Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75_jgdo9Qut8Tg0EnMrnIo4o-0s.cer
File: 75_jgdo9Qut8Tg0EnMrnIo4o-0s.cer (raw, json)
Hash identifier: bn5WWxIZy9PORbCevsg7dSE1VjKa2judAwD3cCcOIOk=
Subject key identifier: EF:9F:E3:81:DA:3D:42:EB:7C:4E:0D:04:9C:CA:E7:22:8E:28:FB:4B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D0CD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/75_jgdo9Qut8Tg0EnMrnIo4o-0s.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 08 Dec 2023 21:49:21 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 133892
IP: 43.224.148.0/22
IP: 103.43.172.0/22
IP: 2401:ecc0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Apr 2024 15:38:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118989 (0x1d0cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 8 21:49:21 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91F3C87/serialNumber=EF9FE381DA3D42EB7C4E0D049CCAE7228E28FB4B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c0:f7:a8:85:c7:7e:63:e7:b3:d9:03:e6:67:
21:fb:f7:f6:de:30:fa:b5:36:fe:0f:6c:87:c2:91:
f7:47:6d:84:05:5c:1b:b2:ed:ee:fd:fa:15:55:65:
ec:98:a5:43:c1:27:16:6a:3b:92:c1:11:87:63:21:
61:1d:45:3e:e0:13:b0:db:25:77:19:a7:8c:4d:c6:
16:68:c2:93:85:0a:5e:a1:5f:d3:9a:a5:74:e5:ed:
94:c7:92:e3:62:57:e3:a3:72:68:9d:51:86:56:a2:
f7:6a:91:07:d4:10:9c:8e:0a:81:15:ab:20:84:39:
2d:47:0c:01:7c:3f:88:02:e2:f2:08:44:7e:9c:33:
67:4c:fa:bf:7b:d5:3c:ad:57:1c:45:02:fe:e0:a5:
78:61:bc:ad:ec:1f:69:74:df:a4:aa:47:34:cd:4c:
3b:cf:5b:12:52:05:8b:51:dd:7d:e7:36:83:5b:2d:
2e:6c:83:86:60:41:18:bc:ba:e3:3f:e9:fc:33:10:
c2:6e:2d:31:91:a8:14:9b:4c:fd:d5:c9:cd:3e:c2:
99:21:54:62:85:51:33:34:75:47:38:79:9e:3f:44:
29:2b:7e:ed:2f:d3:60:a9:c7:4a:b2:0a:98:40:ff:
9c:f5:94:c1:57:7e:b4:32:b2:53:12:1b:98:ec:19:
62:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:9F:E3:81:DA:3D:42:EB:7C:4E:0D:04:9C:CA:E7:22:8E:28:FB:4B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F3C87/E782854EEF0B11ED81DD2D72C4F9AE02/75_jgdo9Qut8Tg0EnMrnIo4o-0s.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133892
sbgp-ipAddrBlock: critical
IPv4:
43.224.148.0/22
103.43.172.0/22
IPv6:
2401:ecc0::/32
Signature Algorithm: sha256WithRSAEncryption
27:a1:77:c6:05:9d:fb:38:dd:7a:d9:99:29:71:67:dd:30:80:
7e:bd:51:5e:1b:4f:e9:1c:6d:21:ef:a8:a5:22:7b:ea:02:57:
2a:87:0d:05:53:42:74:9d:7b:b0:c3:d7:21:32:c9:6c:e5:a2:
ab:d9:c7:67:cf:a6:e9:b4:79:64:77:3d:b7:98:34:cf:8c:31:
32:51:ac:21:2d:a4:9d:dd:7d:e6:d1:ed:1a:48:f9:27:1b:19:
85:57:cc:1e:b4:95:a1:37:72:60:cd:ab:3c:2c:66:76:d7:1d:
16:03:6a:b8:c2:a3:41:b1:9b:87:e6:27:17:ea:17:9a:8a:13:
3f:db:23:37:51:07:11:3d:3c:2b:ce:2a:ae:25:bd:8c:8d:59:
c6:9d:82:91:68:6c:1a:ae:ec:75:df:3f:13:db:78:fa:da:a5:
70:5d:65:d7:77:f1:72:7f:4b:9e:b2:ca:0d:ac:70:8e:12:4e:
8f:f3:58:58:1f:83:b0:18:dd:10:bf:3c:f4:c4:ec:80:24:67:
79:f0:27:61:52:34:2c:f2:d7:e8:b7:94:14:f5:62:d5:7c:44:
4f:45:64:52:48:8e:95:ff:11:84:73:54:e1:4b:2d:80:98:51:
57:67:6c:0a:40:16:b0:4f:c4:bc:96:35:ee:4a:50:57:9e:03:
f2:80:8e:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 16:11:24 2024 by rpki-client on console-fra.rpki-client.org