Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FQft3ll3hSln57yM94Z-SBfX5g.cer
File: 9FQft3ll3hSln57yM94Z-SBfX5g.cer (raw, json)
Hash identifier: m2OXo6gBpaJLoPnotPNFRMK1qnpmIPXTwE3lj9IuojY=
Subject key identifier: F4:54:1F:B7:79:65:DE:14:A5:9F:9E:F2:33:DE:19:F9:20:5F:5F:98
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D32D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9137917/492AB5942A0311EBA69DDD2DC4F9AE02/9FQft3ll3hSln57yM94Z-SBfX5g.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9137917/492AB5942A0311EBA69DDD2DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 20 Dec 2023 13:55:17 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 38230
AS: 134828
AS: 136918
AS: 137490
AS: 137509
AS: 137520
AS: 139308
AS: 141702 -- 141703
AS: 142039
AS: 142289
AS: 142419
AS: 142597 -- 142598
AS: 142632
AS: 142635
AS: 149434 -- 149435
AS: 149845
IP: 103.158.222.0/23
IP: 2001:df5:6880::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 18:35:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119597 (0x1d32d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 20 13:55:17 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A9137917/serialNumber=F4541FB77965DE14A59F9EF233DE19F9205F5F98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:36:5c:13:a0:42:44:65:d7:8a:49:9e:41:e1:
53:0d:38:c7:3c:4e:f4:23:4f:5b:31:12:20:c4:52:
11:bc:28:44:80:22:b1:f1:a2:a2:a2:b1:ad:f9:22:
98:8b:92:45:32:5f:41:88:f6:2d:6d:cd:79:29:2c:
46:63:06:20:f6:d8:be:b8:82:85:17:49:54:f0:de:
60:f7:9b:92:fd:a0:6f:e5:64:ca:da:e1:35:17:d3:
2e:08:41:0f:0a:b9:9c:21:49:3e:3d:c5:e3:f4:4f:
88:1f:16:25:83:0e:a7:78:65:09:1d:45:36:c3:f7:
b3:77:f8:44:08:ae:3e:a5:45:cd:1b:9e:a7:0f:8c:
2d:fc:c3:c4:18:ce:c6:f2:6a:5b:e0:57:60:f0:1f:
c8:d5:82:9d:53:91:4f:7b:7d:11:05:e2:73:c5:5c:
f4:78:fb:50:79:a1:f4:86:3a:10:4a:9e:3e:9f:df:
79:d5:52:3d:c6:6d:46:82:89:63:82:d0:d9:b8:27:
d0:38:d1:ab:17:62:44:f3:8f:4b:d9:b0:63:c0:66:
20:85:34:b6:4c:76:7c:05:3b:99:cd:87:22:1c:77:
30:05:53:02:34:15:fa:aa:03:1c:99:ac:1f:e7:77:
95:f5:6c:8a:0d:74:c2:2f:87:55:f9:30:b7:05:c4:
b3:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:54:1F:B7:79:65:DE:14:A5:9F:9E:F2:33:DE:19:F9:20:5F:5F:98
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9137917/492AB5942A0311EBA69DDD2DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9137917/492AB5942A0311EBA69DDD2DC4F9AE02/9FQft3ll3hSln57yM94Z-SBfX5g.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38230
134828
136918
137490
137509
137520
139308
141702-141703
142039
142289
142419
142597-142598
142632
142635
149434-149435
149845
sbgp-ipAddrBlock: critical
IPv4:
103.158.222.0/23
IPv6:
2001:df5:6880::/48
Signature Algorithm: sha256WithRSAEncryption
be:3e:4e:15:75:f8:d1:7b:5a:43:f2:e7:35:28:0e:36:87:b0:
8b:5b:3c:e9:c9:f8:f1:50:c0:57:4e:34:8a:92:e1:f0:d4:6e:
08:0c:a5:6d:e8:af:a9:cc:ad:4e:31:28:23:8d:25:73:44:27:
34:a4:02:48:a8:0c:b4:e9:ec:28:6f:79:64:0b:7b:f7:87:18:
d2:2a:fc:da:d1:ab:49:cb:ba:59:4f:b6:25:2a:e9:a9:88:cf:
78:cd:3d:f3:b0:aa:0e:c0:00:c5:a2:d4:d2:06:e5:27:18:ab:
24:57:c3:8f:e1:a8:23:18:9b:88:f3:70:c8:8c:a7:41:41:8c:
80:07:4c:5c:fd:df:c1:a1:7b:57:b7:3a:69:ac:49:86:b6:a2:
7e:b8:0f:d0:a1:e1:88:32:4d:e8:92:91:e7:bd:52:bd:0c:0b:
08:c0:0e:16:61:a5:fc:3d:06:01:a2:23:57:79:1e:4b:df:c2:
79:a5:04:6e:d2:61:6b:18:b2:b4:3a:cc:c2:5a:4c:46:b2:dd:
2c:41:ec:f4:ee:37:09:1b:30:9b:7c:ba:89:1b:13:63:ae:3e:
e5:91:f4:3c:aa:bb:6e:46:95:a2:ae:f4:02:b9:54:41:52:df:
83:dd:c0:89:86:67:95:ce:b6:c1:4c:d4:44:f8:3b:9b:6b:c5:
01:db:ba:cb
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Nov 22 19:50:37 2024 by rpki-client on console-ams.rpki-client.org