Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer
File: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer (raw, json)
Hash identifier: Afas95T4OQ6a43rZrN6JRRJS3mVQqQ6Mcpy8TLWdsCs=
Subject key identifier: D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01ED05
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 23 Apr 2024 07:29:40 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 137914
IP: 202.27.128.0/23
IP: 202.50.180.0/22
IP: 203.26.160.0/21
IP: 2001:df6:ee80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126213 (0x1ed05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 23 07:29:40 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A91C2B93/serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a9:54:51:9e:f9:28:be:ef:8b:fd:76:7e:0a:
d4:7a:03:64:b7:0e:f4:9b:d7:bb:21:f3:72:72:1c:
c7:13:11:8c:b7:e6:ac:fd:a6:b1:3c:93:82:f6:28:
46:05:92:20:61:c8:6b:72:05:87:e9:29:c0:4b:55:
49:12:19:da:b4:4c:d3:6c:15:cc:fc:1c:c5:d4:33:
b5:79:ea:51:81:95:8c:27:1d:98:b1:70:b3:21:f8:
c4:c4:bb:0e:39:47:d1:4d:97:7d:76:0e:04:4b:84:
3d:f4:03:f8:af:cd:a4:df:b3:b8:85:32:63:89:2b:
7d:12:37:e7:df:f9:4b:f3:3c:94:50:8b:4f:3f:08:
1d:9a:36:46:99:b1:01:67:06:b8:2a:33:c6:ab:f8:
9b:58:5e:96:35:92:92:cc:e2:1e:ea:2a:d7:53:da:
53:c5:aa:ec:db:07:aa:ba:10:98:da:95:ad:6e:7d:
f2:26:a9:4b:23:11:03:b3:ce:bc:ee:b0:bd:8a:cf:
aa:a6:85:1d:0e:4f:ac:15:c1:66:8e:ae:75:c0:1c:
36:90:7f:28:21:6e:68:cc:71:68:42:b3:73:d8:fb:
a5:8a:c0:98:f0:fa:3c:26:2e:21:d2:8d:19:80:47:
08:b9:bd:76:a8:e1:93:51:16:8c:a1:97:52:53:ff:
82:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137914
sbgp-ipAddrBlock: critical
IPv4:
202.27.128.0/23
202.50.180.0/22
203.26.160.0/21
IPv6:
2001:df6:ee80::/48
Signature Algorithm: sha256WithRSAEncryption
2b:5c:70:80:0b:7e:c6:86:67:41:0f:88:13:24:1d:5a:90:2a:
34:73:1c:23:62:46:ed:a1:36:bd:1b:53:8b:9c:5f:ea:04:87:
34:2b:b9:e6:5a:93:17:0d:b1:53:36:5f:9b:1f:d6:3e:ec:5a:
75:cb:ac:b7:7a:3b:dc:c8:4e:d5:a8:16:c6:1b:4b:2c:43:3d:
38:e4:ec:b4:39:8e:48:ab:10:bf:21:95:4a:cf:37:98:26:8f:
c0:c0:87:e0:65:bb:ed:57:3c:9e:9e:32:4f:97:c0:31:95:61:
79:75:ae:89:d6:1d:22:ef:52:67:61:49:b2:93:d5:9c:f8:f1:
a0:bb:f1:d1:b7:59:b7:0d:ad:d6:cf:a5:fc:fe:e6:07:85:bb:
89:27:c9:d9:cb:9c:d7:8e:9c:d3:f5:73:da:92:25:a0:62:e5:
7d:0e:3d:d9:7e:4d:f8:d4:2c:d0:6b:48:bb:fd:71:76:9e:83:
46:eb:8a:11:ae:6a:d9:59:44:db:41:e8:47:cf:be:55:b5:b0:
ea:6a:b3:9e:6c:3f:3c:51:ff:40:b3:a4:5b:5d:e2:e4:7e:3b:
05:f3:58:b2:27:13:f3:5f:dd:52:9e:13:53:d1:25:6a:ad:69:
10:7d:63:36:3d:98:48:e0:c6:44:77:d3:97:ce:09:e1:c9:38:
74:55:e9:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:14:57 2024 by rpki-client on console-ams.rpki-client.org