Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QaTkaPngEpuvd-dQfLeTZG9UbM.cer
File: 2QaTkaPngEpuvd-dQfLeTZG9UbM.cer (raw, json)
Hash identifier: MW/cSF1z11G3AIkNzf4rMPEB0lUX3X5yAnnVvSLEYf0=
Subject key identifier: D9:06:93:91:A3:E7:80:4A:6E:BD:DF:9D:41:F2:DE:4D:91:BD:51:B3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0214A5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 18 Oct 2024 13:02:16 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 133771
IP: 59.153.56.0/22
IP: 103.198.56.0/22
IP: 116.251.224.0/19
IP: 138.43.32.0/20
IP: 138.43.192.0/20
IP: 2401:d280::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136357 (0x214a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 18 13:02:16 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A9125C22/serialNumber=D9069391A3E7804A6EBDDF9D41F2DE4D91BD51B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d1:91:4a:f2:27:24:77:77:d6:68:ca:9e:f0:
1c:88:f4:a7:27:08:02:ff:40:89:ef:16:ce:00:0f:
7a:9d:34:39:ce:65:13:03:0e:81:71:66:1e:8f:a8:
39:5d:42:e6:f9:c6:c5:1b:be:29:49:b7:75:c9:aa:
5f:53:05:5b:9a:9a:e3:42:2c:39:43:95:28:a7:74:
4a:88:47:c9:85:75:59:4a:5e:eb:49:78:d3:00:d8:
18:a6:ec:7d:1a:8c:f2:ae:23:a3:61:3d:c9:31:7a:
54:64:3c:72:56:45:4e:d7:d3:b7:93:ca:69:5d:8f:
ec:b2:6a:fd:2c:41:4d:ae:65:a0:ab:a8:d4:e0:1a:
f6:b9:d2:49:eb:4b:92:5e:db:0f:4a:0c:22:fc:15:
02:54:76:6f:0d:93:ce:35:be:40:f3:0c:b4:62:27:
ed:26:cc:7d:28:03:07:82:94:b9:b7:60:4e:c6:6f:
fc:27:26:bb:65:96:ce:0f:0f:90:61:39:b0:73:36:
56:81:34:ad:5a:eb:61:5c:5b:3c:0f:6a:2d:31:4a:
85:2e:b9:c3:f6:c9:cb:72:c2:ba:a9:11:d0:6c:d9:
7e:5e:91:c2:58:56:ec:53:31:62:83:8a:59:51:26:
b9:63:7f:44:d6:f9:46:38:da:db:7f:40:b2:3d:26:
f4:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:06:93:91:A3:E7:80:4A:6E:BD:DF:9D:41:F2:DE:4D:91:BD:51:B3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133771
sbgp-ipAddrBlock: critical
IPv4:
59.153.56.0/22
103.198.56.0/22
116.251.224.0/19
138.43.32.0/20
138.43.192.0/20
IPv6:
2401:d280::/32
Signature Algorithm: sha256WithRSAEncryption
b1:34:de:43:84:68:56:69:57:8a:a0:83:9b:2b:71:e5:57:16:
d1:27:f7:83:ef:f7:1d:32:be:b4:a6:b0:db:70:47:d9:b0:be:
de:24:ff:0e:e8:a6:73:e4:69:71:25:93:ad:61:53:f5:48:7f:
09:64:31:2a:9a:2b:9a:de:9b:8d:0d:22:49:2b:bb:6b:9c:7c:
6c:32:a2:fb:81:a6:ca:57:96:89:29:fc:e6:e3:e7:ea:bd:4d:
97:f0:c2:b5:18:ae:c0:2f:ee:b0:3f:94:41:16:eb:1b:0d:b9:
bf:05:d1:a5:68:f4:6f:c8:a8:03:57:1d:64:b0:9f:c9:76:0f:
42:d6:db:13:e2:e4:2c:d0:72:36:13:c0:b1:1c:7d:08:84:f3:
b3:5a:18:86:26:9e:cf:0e:c6:95:62:17:98:14:65:95:8b:d4:
2e:06:05:e6:9d:c5:49:f8:a3:3d:8d:bd:f4:dd:7d:d3:d2:55:
22:52:03:5f:a3:c1:3f:33:af:b1:cc:d1:55:e8:e8:38:c9:9e:
e4:40:f4:d3:04:35:9e:9b:84:17:21:72:e2:0b:3f:63:18:74:
93:18:68:5a:c0:b3:0a:c5:fb:a2:57:28:76:56:f5:61:f5:1d:
17:1e:fc:98:41:d9:b3:7a:5a:ad:03:81:69:68:94:b2:33:16:
32:f2:c9:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:24:20 2024 by rpki-client on console-fra.rpki-client.org