Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer
File: -O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer (raw, json)
Hash identifier: sy1HvrG9yWLBNdkk7yHvjtAX6F/i3UMqPl0gmpaAn4w=
Subject key identifier: F8:EE:CE:7D:3C:0C:F5:92:2E:A3:D8:03:55:36:38:82:3F:AE:EA:08
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B66C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 11 Aug 2023 18:09:21 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 56037
IP: 14.102.136.0/21
IP: 43.247.116.0/22
IP: 103.237.160.0/22
IP: 115.42.0.0/19
IP: 122.129.216.0/21
IP: 123.136.32.0/19
IP: 203.18.23.0/24
IP: 203.25.185.0/24
IP: 203.57.0.0/23
IP: 210.56.80.0/20
IP: 2403:1680::/32
IP: 2404:9600::/31
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112236 (0x1b66c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 11 18:09:21 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91B268A/serialNumber=F8EECE7D3C0CF5922EA3D803553638823FAEEA08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:0d:8e:b9:7b:26:3e:17:d2:76:ae:9b:fc:3c:
c0:a8:e0:8d:45:39:22:24:51:70:bd:bc:d0:9a:73:
3b:bf:bb:66:36:7e:59:d8:2e:45:7c:1d:22:e5:72:
47:50:58:3d:a6:b4:0d:e8:8c:d8:fb:9d:6d:d2:80:
79:02:f2:31:fd:65:2c:bd:a8:7f:ee:45:66:cb:d0:
96:d8:d2:b7:4b:d6:7a:3f:fb:85:cf:c1:6c:51:57:
d0:a9:f5:de:a8:a5:21:3e:cc:a0:c3:fc:e8:bc:26:
32:3a:44:95:9b:e6:61:66:e1:c0:1f:b5:06:1c:a1:
6a:8f:95:f6:9c:07:e5:ec:c0:c3:b1:3e:fd:76:5b:
47:37:ac:b6:03:00:60:41:d1:5e:b5:4a:5f:12:21:
d3:b1:fb:96:26:76:06:9b:8b:eb:cd:47:7d:d0:06:
a3:03:4a:95:a9:79:99:38:f9:9d:82:6c:a6:87:1e:
f3:4f:4c:3d:7f:5c:c0:9a:10:d1:ed:ee:35:40:e0:
4f:0b:af:a9:cc:e7:62:50:a1:d8:f5:1e:e7:b2:cd:
64:56:84:b9:d3:44:23:5e:46:51:37:70:b1:35:6d:
98:9c:3f:e3:24:96:37:36:f0:7c:a9:70:51:f4:29:
68:0c:7b:1e:5c:fb:8a:7a:3a:20:6a:9e:d4:57:1d:
12:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:EE:CE:7D:3C:0C:F5:92:2E:A3:D8:03:55:36:38:82:3F:AE:EA:08
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56037
sbgp-ipAddrBlock: critical
IPv4:
14.102.136.0/21
43.247.116.0/22
103.237.160.0/22
115.42.0.0/19
122.129.216.0/21
123.136.32.0/19
203.18.23.0/24
203.25.185.0/24
203.57.0.0/23
210.56.80.0/20
IPv6:
2403:1680::/32
2404:9600::/31
Signature Algorithm: sha256WithRSAEncryption
40:72:29:78:4b:f2:11:4b:16:00:2e:f8:0f:4e:fe:a7:54:b8:
86:ae:e4:bf:d6:2e:6c:1a:d0:e5:57:ec:e3:d8:b6:8f:c4:ea:
b6:0d:77:86:50:84:df:e1:ba:10:fc:08:75:22:ea:84:43:a1:
a5:b3:47:d9:b0:73:40:57:f1:1d:84:ef:e1:cb:c5:94:10:8f:
f7:c5:53:ca:61:53:03:6d:08:5c:e0:3c:fc:45:d4:05:ec:d9:
c2:48:03:f4:fb:05:c1:63:e3:9e:ef:04:3b:02:d7:b4:38:94:
9f:aa:99:30:a0:0f:72:9d:6c:5a:ac:9e:66:3e:01:29:ad:5c:
13:3a:e6:78:ab:1c:8c:9c:19:d4:52:52:62:f6:1c:45:fe:ae:
93:37:89:d7:8f:99:b8:9f:86:f7:20:e5:34:51:27:7f:e3:b2:
df:70:05:cc:6f:71:d6:8a:5d:41:1e:4b:98:9b:16:fa:34:ef:
c7:94:9a:32:b9:aa:7e:eb:ac:8c:36:27:14:6b:b1:07:98:55:
e6:61:79:79:0a:56:92:d7:4f:6a:05:2a:90:3d:6e:df:19:67:
cd:43:3a:d7:36:5e:dc:ae:11:2b:bf:45:6c:6b:5f:2e:bd:2e:
74:fa:4a:94:43:9c:91:28:d2:dd:7c:be:4a:be:87:d8:7a:47:
0d:2b:a0:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:08 2024 by rpki-client on console-fra.rpki-client.org