Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/30Bp8kbp_ql7Cr46X-x3jlOTF5M.cer
File: 30Bp8kbp_ql7Cr46X-x3jlOTF5M.cer (raw, json)
Hash identifier: uRcl2qXYeZKXIaegrPrvVDkmUzR4M2nsooEA2RII1No=
Subject key identifier: DF:40:69:F2:46:E9:FE:A9:7B:0A:BE:3A:5F:EC:77:8E:53:93:17:93
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B074
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9118479/7C7BBF081D9E11E2A87E7B8E08B02CD2/30Bp8kbp_ql7Cr46X-x3jlOTF5M.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9118479/7C7BBF081D9E11E2A87E7B8E08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 17 Jul 2023 12:31:59 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 24228
AS: 45838
AS: 55796
AS: 58618
IP: 43.227.124.0/22
IP: 103.11.8.0/22
IP: 103.46.228.0/22
IP: 103.235.154.0/24
IP: 103.235.204.0/23
IP: 103.250.8.0/24
IP: 122.202.0.0/20
IP: 163.53.68.0/22
IP: 202.83.176.0/21
IP: 202.138.64.0/20
IP: 2001:df0:9::/48
IP: 2400:6c00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 19:43:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110708 (0x1b074)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 17 12:31:59 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A9118479/serialNumber=DF4069F246E9FEA97B0ABE3A5FEC778E53931793
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:af:73:2f:94:a9:79:58:0e:e1:77:aa:a4:ab:
d0:a1:51:10:6a:ed:1d:32:f9:5e:c9:f3:75:7d:e5:
ab:4f:42:9c:73:58:c7:1e:5f:60:9f:62:89:96:c2:
97:d3:16:ed:57:51:99:2f:24:73:99:d7:fa:1d:21:
a9:6c:27:46:58:bf:0c:bc:29:66:e8:eb:0c:53:d9:
4f:0b:c0:68:6d:9e:1e:3f:df:15:cd:d0:3b:1f:b3:
6f:46:ee:46:d3:45:00:35:60:76:01:e3:46:a5:1c:
40:63:0b:90:77:17:25:d9:d8:1d:0d:80:ff:06:57:
96:2a:eb:26:f9:41:9b:62:c8:aa:a0:b3:45:dc:da:
f2:49:26:cb:c9:1a:ef:50:c9:8c:c0:38:3a:14:02:
af:aa:cd:b6:0b:92:44:29:0d:22:8d:ea:05:99:e1:
1c:87:94:38:c3:8c:f2:5b:0a:6d:07:d1:e0:cb:a2:
df:09:a8:46:13:02:d2:03:02:61:d9:9e:87:10:1f:
25:2a:b8:4d:8b:d1:1f:98:01:34:cc:92:75:8b:58:
02:c9:bf:6b:ed:24:a5:77:9a:90:4b:7c:fd:ec:fa:
48:53:a4:c6:f5:0e:be:2b:2a:5a:05:25:f5:19:a1:
ae:72:4f:02:40:dc:a6:73:d3:2e:14:06:bf:1d:1b:
8a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:40:69:F2:46:E9:FE:A9:7B:0A:BE:3A:5F:EC:77:8E:53:93:17:93
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9118479/7C7BBF081D9E11E2A87E7B8E08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9118479/7C7BBF081D9E11E2A87E7B8E08B02CD2/30Bp8kbp_ql7Cr46X-x3jlOTF5M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24228
45838
55796
58618
sbgp-ipAddrBlock: critical
IPv4:
43.227.124.0/22
103.11.8.0/22
103.46.228.0/22
103.235.154.0/24
103.235.204.0/23
103.250.8.0/24
122.202.0.0/20
163.53.68.0/22
202.83.176.0/21
202.138.64.0/20
IPv6:
2001:df0:9::/48
2400:6c00::/32
Signature Algorithm: sha256WithRSAEncryption
c6:e8:23:ce:ee:f5:19:d0:ab:e1:9b:d7:78:63:01:93:8f:83:
35:e4:80:f2:f9:18:93:49:a5:ff:c3:ff:9f:5d:10:87:5f:08:
ae:75:f9:93:cc:8a:4e:ac:29:c8:06:d7:7a:e0:b4:1f:12:16:
30:62:93:c0:c0:b3:05:2e:46:48:c8:bf:66:1d:11:db:18:e1:
45:4a:0d:2d:c0:f8:e1:8a:65:35:f5:f6:cf:01:48:fe:03:c8:
81:d8:09:98:35:bb:f9:57:fd:53:47:8d:95:24:0e:d7:e8:49:
7a:76:de:37:e0:14:a0:94:de:6a:10:74:99:8e:88:9e:82:a6:
48:c1:28:92:d2:ab:08:ef:f0:11:3b:db:d6:54:3b:2d:32:aa:
ac:7a:2b:f5:64:88:f6:da:95:6f:17:0f:75:82:03:77:b4:6c:
28:b0:71:35:9d:11:76:ce:d8:8b:23:64:47:f6:40:d0:4e:20:
1b:3b:03:4e:31:41:1e:09:56:99:13:c9:01:c6:81:e3:09:92:
6a:0d:ee:21:a7:94:62:79:76:f1:7e:63:e2:c8:53:a6:c6:ae:
06:46:f3:f8:00:55:8d:23:56:52:38:c6:53:07:cc:2e:03:fe:
7c:0d:39:af:50:f7:25:13:6c:40:27:a9:6f:b0:18:d5:e0:9c:
49:80:fb:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 20:27:08 2024 by rpki-client on console-fra.rpki-client.org