Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sY-YmWfTDyUJ49KXB8X4W19r228.cer
File: sY-YmWfTDyUJ49KXB8X4W19r228.cer (raw, json)
Hash identifier: iuu8lwo+kfRt3JFMQp2PKoASopCRTc4jlXijkB16GWg=
Subject key identifier: B1:8F:98:99:67:D3:0F:25:09:E3:D2:97:07:C5:F8:5B:5F:6B:DB:6F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01ED28
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.sub.apnic.net/repository/A91905300000/3/B18F989967D30F2509E3D29707C5F85B5F6BDB6F.mft
caRepository: rsync://rpki.sub.apnic.net/repository/A91905300000/3/
Notify URL: https://rrdp.sub.apnic.net/notification.xml
Certificate not before: Wed 24 Apr 2024 10:50:50 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 37990
IP: 203.4.168.0/22
IP: 2001:df0:206::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126248 (0x1ed28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 24 10:50:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A911AC370000/serialNumber=B18F989967D30F2509E3D29707C5F85B5F6BDB6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:1a:ab:b2:7b:21:f5:5b:4b:40:e7:70:47:ea:
25:f9:77:b5:66:43:ee:1b:6e:df:28:c7:a2:d0:f0:
29:64:6b:fd:77:ac:2d:42:40:ee:c1:dc:c6:f7:36:
1b:c6:8b:c0:7e:94:13:1e:ff:68:a0:13:07:7c:eb:
55:37:91:36:c1:be:18:b6:fc:2c:09:c6:91:1c:8c:
07:49:1f:cb:65:61:76:39:c7:4f:92:3a:d3:bf:5d:
d8:ca:c0:25:99:a3:90:bc:2a:8e:2b:50:1f:70:41:
20:ef:f5:db:40:76:50:72:f5:1a:12:94:94:db:ec:
6e:11:a0:be:7c:8f:b3:cc:66:86:ea:15:a5:16:5a:
26:f0:c1:0a:2e:15:8d:51:e7:a9:23:bc:49:96:75:
d7:6d:89:ca:e7:fd:bf:86:a0:85:25:82:27:2d:3a:
b6:b2:6c:f4:3b:f1:28:77:a1:96:a8:58:78:d6:04:
23:7e:76:b4:2a:ca:7d:2d:ef:68:ba:c5:9d:03:ab:
b9:ec:34:0a:46:62:f5:87:28:85:c1:2d:9b:31:4f:
e9:04:11:09:4e:ab:f3:b1:d6:52:3a:49:c9:09:63:
54:70:a8:28:41:de:3a:3c:bd:7f:fc:03:3c:61:91:
94:57:5c:48:bd:5e:24:cf:2c:6c:a3:99:c0:44:33:
96:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:8F:98:99:67:D3:0F:25:09:E3:D2:97:07:C5:F8:5B:5F:6B:DB:6F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.sub.apnic.net/repository/A91905300000/3/
RPKI Manifest - URI:rsync://rpki.sub.apnic.net/repository/A91905300000/3/B18F989967D30F2509E3D29707C5F85B5F6BDB6F.mft
RPKI Notify - URI:https://rrdp.sub.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
37990
sbgp-ipAddrBlock: critical
IPv4:
203.4.168.0/22
IPv6:
2001:df0:206::/48
Signature Algorithm: sha256WithRSAEncryption
5c:b7:82:dd:b1:5b:91:bd:2c:56:74:f9:72:85:e3:ee:ff:3b:
84:fa:77:fc:17:82:2d:56:3d:35:81:79:af:09:3b:22:3e:73:
e3:a0:c8:4b:6d:e9:43:77:eb:15:99:92:8c:8e:7d:a0:1b:4a:
99:17:c3:6c:33:d5:64:fb:cf:21:09:8b:f5:13:1c:1a:e5:b2:
ca:e8:ae:fc:2e:16:13:99:31:b1:8a:e0:52:48:12:57:11:a7:
6c:65:20:e3:c6:37:e0:33:6d:6a:58:b6:a0:90:f2:41:2d:f4:
bc:a5:04:b9:1d:fe:93:1b:96:87:6d:f1:24:a5:8e:ef:0f:29:
9d:38:c9:de:b2:f3:2e:72:07:3e:18:24:07:4f:44:85:84:d1:
6e:7f:05:4d:07:d7:c7:dd:2f:ab:fb:60:0e:ae:36:b1:ba:ca:
86:cf:08:3b:f8:d6:1b:fd:b3:8e:21:98:69:d9:aa:da:b0:51:
1d:66:a4:93:e6:c5:72:47:d0:47:f5:4d:59:3f:69:3a:6f:66:
7d:14:92:c9:36:e3:de:91:5a:2d:9d:76:0a:f7:8d:9e:66:1f:
45:2a:08:f1:1b:14:d0:fd:5f:82:50:cc:7b:59:8c:dd:7f:f0:
0e:16:6f:d8:65:cb:2b:6f:39:36:c2:39:d1:29:a3:63:8b:fa:
66:82:6c:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 03:38:43 2024 by rpki-client on console-ams.rpki-client.org