61:b5:04:0b:e3:
84:96:79:8e:9d:e8:2d:b9:5e:14:6b:4a:b6:82:b4:
ff:4c:57:c5:89:f9:9e:00:4a:41:59:bc:44:ac:6d:
4f:2f:06:e0:e8:19:ac:c9:3d:7b:17:04:bc:85:f4:
79:28:62:b4:59:95:f5:a9:02:e1:ad:fa:69:22:92:
99:79:de:cc:59:6b:9c:33:b6:f9:c7:06:73:31:f3:
ea:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17924
sbgp-ipAddrBlock: critical
IPv4:
45.64.240.0/22
49.130.0.0/15
103.1.16.0/22
121.202.0.0/15
180.219.0.0/16
182.152.0.0/15
203.78.32.0/20
IPv6:
2407:b400::/32
Signature Algorithm: sha256WithRSAEncryption
09:02:7f:03:77:82:fa:8b:7f:a4:6b:33:7c:45:da:19:ea:a5:
90:c9:b1:7d:c7:9a:fe:4f:45:92:40:79:f7:26:c2:ca:fc:35:
57:1c:1f:e2:14:1a:10:c8:10:50:85:29:90:97:4b:e4:8c:69:
d8:10:92:6f:41:87:75:ce:86:49:56:47:46:1b:84:6d:15:af:
c5:e5:96:cd:43:ac:e6:e2:ef:b6:39:ba:58:96:0b:bd:cb:34:
c3:52:61:02:8b:2a:e4:e4:21:54:ec:b8:5d:e6:81:92:12:f8:
e0:72:12:6d:97:66:d1:43:be:d8:21:dc:e2:47:9a:e3:d8:c2:
01:b3:e1:32:2a:7b:b4:7c:6c:60:cd:a0:fd:76:d1:08:a2:76:
d6:1b:fb:ed:2f:c7:aa:9a:d4:03:19:1f:5a:ba:6b:37:5c:48:
71:61:58:9d:bb:0d:b5:d3:11:cf:37:9f:da:fe:b2:c7:b2:1f:
95:f7:e5:e0:8a:41:e8:bb:33:99:2b:62:88:fc:ce:34:e3:d7:
c6:37:70:b0:99:1e:33:8f:d2:e7:56:e6:8a:14:4b:05:01:13:
1a:5b:69:4f:18:dc:79:7b:53:07:13:fa:ff:c3:a6:e7:98:38:
68:3a:e9:a7:3b:f5:a4:0d:11:39:60:d0:7a:e7:8d:62:73:e8:
92:e3:67:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 10:10:44 2024 by rpki-client on console-ams.rpki-client.org