Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wSlv-tNPKfBODvrV2SRMAqfYfY0.cer
File: wSlv-tNPKfBODvrV2SRMAqfYfY0.cer (raw, json)
Hash identifier: TEfKrCcypqI/R15rIJQPD7gIjifHrKrCn5XUMnwWjZg=
Subject key identifier: C1:29:6F:FA:D3:4F:29:F0:4E:0E:FA:D5:D9:24:4C:02:A7:D8:7D:8D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01ED34
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AF59C/735DC4D61D8D11E29A7543EB08B02CD2/wSlv-tNPKfBODvrV2SRMAqfYfY0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AF59C/735DC4D61D8D11E29A7543EB08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 24 Apr 2024 14:41:45 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 7604
AS: 18195
AS: 37996
AS: 45145
AS: 131479
AS: 132873
AS: 133060
IP: 103.25.112.0/23
IP: 103.241.200.0/22
IP: 119.252.64.0/19
IP: 122.202.64.0/20
IP: 202.74.160.0/19
IP: 202.191.4.0/22
IP: 203.7.224.0/23
IP: 203.19.12.0/24
IP: 203.22.25.0/24
IP: 203.23.208.0/20
IP: 203.24.54.0/24
IP: 203.25.26.0/23
IP: 203.30.19.0/24
IP: 203.30.34.0/24
IP: 203.31.0.0/24
IP: 203.32.124.0/22
IP: 203.34.30.0/23
IP: 203.55.198.0/24
IP: 203.56.98.0/24
IP: 203.124.176.0/20
IP: 203.196.92.0/22
IP: 203.209.160.0/20
IP: 2401:400::/30
IP: 2403:3400::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126260 (0x1ed34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 24 14:41:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91AF59C/serialNumber=C1296FFAD34F29F04E0EFAD5D9244C02A7D87D8D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:cf:88:80:b4:c2:ab:dc:69:c8:6e:f4:0f:77:
42:0f:d7:db:a6:68:bd:a7:4c:23:13:a2:1b:eb:00:
6e:1d:45:05:05:05:bc:e7:26:a6:27:80:a8:65:01:
b0:bb:cd:ac:28:d9:76:89:09:2e:f8:bc:c0:27:b0:
d6:65:35:41:71:59:75:b3:d8:5d:06:38:d0:ba:96:
2b:ad:35:3a:f5:50:9e:37:18:64:ae:1f:2c:ce:9f:
20:ca:fe:10:a8:b7:67:60:a8:50:11:8d:27:71:b0:
70:c3:53:7a:4e:3d:77:b3:29:4d:a7:45:4e:6e:11:
aa:62:0c:c6:fe:bc:7f:be:cb:83:e2:5f:e5:f5:1c:
1b:90:a1:ed:98:22:7b:9b:3b:e4:3a:7e:ae:28:7d:
e6:eb:1a:c3:c7:63:af:ba:2b:de:8e:44:63:11:7c:
c8:2a:bd:2c:e8:cb:9c:1e:9d:80:f2:c4:44:45:33:
e1:14:a5:3a:c5:cb:1a:1a:9c:ae:5c:8d:5d:fb:4f:
c1:8d:7b:ef:c1:3f:eb:36:0d:81:b3:6e:f0:6c:f8:
7f:39:b9:75:28:4a:6f:8a:6b:4c:55:18:95:a1:d0:
da:cd:83:69:dd:04:c6:2c:c8:6f:88:f3:b6:82:a7:
f5:ee:f1:33:ef:58:31:e5:13:c1:81:db:94:50:5b:
21:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:29:6F:FA:D3:4F:29:F0:4E:0E:FA:D5:D9:24:4C:02:A7:D8:7D:8D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AF59C/735DC4D61D8D11E29A7543EB08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AF59C/735DC4D61D8D11E29A7543EB08B02CD2/wSlv-tNPKfBODvrV2SRMAqfYfY0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
7604
18195
37996
45145
131479
132873
133060
sbgp-ipAddrBlock: critical
IPv4:
103.25.112.0/23
103.241.200.0/22
119.252.64.0/19
122.202.64.0/20
202.74.160.0/19
202.191.4.0/22
203.7.224.0/23
203.19.12.0/24
203.22.25.0/24
203.23.208.0/20
203.24.54.0/24
203.25.26.0/23
203.30.19.0/24
203.30.34.0/24
203.31.0.0/24
203.32.124.0/22
203.34.30.0/23
203.55.198.0/24
203.56.98.0/24
203.124.176.0/20
203.196.92.0/22
203.209.160.0/20
IPv6:
2401:400::/30
2403:3400::/32
Signature Algorithm: sha256WithRSAEncryption
31:4c:6c:ac:e9:69:14:f9:df:2f:a0:c0:b2:13:20:1a:03:af:
f5:98:b7:69:6b:57:9b:c1:9e:4d:56:8f:db:e2:6c:7e:ff:76:
b0:79:64:df:b7:ba:10:26:dc:66:0c:0d:73:b8:1e:54:4a:03:
03:36:8d:21:c7:36:80:fb:98:3c:d8:cc:ca:b3:76:d8:4c:9f:
d6:84:77:2a:5f:b6:3c:32:b6:dc:8c:1a:2c:c1:ce:22:62:97:
c9:9f:c4:b6:3c:d0:bf:61:78:7c:d9:b0:39:53:1e:f0:d8:77:
ee:04:fe:e5:92:e7:7f:3d:24:9b:88:87:c3:57:78:41:23:bc:
aa:fa:1d:85:85:51:3a:92:a9:7c:92:b2:73:ac:20:32:a9:6a:
07:a4:50:d8:63:d2:34:ab:81:c2:87:e3:6f:f6:85:15:78:66:
0a:d6:9c:c1:de:7c:d9:b8:c2:d5:c3:29:2d:d9:50:ac:90:1c:
25:d7:bb:6e:0e:f0:dc:5c:82:e8:e8:2e:3e:76:35:86:a4:14:
43:aa:be:99:4e:2e:29:04:4d:9d:13:61:2b:88:a8:8c:0f:03:
3f:bd:23:10:a0:b6:8e:dc:8e:d5:3f:30:7b:92:e5:5f:d4:57:
81:df:f8:69:2e:c0:b5:72:57:77:17:13:9f:83:a2:32:4a:64:
b0:6e:40:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 21:05:02 2024 by rpki-client on console-fra.rpki-client.org