Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer
File: -o32EYRRvVM4cqyjdiK_c77RlEE.cer (raw, json)
Hash identifier: EFWgxDbk9prjvjvRgeFQtoTdiCFpW5kWxF5fAij+SEo=
Subject key identifier: FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02032E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 30 Jul 2024 14:17:49 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 149874
IP: 103.189.240.0/23
IP: 2400:89a0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131886 (0x2032e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 30 14:17:49 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A9135450/serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:42:a4:50:db:34:11:a6:7e:38:58:15:56:71:
d9:ef:c4:32:5b:e1:79:35:2a:e5:de:29:2f:f4:c8:
b2:d1:f7:c9:0b:95:be:c1:f6:c6:bb:e7:69:25:2c:
14:e6:1c:68:5b:5a:25:c3:35:ae:20:3e:4e:e6:b8:
99:d9:a7:b4:b3:c5:d8:5e:9b:af:29:10:ab:71:10:
b1:5d:25:64:30:c5:31:5f:8d:f5:73:31:af:24:47:
6e:fa:a4:da:c9:8b:39:be:7e:42:5c:e3:0f:ea:46:
f8:d8:43:6f:05:db:95:ec:2d:1f:fa:29:d2:ab:09:
b5:45:ed:ea:50:aa:07:69:26:3f:b1:bd:84:ac:09:
61:47:8c:eb:69:ea:20:6f:a0:1e:8d:df:65:e7:ce:
a1:3d:8e:af:14:15:0f:1d:02:c1:11:f6:8a:ad:7d:
43:62:03:46:ca:28:e1:95:50:fe:bc:a9:4a:c2:0b:
c8:30:5f:59:a0:69:e0:e1:f9:ad:76:80:35:96:e0:
4c:8d:21:a9:b7:c7:b4:5f:55:ce:1d:a7:b2:aa:90:
34:af:86:6e:98:f4:d7:d8:27:5c:eb:98:45:41:ca:
b7:09:72:2c:4d:5a:5c:85:99:e4:5f:d5:c7:95:79:
17:ad:42:6c:db:60:34:79:03:23:7c:23:6e:2c:0b:
b1:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149874
sbgp-ipAddrBlock: critical
IPv4:
103.189.240.0/23
IPv6:
2400:89a0::/32
Signature Algorithm: sha256WithRSAEncryption
8f:71:32:3e:db:e3:c9:f6:58:e6:db:a7:0b:2a:c8:36:19:d3:
17:a3:c9:64:d0:f7:f1:99:4c:8f:1f:f7:af:33:05:61:e4:e2:
90:2e:f6:62:74:78:cc:48:1f:03:bd:e9:cc:6b:0c:69:f3:7e:
bf:71:4b:52:a2:0d:af:c7:85:c5:c2:3a:24:ff:55:e7:5f:cc:
4e:c5:a7:a7:66:c6:d3:51:d9:d0:2b:eb:68:2a:f2:94:7c:1f:
1e:cc:75:14:57:79:ec:e0:75:79:37:35:e1:51:1c:5b:a1:55:
83:a9:d3:9b:ef:4c:49:f7:4d:fc:ee:39:f4:76:d9:4c:93:23:
1d:70:52:1f:15:1d:6d:1b:92:4c:6d:7b:c6:54:3b:02:62:01:
63:9d:b4:70:5a:dc:0a:96:e4:c0:98:7f:81:60:7d:f0:1d:74:
95:12:86:a5:4d:55:cf:ca:02:d3:63:6e:3e:69:53:e3:d9:37:
7a:13:07:73:f3:12:f1:fb:24:6c:2d:e4:6c:28:d1:c5:06:15:
8c:dc:30:d1:35:35:18:03:7f:88:15:02:07:e4:9a:c2:25:ed:
6e:00:c9:1f:20:1a:f9:3a:9d:9a:6c:ed:81:a3:52:e9:9a:48:
04:d1:51:f8:9c:ac:e1:b4:f4:7c:61:81:55:6f:57:ef:bd:8e:
fb:48:0b:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:07 2024 by rpki-client on console-ams.rpki-client.org