Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer
File: 2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer (raw, json)
Hash identifier: VrtA8X7JN4td9xcG2lndDojyZxxKpEzV6maFnTgr7RU=
Subject key identifier: D9:90:2C:4E:94:72:C7:AD:50:82:81:2F:A7:D0:77:14:6A:B7:CB:9C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A1B1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 05 May 2023 08:15:35 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 45444
IP: 116.197.144.0/21
IP: 203.28.234.0/24
IP: 2406:a000::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106929 (0x1a1b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 5 08:15:35 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A913664F/serialNumber=D9902C4E9472C7AD5082812FA7D077146AB7CB9C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4a:fa:2d:ff:33:e3:fd:32:4e:2d:e8:0d:4e:
f8:1a:75:9d:73:e0:13:a7:53:42:44:14:fd:1d:5c:
6f:b0:df:bd:af:98:ff:42:46:35:72:81:4b:36:48:
c3:97:99:80:af:4d:c1:d8:7a:53:9c:b1:fa:92:c2:
1b:01:9b:2a:44:40:ab:25:b8:75:db:dd:49:81:40:
6e:68:a3:ea:82:ab:3d:15:89:62:a2:c1:50:21:06:
ed:d1:b6:14:52:be:3e:4f:b3:a9:b0:d5:35:90:c2:
90:69:ca:70:b2:62:4d:2e:13:e7:c6:75:90:2f:f8:
db:0c:78:9d:bf:5b:b1:7c:2d:89:97:7a:1d:68:e0:
69:7b:01:6e:11:ad:8f:0d:68:0e:6b:ea:2b:25:fa:
80:62:c7:10:78:99:88:1c:90:28:dd:1c:d3:3e:50:
6a:1c:ff:4d:48:4d:9d:de:82:78:2b:a2:9f:b3:90:
88:e0:c6:7c:48:42:c3:bf:cc:2a:3e:4d:0b:d8:6b:
b5:f4:31:90:e9:13:e8:af:ba:11:97:9b:4b:88:89:
9d:83:b1:e9:80:77:13:c4:68:4c:7d:ef:04:f3:d7:
85:a6:ff:56:af:95:70:91:97:53:6c:62:1e:c8:ea:
74:b8:6d:bd:c8:c2:79:b4:4a:73:8d:9c:96:57:40:
96:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:90:2C:4E:94:72:C7:AD:50:82:81:2F:A7:D0:77:14:6A:B7:CB:9C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
45444
sbgp-ipAddrBlock: critical
IPv4:
116.197.144.0/21
203.28.234.0/24
IPv6:
2406:a000::/32
Signature Algorithm: sha256WithRSAEncryption
01:ad:1b:2a:1f:d1:b5:40:cf:15:7d:20:ba:8f:a8:ca:53:f5:
8e:6d:87:87:29:60:bf:9c:35:ee:1b:1c:12:28:7d:69:40:b2:
c4:3d:9b:8d:99:ac:3b:c5:45:5d:aa:45:17:94:7a:1c:33:32:
11:e9:21:61:6e:04:45:27:c0:9e:e5:3c:3d:8b:bb:6e:76:38:
b9:7f:d7:c6:6d:8e:27:c0:39:e4:17:e4:cd:cb:b5:96:f7:4f:
29:65:c6:6c:d4:0c:ff:77:35:5a:c2:55:ce:c1:ac:48:c1:74:
2d:dd:75:3c:e4:8d:86:37:fa:95:b5:d8:f5:d1:f6:ff:e0:22:
71:81:15:4b:5a:f6:cc:15:8a:0a:65:5d:a2:26:4d:05:3c:6b:
f8:9d:3a:57:0c:da:12:78:47:2e:57:20:8e:24:df:e4:b8:c7:
5f:a7:c8:bc:6f:56:fe:34:86:a8:ca:cc:9a:75:3e:d6:2d:44:
42:45:82:9d:45:dc:51:53:a3:48:2f:42:d5:41:c0:aa:46:94:
03:c2:68:eb:ba:6e:3f:71:b3:c0:86:fd:62:f3:4b:2f:01:7e:
01:66:56:ee:0b:43:51:95:d5:c4:c3:a6:37:96:8d:4f:06:66:
da:5e:0c:fe:45:af:a3:a8:15:75:cc:ee:51:34:f2:7c:c3:c9:
a5:02:23:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:02:41 2024 by rpki-client on console-ams.rpki-client.org