Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Sk5QIVr_QOqoSwtyVKu61SGsdg.cer
File: 8Sk5QIVr_QOqoSwtyVKu61SGsdg.cer (raw, json)
Hash identifier: oefQ1BPYOBNHSbnAzMbmwE+lqb2WKuTOEua2/BjbiEE=
Subject key identifier: F1:29:39:40:85:6B:FD:03:AA:A1:2C:2D:C9:52:AE:EB:54:86:B1:D8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DCF8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C7633/81DB5F821D7F11EB8AECD529C4F9AE02/8Sk5QIVr_QOqoSwtyVKu61SGsdg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C7633/81DB5F821D7F11EB8AECD529C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 02 Feb 2024 04:31:19 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 133579
IP: 203.100.208.0/20
IP: 203.160.112.0/20
IP: 2401:2e80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122104 (0x1dcf8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 2 04:31:19 2024 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91C7633/serialNumber=F1293940856BFD03AAA12C2DC952AEEB5486B1D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:80:8d:78:f9:8f:26:c8:66:91:08:b3:cb:ed:
16:7d:1c:93:aa:a3:f1:90:0e:e0:0b:b8:32:7d:eb:
f9:91:44:d7:7e:7b:07:c1:4e:00:0e:a4:6a:bc:b7:
4f:7b:0d:2a:21:5c:d8:61:fe:a9:29:50:97:0f:5f:
d6:4e:e6:d2:de:ad:f0:75:00:82:cf:25:cb:fe:f2:
d5:27:db:e1:04:6d:22:39:c0:83:da:ec:f5:a0:84:
31:e3:dd:58:fb:ab:cb:40:e3:16:da:8e:d9:d7:e9:
ed:c4:f3:82:0b:c3:86:3c:7b:c9:5b:74:9e:87:0f:
0e:ec:75:6b:37:3f:86:6d:45:de:46:c3:3d:4b:79:
cb:39:c2:39:8e:84:01:2c:2c:4a:2f:e5:ae:c7:78:
7a:19:ac:a2:0b:98:82:02:28:94:7e:f5:bd:cc:88:
30:8f:d1:08:d1:b4:c4:f3:a7:dd:5d:4d:f3:6a:16:
26:00:ca:9c:d4:93:3b:19:79:67:d1:2a:a5:bc:38:
65:fc:9a:04:6d:df:ea:00:a9:2d:af:ec:4d:9e:2b:
e8:47:e9:d8:55:1e:0d:e1:fe:fd:36:92:cb:a0:10:
cb:a9:f2:ef:b7:5b:77:a2:ff:00:b5:0f:d8:98:ef:
3c:e8:15:27:be:39:df:90:ef:86:e4:93:0f:10:5b:
1b:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:29:39:40:85:6B:FD:03:AA:A1:2C:2D:C9:52:AE:EB:54:86:B1:D8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C7633/81DB5F821D7F11EB8AECD529C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C7633/81DB5F821D7F11EB8AECD529C4F9AE02/8Sk5QIVr_QOqoSwtyVKu61SGsdg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133579
sbgp-ipAddrBlock: critical
IPv4:
203.100.208.0/20
203.160.112.0/20
IPv6:
2401:2e80::/32
Signature Algorithm: sha256WithRSAEncryption
04:9a:80:ab:f1:32:d0:5e:6e:50:dd:0d:ed:7f:9e:59:bd:42:
0d:5e:d5:ba:2d:a9:1b:12:5b:45:5d:58:d4:51:47:93:3a:8b:
e5:d1:c8:f6:9c:40:aa:49:60:f7:69:75:92:1d:ad:40:29:48:
6d:0d:00:50:5b:24:5c:d7:02:cf:d7:a6:e7:ca:4d:bf:13:3b:
fd:fe:98:5e:a3:e6:7a:ff:7c:ba:67:a4:0f:7e:87:4f:71:f0:
25:bf:27:56:90:6e:f5:3f:7d:39:fd:66:7a:e6:84:c5:ff:ba:
0a:fb:78:75:5a:e3:ea:93:74:ab:6b:af:a5:56:44:ad:8d:87:
da:96:3c:be:82:d3:20:e0:26:74:24:3e:e0:46:df:55:91:ef:
2e:cc:70:9f:6f:bd:ef:44:b2:50:4a:89:0b:02:bb:3c:f0:d5:
2c:62:37:ad:83:58:9d:d0:3d:fe:9d:a4:8a:4b:fe:33:41:ed:
30:5b:3e:af:c3:1e:25:e9:61:5e:f7:20:06:ef:6c:d5:2a:fa:
25:a5:39:6d:98:ad:e8:7e:c7:5b:7e:78:7d:74:47:92:7b:0f:
01:00:15:26:07:0f:99:5e:a2:dd:2b:f0:54:91:50:b5:ac:41:
a4:bc:18:58:8c:20:06:47:c1:4d:80:43:01:76:52:f4:1e:fa:
41:d5:51:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:02:44 2024 by rpki-client on console-ams.rpki-client.org