Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/62gLfeTEobRDq9eZuvUkndSw6pA.cer
File: 62gLfeTEobRDq9eZuvUkndSw6pA.cer (raw, json)
Hash identifier: 9RFQZzM6qrEIK20V+YVElg53Q0qYsk2wqUzw0eUa2ME=
Subject key identifier: EB:68:0B:7D:E4:C4:A1:B4:43:AB:D7:99:BA:F5:24:9D:D4:B0:EA:90
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021D74
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DC866/6A0DF9BA1D9611E2B7B5057F08B02CD2/62gLfeTEobRDq9eZuvUkndSw6pA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DC866/6A0DF9BA1D9611E2B7B5057F08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 25 Nov 2024 20:23:54 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 38896
AS: 58425
IP: 103.2.144.0/22
IP: 121.58.184.0/21
IP: 122.129.96.0 -- 122.129.119.255
IP: 2402:8600::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138612 (0x21d74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 25 20:23:54 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91DC866/serialNumber=EB680B7DE4C4A1B443ABD799BAF5249DD4B0EA90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:51:3b:de:d6:a0:02:4b:ff:7b:ec:46:18:6f:
13:83:28:cc:87:3f:d5:04:54:6f:a3:b6:65:c1:1c:
3f:fa:bf:33:de:9a:1a:2b:fd:87:2c:a6:e2:33:8f:
27:11:84:da:0a:9d:45:27:f7:c2:42:0b:e9:8a:bf:
1f:22:cf:43:e1:f7:73:b5:39:0e:9a:09:0a:78:63:
cf:ae:af:d6:8e:ae:2c:7f:a8:03:a2:1f:53:b1:71:
18:0d:c6:73:c5:c3:52:bd:8f:93:aa:48:ad:96:ed:
84:fb:be:ba:74:ed:ef:5b:cc:d3:60:9b:c4:7a:74:
18:54:62:fc:0e:b2:3f:f8:c2:86:9f:1e:e0:d8:d0:
48:d1:fe:49:cc:91:ad:d3:13:63:84:9e:c1:9b:f3:
29:35:47:35:6f:13:fa:ad:11:34:4a:b9:df:90:2c:
e6:97:49:59:64:49:10:d9:eb:e8:70:87:45:d0:77:
c4:77:14:f3:55:1f:0f:73:dd:0f:6b:75:e5:a5:87:
b3:2d:7b:8d:6f:75:cb:ca:3a:f4:f2:a5:72:e5:08:
81:99:92:1b:15:ba:88:78:1e:85:06:06:7b:43:db:
7c:07:b1:8c:30:54:91:d7:14:18:4b:cf:53:71:60:
c4:63:75:e4:ca:77:11:10:de:f1:8e:53:ea:87:e1:
c6:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:68:0B:7D:E4:C4:A1:B4:43:AB:D7:99:BA:F5:24:9D:D4:B0:EA:90
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DC866/6A0DF9BA1D9611E2B7B5057F08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DC866/6A0DF9BA1D9611E2B7B5057F08B02CD2/62gLfeTEobRDq9eZuvUkndSw6pA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38896
58425
sbgp-ipAddrBlock: critical
IPv4:
103.2.144.0/22
121.58.184.0/21
122.129.96.0-122.129.119.255
IPv6:
2402:8600::/32
Signature Algorithm: sha256WithRSAEncryption
b2:54:1e:7d:d9:d9:17:f7:ee:8f:14:2f:fb:87:1f:12:1c:a3:
56:5f:d2:d0:17:54:a9:47:04:47:e3:fc:52:61:fc:71:ea:b6:
61:4b:34:86:e9:ec:2d:44:b2:93:ce:1c:6d:fe:48:7a:18:e1:
f5:2c:fb:57:ce:be:bb:8e:bc:f5:30:eb:a3:81:42:5e:06:c3:
d9:97:b0:21:b5:37:ac:a1:1b:4a:26:d0:26:a4:68:1d:8b:df:
08:23:b4:bd:61:b3:8f:9b:c0:64:e8:09:a4:29:2e:e9:4f:0c:
07:f4:7d:f2:56:e3:5b:8d:a7:1f:ec:93:5b:8f:ad:a0:86:48:
d8:02:f4:3a:dc:18:f0:63:76:b1:c0:25:ef:b4:86:3b:8b:b0:
25:91:75:d5:a1:89:06:e7:46:e7:5e:43:84:4a:b3:fa:9a:21:
f6:40:1d:fa:d0:39:59:f5:1f:d0:51:31:83:17:d8:b5:87:13:
bc:9d:6b:b0:9a:34:0e:cc:de:48:7d:ab:32:40:14:21:fb:a5:
9e:06:00:38:d8:14:47:f1:f0:ae:1d:02:d7:aa:ea:0e:3c:d4:
00:88:45:12:f6:4c:3f:97:55:36:4a:fd:34:50:cb:f4:f5:00:
eb:bc:28:9f:00:09:eb:d6:2c:1d:33:e9:48:ee:61:5d:1f:03:
d2:63:6b:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 04:03:15 2024 by rpki-client on console-fra.rpki-client.org