Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer
File: 2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer (raw, json)
Hash identifier: Xf4pQCqsNbt4tpVXaqtlGUT48FtEmq969pqSuFMsc04=
Subject key identifier: DA:BB:16:9D:9E:9D:77:E6:57:6C:01:81:01:25:2C:B0:B4:85:7F:62
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FE20
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 04 Jul 2024 15:46:26 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 132261
IP: 45.113.36.0/22
IP: 103.9.60.0/22
IP: 2402:6c40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130592 (0x1fe20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 4 15:46:26 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A916D687/serialNumber=DABB169D9E9D77E6576C018101252CB0B4857F62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:56:2d:a7:ec:be:cf:d7:46:96:c5:3c:93:f4:
19:42:7d:64:d7:cd:58:fe:f8:a6:01:ad:67:5d:21:
9d:ad:4e:8a:97:e1:bf:4d:30:09:aa:ea:e7:ce:99:
09:f3:fd:38:01:cd:ae:b3:ca:00:f6:a6:30:98:10:
20:4f:41:3a:6b:9a:fa:9d:86:23:bc:0d:d6:ce:19:
59:5b:d5:15:2d:38:18:70:d6:24:7a:0a:07:58:ae:
42:b2:9d:9e:01:a0:10:12:dd:f4:2a:f2:96:9f:64:
9d:d2:c2:39:eb:cf:42:0b:a1:ba:4a:8a:a2:0d:06:
d0:28:60:8f:e3:69:1b:d7:90:9e:d3:8d:89:3b:68:
f0:55:4f:84:c0:e6:a2:16:a5:96:53:ea:38:8f:89:
03:fb:5d:72:4d:06:8e:a2:8a:b3:c3:f8:25:88:e5:
c3:71:5e:ca:2f:3b:02:85:95:a8:0e:04:38:95:e0:
b6:45:d1:a6:3d:44:55:48:ba:bf:7f:c5:46:8a:64:
43:08:cc:22:0b:4d:30:32:c8:8f:15:40:6d:13:a2:
52:04:be:16:64:fb:ad:78:71:89:e3:1c:18:00:96:
d1:36:3e:c8:e0:d7:08:14:e6:19:17:24:60:70:53:
3d:4f:57:80:c8:b4:2c:99:4d:c9:44:ca:6b:83:3d:
ee:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:BB:16:9D:9E:9D:77:E6:57:6C:01:81:01:25:2C:B0:B4:85:7F:62
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132261
sbgp-ipAddrBlock: critical
IPv4:
45.113.36.0/22
103.9.60.0/22
IPv6:
2402:6c40::/32
Signature Algorithm: sha256WithRSAEncryption
5d:9b:af:c7:fb:26:f1:8e:9a:80:99:85:1c:46:16:8e:c3:4f:
88:3b:02:78:b0:4a:0e:c4:17:5f:e7:41:b7:e1:27:6e:81:0e:
31:cc:1b:4d:c6:df:19:73:4f:83:c0:8f:67:ef:13:0b:7e:0f:
eb:a6:9d:88:82:c3:5f:0e:41:38:8b:1a:c5:b0:61:81:83:31:
58:cf:11:32:1a:6b:f7:c2:6f:32:d6:ac:a9:54:f2:f6:28:35:
21:55:09:d7:83:b6:fe:93:53:a0:c5:b1:19:4e:c9:e4:3d:bc:
99:73:63:bf:bd:67:9f:4b:ae:78:86:45:db:7e:3c:31:1d:9f:
91:36:41:08:47:8e:f4:24:ad:21:77:25:96:2b:bd:91:cf:32:
9c:da:43:14:f9:be:af:eb:07:0e:dc:98:ca:05:bf:23:25:c1:
e0:1f:1f:14:cb:a1:2c:a8:04:e7:97:3e:87:c5:c6:4c:52:3c:
65:5a:ce:3b:9f:f9:4a:b2:5a:ed:1a:50:fc:97:70:fe:e3:be:
3f:1c:6b:83:f6:64:cf:1b:14:c5:99:4c:c4:e0:e2:ab:0f:38:
0d:ed:bf:2e:e1:b0:6e:33:b9:dc:6c:70:41:7c:fd:48:8d:55:
b2:0f:2b:ca:d2:df:1a:e1:11:5e:9e:82:62:a1:03:64:97:e3:
92:ce:58:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:24:20 2024 by rpki-client on console-fra.rpki-client.org