Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNT7D_AneW6dqhe3VVH9C3fxmC8.cer
File: xNT7D_AneW6dqhe3VVH9C3fxmC8.cer (raw, json)
Hash identifier: xJEt4xltkXxQFN7RET/+QWniYMesKpuK2n6uXD5GRZk=
Subject key identifier: C4:D4:FB:0F:F0:27:79:6E:9D:AA:17:B7:55:51:FD:0B:77:F1:98:2F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01881E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/xNT7D_AneW6dqhe3VVH9C3fxmC8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 30 Jan 2023 17:33:59 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 9451
AS: 9926
AS: 38067
AS: 38555
AS: 58688
IP: 43.231.20.0/22
IP: 45.112.72.0/22
IP: 45.248.152.0/22
IP: 103.14.128.0/22
IP: 103.20.180.0/22
IP: 103.29.124.0/22
IP: 103.217.112.0/22
IP: 103.240.44.0/22
IP: 103.247.44.0/22
IP: 116.12.32.0/21
IP: 120.50.176.0/21
IP: 122.102.32.0/21
IP: 210.1.240.0/20
IP: 2405:6900::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100382 (0x1881e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 30 17:33:59 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A916EB94/serialNumber=C4D4FB0FF027796E9DAA17B75551FD0B77F1982F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:27:63:0d:25:b2:51:f2:af:30:d8:14:0e:a3:
b1:bc:3f:96:b0:57:75:d2:7d:32:1c:94:84:4a:71:
e0:b3:3f:15:8e:75:ac:3b:61:7a:5a:be:7a:2e:9d:
5a:d3:21:05:dd:03:70:21:63:7f:2d:c7:e5:f4:2e:
09:f2:c0:ee:25:7a:4a:4e:38:08:a1:39:47:6e:e2:
1e:36:91:d4:d7:96:99:a3:67:f4:0b:ed:e9:58:3a:
78:99:3c:66:38:d9:78:ad:a3:47:b6:af:6a:3b:57:
35:ea:33:2b:95:40:40:cc:46:29:eb:d8:da:b8:19:
06:47:d0:c0:92:8a:62:87:f7:ad:0f:80:8a:9f:2b:
77:15:a9:cc:d0:41:ab:a8:b9:2a:b7:6a:d5:27:02:
45:0f:8f:4a:b3:45:78:db:51:5f:96:5a:ad:d5:78:
17:2e:99:ef:9c:1a:2c:a7:78:39:d5:22:3e:5b:14:
25:14:9c:b1:9c:fa:74:78:7f:c0:d9:e7:e5:9a:5e:
28:3d:52:a7:0c:39:21:de:2e:14:92:7f:85:b1:8f:
2b:33:9d:8d:b7:71:4f:b1:b7:fc:55:53:29:e8:47:
bc:e1:bc:90:c7:84:37:dc:08:c2:78:3c:b8:7a:72:
cb:b2:5c:94:dc:89:25:94:76:2a:39:82:54:91:04:
83:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:D4:FB:0F:F0:27:79:6E:9D:AA:17:B7:55:51:FD:0B:77:F1:98:2F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/xNT7D_AneW6dqhe3VVH9C3fxmC8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9451
9926
38067
38555
58688
sbgp-ipAddrBlock: critical
IPv4:
43.231.20.0/22
45.112.72.0/22
45.248.152.0/22
103.14.128.0/22
103.20.180.0/22
103.29.124.0/22
103.217.112.0/22
103.240.44.0/22
103.247.44.0/22
116.12.32.0/21
120.50.176.0/21
122.102.32.0/21
210.1.240.0/20
IPv6:
2405:6900::/32
Signature Algorithm: sha256WithRSAEncryption
c0:5d:de:ae:31:11:59:ec:bb:98:9f:6a:7e:04:92:b6:6e:71:
b6:ca:eb:1f:9c:8a:7b:94:e7:2a:8b:84:a2:18:f4:a8:26:d9:
4d:33:76:20:1d:69:06:87:b9:42:46:5e:46:2e:51:4b:37:7d:
25:c5:7c:db:8c:c6:78:f4:f7:4e:6c:6d:81:1c:98:ed:18:49:
32:c2:3d:a8:df:13:e0:04:4b:ef:43:e1:36:fb:97:65:81:89:
2e:42:2c:ab:f0:e2:28:57:26:62:b6:f6:cd:79:94:73:41:59:
09:6d:27:5c:a2:64:18:eb:0d:65:77:41:05:3e:31:ea:6b:e3:
d6:11:ef:79:2f:e9:90:60:a4:c6:39:38:79:6d:8f:1c:68:0b:
66:70:a3:ba:75:f4:a0:94:db:ff:f3:d0:37:ce:bb:f9:96:cf:
9a:52:e1:e0:91:c4:93:a9:e9:a1:9a:fc:bd:fc:61:f5:58:73:
ea:6a:43:c9:00:72:d2:f7:5b:ba:2f:75:8b:bf:e1:3e:c9:6d:
3d:06:2a:50:30:8f:0f:3f:0b:5e:df:7c:f3:6a:ed:24:f7:3e:
af:db:b7:6b:24:04:66:df:1b:ec:b0:b8:58:1d:5e:cb:be:fb:
6e:57:25:37:d2:79:54:c0:41:03:01:ba:80:64:54:bd:24:05:
9b:04:f8:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 03:38:46 2024 by rpki-client on console-ams.rpki-client.org