Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5r9G5TDfkimPrAMq-8mECcRDBDk.cer
File: 5r9G5TDfkimPrAMq-8mECcRDBDk.cer (raw, json)
Hash identifier: Otpsjb1P7EOaFdbxKnvq3OUIfTzMXKjKeUORLhSKC10=
Subject key identifier: E6:BF:46:E5:30:DF:92:29:8F:AC:03:2A:FB:C9:84:09:C4:43:04:39
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021805
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91527F9/6ED2EBAA1D9A11E2AE93AD8708B02CD2/5r9G5TDfkimPrAMq-8mECcRDBDk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91527F9/6ED2EBAA1D9A11E2AE93AD8708B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 01 Nov 2024 20:39:26 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 136415
IP: 110.35.88.0/21
IP: 113.20.64.0/19
IP: 2401:e600::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 11:16:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137221 (0x21805)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 1 20:39:26 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91527F9/serialNumber=E6BF46E530DF92298FAC032AFBC98409C4430439
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:5e:6c:11:8c:73:6d:cc:7d:4f:8f:fd:96:09:
ec:8a:5f:17:8a:7d:1e:83:25:70:75:00:50:d1:6d:
fb:bc:a2:66:22:ae:42:e0:d1:b3:3b:21:37:3c:a0:
1d:61:52:89:00:1f:e5:fa:5f:2b:56:32:e3:c8:23:
1b:aa:88:58:8b:d0:2d:7a:43:ca:16:95:84:d3:bb:
bd:12:5c:23:da:f9:74:38:70:2b:0b:88:23:1d:f3:
fa:2e:93:12:cc:ac:73:61:ca:e3:cb:fd:31:c6:7d:
4f:15:2a:8f:2b:58:fb:fa:91:19:2d:b4:7c:50:ac:
cd:58:37:07:2f:06:7e:5d:a0:a1:54:10:49:f8:64:
69:e3:f4:cd:0a:d4:c8:63:8c:14:e9:1d:36:78:c8:
f8:3a:35:37:a2:e6:9d:f6:e1:f8:b8:2e:6a:93:12:
18:87:8c:80:77:ba:b7:eb:5b:99:c7:46:c9:26:45:
f1:ef:f8:cd:3f:23:ec:f0:97:0b:dc:c9:a6:40:32:
1c:76:e8:16:23:03:f6:46:84:c7:f8:5b:87:34:34:
a2:eb:fe:6a:dd:2d:ae:9e:c5:95:8a:65:1e:fa:4b:
96:d0:b2:29:75:00:5f:73:1d:3f:71:e8:45:1e:b8:
dd:23:21:92:ea:15:18:a0:1e:72:59:d9:62:e4:fb:
0f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:BF:46:E5:30:DF:92:29:8F:AC:03:2A:FB:C9:84:09:C4:43:04:39
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91527F9/6ED2EBAA1D9A11E2AE93AD8708B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91527F9/6ED2EBAA1D9A11E2AE93AD8708B02CD2/5r9G5TDfkimPrAMq-8mECcRDBDk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136415
sbgp-ipAddrBlock: critical
IPv4:
110.35.88.0/21
113.20.64.0/19
IPv6:
2401:e600::/32
Signature Algorithm: sha256WithRSAEncryption
8a:f0:3f:1c:20:9b:1c:89:6a:6d:a5:48:b8:36:6c:cd:e1:26:
ca:d0:55:b9:4f:1e:2a:1b:9f:c1:f6:46:cb:f0:f5:c2:e7:c6:
f4:a6:f0:6b:a7:44:fc:7d:bc:66:33:25:aa:c7:c3:4a:de:fb:
8d:5d:4e:41:5c:bc:8d:11:be:27:57:c9:04:51:81:40:c5:64:
e3:5b:0e:68:99:a6:db:11:e6:d1:7e:36:06:e5:b0:34:99:5c:
56:74:6b:bf:26:dd:9b:61:f3:5c:11:e0:e0:c4:47:30:ee:9d:
0c:01:e5:13:a8:cf:56:7a:e2:aa:2b:3a:de:e3:4f:c3:eb:de:
e7:44:3a:27:13:80:5d:03:6c:5d:9c:1d:84:12:97:5f:c7:bd:
ce:63:54:0c:d6:55:a2:76:bb:e9:88:e1:e9:da:c1:0b:7a:48:
7a:4c:8f:77:fb:3f:be:a1:0b:6d:78:7b:63:40:6b:bb:a3:35:
12:a1:2d:52:3f:70:d9:ef:7f:44:83:e8:56:4e:21:ab:5a:6f:
84:f3:98:d5:c1:ff:82:54:64:d4:7b:47:97:e3:a5:6a:60:6d:
f8:e6:b7:c6:f5:cb:4f:05:00:1e:b2:b3:7b:a9:7f:1d:e1:47:
23:fd:e3:79:22:cf:f7:2e:0e:b0:d6:96:45:e1:da:c0:0d:2b:
c2:dc:72:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:37:11 2024 by rpki-client on console-ams.rpki-client.org