Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3RGLuzSfLJtA3Zu3GlthxkvbPhE.cer
File: 3RGLuzSfLJtA3Zu3GlthxkvbPhE.cer (raw, json)
Hash identifier: VLMPctuU+MuUV1/dP31bES2KZuWg9FhgImxIAT3CUFk=
Subject key identifier: DD:11:8B:BB:34:9F:2C:9B:40:DD:9B:B7:1A:5B:61:C6:4B:DB:3E:11
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D9E7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/3RGLuzSfLJtA3Zu3GlthxkvbPhE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 22 Jan 2024 20:52:21 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 133932
IP: 103.44.223.0/24
IP: 103.76.3.0/24
IP: 103.76.28.0/23
IP: 116.206.84.0/22
IP: 2402:1040::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121319 (0x1d9e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 22 20:52:21 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91D76BE/serialNumber=DD118BBB349F2C9B40DD9BB71A5B61C64BDB3E11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:38:90:38:86:44:f3:20:17:29:62:65:47:8c:
a6:c1:b6:0f:35:49:bc:fc:93:94:76:cf:c1:04:11:
62:1c:07:f9:cb:1f:57:67:df:67:61:9f:6b:42:85:
58:39:09:62:d9:3b:e3:d7:6f:16:ef:ab:92:f4:d7:
d7:27:db:ab:97:e3:01:33:35:37:7f:85:0e:a6:50:
88:10:fa:5a:41:c8:45:aa:6e:08:8d:90:d0:ae:0c:
86:3b:c0:9c:bb:5d:e2:09:76:2c:e0:7f:b2:ac:e6:
4e:21:92:a8:79:fe:ec:e9:79:7b:82:66:36:06:01:
d9:1a:d1:96:00:2e:7b:a0:1e:53:25:27:15:52:5c:
ff:1f:0c:33:99:2c:e1:a8:7d:c5:93:c4:17:1d:c8:
25:41:a6:6c:3b:73:d5:8c:e7:0a:f7:fe:5a:f9:e1:
ac:a3:27:58:5b:3d:3f:a0:ce:97:43:05:e6:01:59:
ab:ca:fa:47:56:33:2f:0c:35:57:7c:29:4d:1c:db:
98:47:46:8e:83:6c:94:46:b0:a6:43:ae:38:02:93:
46:51:71:66:78:3a:65:b9:54:f1:13:60:26:66:fc:
4a:17:64:5c:1b:81:2d:fe:53:67:58:bb:f0:1b:ce:
3e:b9:ab:05:d7:16:c0:94:74:49:c5:53:42:74:92:
8f:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:11:8B:BB:34:9F:2C:9B:40:DD:9B:B7:1A:5B:61:C6:4B:DB:3E:11
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/3RGLuzSfLJtA3Zu3GlthxkvbPhE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133932
sbgp-ipAddrBlock: critical
IPv4:
103.44.223.0/24
103.76.3.0/24
103.76.28.0/23
116.206.84.0/22
IPv6:
2402:1040::/32
Signature Algorithm: sha256WithRSAEncryption
8a:5e:41:7d:d1:73:93:19:72:01:98:90:97:92:99:4c:8d:80:
d7:51:41:9b:1b:e0:df:6f:76:35:03:57:b3:34:be:07:75:03:
24:d8:41:85:a8:13:e7:bd:c9:da:aa:ca:80:d8:aa:64:40:bb:
b5:c5:a3:ed:5e:69:95:1d:63:51:ce:22:2d:bc:7b:a4:89:48:
68:81:bb:ce:66:ae:48:5b:ff:dd:08:9d:6f:54:8f:68:1f:7c:
96:16:13:54:cc:99:d9:77:34:d9:7d:85:2e:32:92:d1:14:e2:
f9:82:2b:89:ad:4d:18:49:d5:4d:03:43:85:44:22:eb:7b:97:
91:33:cb:71:4f:b3:e6:e3:b5:c9:9d:06:39:6d:c0:e4:78:e8:
24:86:2f:f7:f6:49:06:14:98:6b:d7:a2:11:5b:77:d6:12:95:
34:70:1c:70:99:2a:c7:6a:4c:80:26:45:f9:51:3f:d1:27:6a:
c0:9f:b9:06:52:b3:f9:6a:8a:60:1e:94:f5:e0:02:e2:28:63:
95:27:29:f6:99:cf:da:14:4f:ef:0c:53:65:33:15:00:46:80:
91:c7:c6:97:df:22:10:bf:e2:41:b5:a1:a9:f9:71:e9:5a:c8:
4f:44:d7:7d:db:35:14:2d:05:34:fb:46:e9:af:f3:82:6f:9d:
c1:2b:8d:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 04:07:24 2024 by rpki-client on console-ams.rpki-client.org