Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer
File: a-Q-axOWQ8tMGebfcyO1A8STEds.cer (raw, json)
Hash identifier: KJ7iUAlPSH8duhIsjZc2eFEOYarXuBDnbFHVyjlKzYk=
Subject key identifier: 6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D705
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 05 Jan 2024 20:53:56 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 58779
AS: 59237
AS: 59337
AS: 132790
AS: 133027
IP: 43.243.224.0/22
IP: 43.252.168.0/22
IP: 103.241.16.0/22
IP: 103.244.52.0/22
IP: 2405:ef00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120581 (0x1d705)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 5 20:53:56 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91E8D27/serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f2:ab:3b:1b:a1:38:36:1f:22:4f:8f:53:fb:
ca:cb:3b:72:9f:4f:27:2f:c4:09:46:37:27:5b:0e:
21:3e:82:87:82:2f:ed:27:ef:c7:44:5c:79:91:53:
03:3c:9a:36:2a:52:c5:84:d9:52:53:5d:4b:d7:6b:
1d:f7:8e:f2:64:82:04:d3:de:4e:7a:df:c0:62:55:
a1:78:81:be:44:ab:56:74:20:0c:49:28:f2:de:50:
6a:03:3f:9c:75:4d:2c:dd:80:01:c4:51:6f:fa:8b:
18:25:ad:4b:ad:cc:bf:5f:20:63:70:5a:ef:26:0c:
6e:fb:e2:3d:af:67:c1:ad:de:77:18:8a:eb:b8:17:
77:4e:59:a3:19:7b:17:f5:19:f0:b9:7e:bc:9d:28:
8f:1e:c8:51:22:d9:33:75:cf:8d:0c:a3:f7:5b:02:
81:94:73:ed:d5:c9:ce:70:8f:3f:85:9b:1d:d8:17:
2e:0c:a6:0c:a7:08:ca:4a:cc:f3:68:a9:e2:3f:de:
72:26:55:0e:25:fd:8b:67:ba:b3:fc:40:3e:8c:10:
86:fd:b5:de:48:e7:4a:95:36:4b:b9:e4:79:71:0d:
61:db:41:6d:de:66:5f:2a:13:0c:4e:2d:1f:4c:95:
97:5f:a0:44:ef:f1:86:e0:58:14:92:bc:f6:ab:85:
8c:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58779
59237
59337
132790
133027
sbgp-ipAddrBlock: critical
IPv4:
43.243.224.0/22
43.252.168.0/22
103.241.16.0/22
103.244.52.0/22
IPv6:
2405:ef00::/32
Signature Algorithm: sha256WithRSAEncryption
bc:44:fd:26:8a:80:58:34:a0:e9:6b:c6:dc:60:60:04:44:c8:
4e:a0:3d:8f:c7:1b:f5:f3:0d:20:8c:1f:c7:ef:76:f4:af:61:
6b:78:91:b6:86:a5:ba:5d:00:cc:81:22:d7:cd:a0:34:33:30:
f7:9e:2f:3b:4a:b2:4c:cb:e1:e1:3f:9a:cd:a0:2a:43:7d:22:
1d:ab:6c:98:f9:5d:25:5f:3a:cf:85:34:5e:51:15:2f:3d:10:
bd:35:ca:66:d4:73:df:a5:27:9e:a1:1f:23:95:be:e3:8d:f6:
40:e7:cd:5c:f6:46:7a:52:a5:f8:44:e0:4a:73:86:d1:c0:3b:
87:13:77:bf:7b:61:3c:e7:cc:f9:c6:36:67:bd:9a:b8:5f:71:
0d:77:7b:5f:9b:8d:ba:49:30:f6:33:a8:ae:41:7d:d6:27:bc:
01:fd:20:48:e4:8b:b1:a0:e2:c3:d5:04:1c:df:fb:89:39:6f:
4b:b6:60:49:d6:b3:8e:3a:b4:21:0c:04:d1:af:d0:e3:78:7a:
2a:dc:37:9d:c3:09:ab:7c:e8:f5:01:52:6f:bc:03:05:23:98:
c1:86:57:0a:76:27:bd:ea:d2:e3:ed:31:58:31:1c:7e:8a:ed:
68:a9:dd:ee:2e:0c:d0:aa:e4:4b:58:a9:50:22:db:db:14:45:
91:2d:c4:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 10:24:25 2024 by rpki-client on console-fra.rpki-client.org