Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer
File: uvWtoyyg00zzzPU6vfht5vjtkAU.cer (raw, json)
Hash identifier: vnp3W9iR8g16kbd95haxCNVx4J7cLCoegN/7lE1DZX8=
Subject key identifier: BA:F5:AD:A3:2C:A0:D3:4C:F3:CC:F5:3A:BD:F8:6D:E6:F8:ED:90:05
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EF87
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 02 May 2024 15:43:47 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 4763
AS: 4768
AS: 4830
AS: 7657
AS: 7714
AS: 9233
AS: 9327
AS: 9345
AS: 9427 -- 9429
AS: 9432
AS: 9436
AS: 9445
AS: 9469 -- 9470
AS: 9495
AS: 9500
AS: 9511
AS: 9559
AS: 9561
AS: 9662
AS: 9887
AS: 9897
AS: 9901
AS: 17410
AS: 17646
AS: 17649
AS: 17664
AS: 17808
AS: 17902
AS: 18198
AS: 38748
AS: 45116
IP: 27.252.0.0/16
IP: 49.224.0.0/14
IP: 116.89.224.0/20
IP: 118.92.0.0/15
IP: 121.72.0.0/14
IP: 121.90.0.0/16
IP: 124.6.192.0/19
IP: 202.0.32.0/19
IP: 202.20.76.0/24
IP: 202.20.93.0/24
IP: 202.22.16.0 -- 202.22.30.255
IP: 202.27.69.0/24
IP: 202.27.92.0/22
IP: 202.27.100.0/22
IP: 202.36.72.0/24
IP: 202.37.56.0/24
IP: 202.37.60.0/22
IP: 202.37.136.0/24
IP: 202.49.180.0/23
IP: 202.73.192.0/20
IP: 202.78.128.0/19
IP: 203.79.64.0/18
IP: 203.96.144.0/20
IP: 203.96.192.0/19
IP: 203.97.0.0 -- 203.98.63.255
IP: 203.109.128.0/17
IP: 203.118.128.0/18
IP: 203.144.32.0/20
IP: 203.167.128.0/17
IP: 203.173.128.0/17
IP: 210.246.0.0/18
IP: 218.101.0.0/17
IP: 2001:4400::/30
IP: 2406:9a00::/31
IP: 2407:7000::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126855 (0x1ef87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 2 15:43:47 2024 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=A9146AD7/serialNumber=BAF5ADA32CA0D34CF3CCF53ABDF86DE6F8ED9005
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:65:95:63:ba:0b:c7:50:fd:dd:db:39:e1:0c:
5b:75:0c:96:0e:37:5a:6d:8c:5b:86:77:f3:00:6f:
4f:86:08:76:34:fd:5b:51:78:9b:63:29:1c:c0:de:
a3:8d:a1:0d:b3:f8:8e:a9:61:88:09:0b:86:de:cd:
02:c7:c2:da:c2:92:23:31:6b:1f:f4:aa:ef:bd:8a:
18:cc:1b:87:15:9f:ab:ac:60:2f:fe:a4:61:d6:04:
77:18:a7:f0:9d:9d:1d:7e:40:a1:cc:bb:ed:55:d5:
ba:85:2f:26:49:fc:3a:0c:2d:b3:11:da:e6:bd:2e:
4e:5c:d2:18:e1:ab:79:1f:93:d2:19:ae:c9:e3:02:
47:be:1d:18:20:3c:b2:09:6d:4e:91:a4:6c:9c:43:
f9:e1:2d:51:09:5f:8c:6e:46:5c:45:47:eb:17:00:
f5:b0:45:69:40:28:67:3c:9e:a4:31:88:25:bc:0d:
48:31:23:0a:fe:d2:18:3a:0e:a3:32:cd:a6:71:c4:
9e:d9:98:f9:33:82:c2:91:cd:45:75:42:f2:31:3c:
ed:68:1d:23:e9:64:77:86:9d:5d:30:0e:23:4a:cf:
5d:f5:a4:6a:ef:96:ef:19:b6:ba:6c:56:09:44:0d:
7c:97:e1:3c:39:02:55:32:1d:4b:0e:fc:8d:27:ae:
00:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:F5:AD:A3:2C:A0:D3:4C:F3:CC:F5:3A:BD:F8:6D:E6:F8:ED:90:05
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
4763
4768
4830
7657
7714
9233
9327
9345
9427-9429
9432
9436
9445
9469-9470
9495
9500
9511
9559
9561
9662
9887
9897
9901
17410
17646
17649
17664
17808
17902
18198
38748
45116
sbgp-ipAddrBlock: critical
IPv4:
27.252.0.0/16
49.224.0.0/14
116.89.224.0/20
118.92.0.0/15
121.72.0.0/14
121.90.0.0/16
124.6.192.0/19
202.0.32.0/19
202.20.76.0/24
202.20.93.0/24
202.22.16.0-202.22.30.255
202.27.69.0/24
202.27.92.0/22
202.27.100.0/22
202.36.72.0/24
202.37.56.0/24
202.37.60.0/22
202.37.136.0/24
202.49.180.0/23
202.73.192.0/20
202.78.128.0/19
203.79.64.0/18
203.96.144.0/20
203.96.192.0/19
203.97.0.0-203.98.63.255
203.109.128.0/17
203.118.128.0/18
203.144.32.0/20
203.167.128.0/17
203.173.128.0/17
210.246.0.0/18
218.101.0.0/17
IPv6:
2001:4400::/30
2406:9a00::/31
2407:7000::/32
Signature Algorithm: sha256WithRSAEncryption
1a:bd:df:95:6c:4e:c5:3d:a5:83:85:b7:ad:8a:f6:f6:82:a1:
cc:4e:78:73:60:f0:46:cf:38:ab:5a:bf:ce:63:fc:21:94:9a:
5e:ce:c7:e5:5b:b7:45:e0:11:64:3b:08:56:ae:3b:e8:b8:fa:
3e:ff:68:b5:35:99:4a:08:fc:f8:c9:4a:36:51:52:58:09:2a:
e9:e1:f4:c2:8a:f3:91:f1:6f:84:1d:f1:da:aa:b1:60:30:50:
64:72:91:1d:f8:51:1a:c0:c9:a5:24:ba:91:97:9a:e7:83:4b:
90:12:52:1f:6d:63:27:ab:ff:67:b8:02:d4:e6:86:e1:29:00:
ac:5c:bd:46:16:d6:85:43:b8:ac:cc:d5:81:d7:e6:58:b2:70:
cb:8d:99:ba:f9:2e:08:27:b4:9e:3f:1d:bf:1d:30:3c:55:4d:
65:17:36:76:02:92:f7:ae:49:77:1f:a0:07:67:7a:8e:09:e1:
ed:8f:1c:6b:62:44:78:bd:07:76:09:fb:c7:33:3e:fa:cc:47:
55:c8:49:f4:a1:2b:46:d3:89:74:5f:42:6e:90:46:db:19:7f:
8b:da:d8:78:b7:f6:bc:c1:cf:15:4c:e3:db:e9:10:8e:4d:84:
f5:bc:53:20:25:10:7a:03:63:da:e6:91:93:2d:2f:95:eb:c5:
66:f1:77:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 10:24:43 2024 by rpki-client on console-fra.rpki-client.org