Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dOSCYGNYsugSWKrw2-THyWPYfhw.cer
File: dOSCYGNYsugSWKrw2-THyWPYfhw.cer (raw, json)
Hash identifier: xvynqA60oNkiR7Bq6UC2rygLQNPBUpsMxOkdi+S8oF8=
Subject key identifier: 74:E4:82:60:63:58:B2:E8:12:58:AA:F0:DB:E4:C7:C9:63:D8:7E:1C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EEEE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D3633/62909F38A24111E6BCA8D078C4F9AE02/dOSCYGNYsugSWKrw2-THyWPYfhw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D3633/62909F38A24111E6BCA8D078C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 01 May 2024 01:48:02 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 38880
AS: 132002
IP: 27.131.64.0/18
IP: 43.245.68.0/22
IP: 103.13.56.0/22
IP: 103.31.28.0/22
IP: 103.204.106.0/23
IP: 103.213.100.0/22
IP: 111.223.224.0/20
IP: 119.31.224.0/21
IP: 192.140.140.0/22
IP: 203.29.20.0/24
IP: 2400:9c00::/32
IP: 2407:ca80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126702 (0x1eeee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 1 01:48:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91D3633/serialNumber=74E482606358B2E81258AAF0DBE4C7C963D87E1C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:2b:7d:68:3d:17:4c:71:eb:a0:99:4e:e2:dc:
2f:ae:2d:3e:ef:eb:c2:2f:7d:5d:f7:1d:72:1b:c2:
3d:fc:6e:30:5b:0b:64:3e:46:e7:f3:e8:94:e1:ed:
02:bf:d9:a6:d4:56:88:42:fe:f3:64:f0:eb:1a:33:
68:bd:99:82:2c:eb:e3:6e:b4:8c:18:16:89:60:b6:
4b:f6:40:d4:ab:53:14:35:1c:8c:2d:ae:14:c3:4e:
93:4d:a6:cb:b2:8f:47:6c:df:38:e1:9a:0f:25:74:
24:b6:ce:e0:65:17:78:a5:a5:e0:bb:3d:1e:8f:63:
da:fc:e5:7c:bf:01:f2:d5:8d:13:1c:c1:bf:d2:ca:
38:2e:cc:88:db:fc:2e:b5:41:13:03:5b:ae:47:4c:
b0:78:63:f9:93:84:82:68:74:8c:6c:01:fb:7c:a9:
9c:6b:0c:d1:a0:55:b2:c4:77:28:9e:d0:b1:28:79:
fe:d5:16:2c:50:9b:9a:90:5d:27:c4:ad:66:88:26:
7e:07:b3:93:5c:6e:01:d0:74:a6:6f:44:93:68:15:
83:4d:b2:97:30:05:b0:e6:25:93:16:3e:fa:94:8d:
54:2f:0c:7c:66:d7:5e:13:2c:99:36:75:05:33:ca:
8e:6c:49:96:df:7b:b5:45:37:aa:96:8c:3f:57:20:
8f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:E4:82:60:63:58:B2:E8:12:58:AA:F0:DB:E4:C7:C9:63:D8:7E:1C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D3633/62909F38A24111E6BCA8D078C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D3633/62909F38A24111E6BCA8D078C4F9AE02/dOSCYGNYsugSWKrw2-THyWPYfhw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38880
132002
sbgp-ipAddrBlock: critical
IPv4:
27.131.64.0/18
43.245.68.0/22
103.13.56.0/22
103.31.28.0/22
103.204.106.0/23
103.213.100.0/22
111.223.224.0/20
119.31.224.0/21
192.140.140.0/22
203.29.20.0/24
IPv6:
2400:9c00::/32
2407:ca80::/32
Signature Algorithm: sha256WithRSAEncryption
cf:23:b8:3b:54:28:ca:8c:1d:0d:ea:46:07:1f:d9:c4:ff:67:
2c:0c:83:39:ce:04:bd:fc:bc:a0:56:f2:95:ff:cf:a6:20:38:
b6:93:a9:2e:79:98:d0:70:1f:56:55:94:ed:39:de:f3:84:a5:
db:da:14:4b:74:89:e6:37:79:ee:df:cc:af:75:c5:e7:28:6f:
8c:a5:65:c3:c3:9f:ae:38:22:5b:4d:b8:ad:d3:ab:b4:12:bc:
79:ee:e8:9d:e6:ca:25:fe:a9:ab:10:ca:09:76:47:b1:4d:f3:
8b:0e:72:c9:1e:7f:50:ab:42:41:a3:cc:e7:56:c9:5d:04:38:
54:2a:52:e6:33:40:f9:0b:44:46:31:ec:35:37:78:db:29:1c:
45:c9:dd:13:d3:b3:6e:78:24:35:54:aa:18:a1:4f:da:89:96:
91:f3:d9:22:54:76:bc:b1:ae:fa:bd:b0:3a:fe:70:c1:82:dd:
05:d8:35:03:6a:42:3b:85:47:a9:53:02:0b:9a:8f:d0:d0:8a:
ca:93:bc:c3:a3:01:99:e4:74:fc:98:3f:9e:43:2d:47:0e:2b:
79:00:2b:b0:48:fb:80:7d:d2:51:24:fa:1b:c8:7b:a5:77:b4:
a7:7c:6d:26:51:fc:fd:ed:78:f3:41:04:62:5e:4e:03:2e:43:
ce:8f:20:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 03:30:13 2024 by rpki-client on console-fra.rpki-client.org