Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer
File: 9FwPT0Z84VduXunkHlV28DSMRqc.cer (raw, json)
Hash identifier: nCd7LrWvLs8LlyWAp3kFJDc4fGr1i67NwBF38LWXOO0=
Subject key identifier: F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E952
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 03 Apr 2024 14:16:52 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 9513
AS: 9908
AS: 142115
IP: 61.10.0.0/16
IP: 61.15.0.0/16
IP: 61.18.0.0/16
IP: 125.59.0.0/16
IP: 203.83.64.0/18
IP: 203.168.128.0/17
IP: 218.252.0.0 -- 218.253.63.255
IP: 218.254.0.0/16
IP: 222.166.0.0/15
IP: 2400:8d00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 11:34:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125266 (0x1e952)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 3 14:16:52 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A9134172/serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:28:c7:65:28:23:0d:7c:cb:b3:2e:9f:96:6b:
b5:d9:f3:16:c2:92:74:2a:46:10:d2:cc:8d:dc:5e:
6d:01:49:82:f8:ee:e3:20:d0:e7:98:2c:33:1a:65:
fd:d9:d8:8a:87:c9:2a:0d:a2:4b:00:07:e6:75:15:
63:86:2f:3e:93:2f:72:17:7d:fe:51:0b:f3:26:48:
2b:9a:b5:76:e9:2e:53:44:f3:02:3a:5f:40:b1:46:
7b:64:81:60:92:3e:0b:c4:3b:3b:3f:65:05:9b:0c:
af:d3:82:5b:f0:35:9e:f1:62:ed:bf:81:bc:d4:d6:
2d:89:39:3c:f6:c9:d0:21:40:ca:e0:92:ea:77:52:
3e:3a:cf:e3:c2:b4:0e:91:54:a9:1f:31:bc:ca:ba:
a0:d5:41:ad:70:45:5f:e4:8b:c5:fc:63:f0:8d:b5:
5b:a5:97:44:eb:b8:ae:df:49:15:c8:07:68:01:05:
03:34:47:f9:74:68:b5:f7:7a:dc:af:11:c2:3c:68:
68:52:fc:60:a8:da:80:4f:09:66:07:16:fe:51:4d:
7e:1b:47:bd:72:2b:a8:1e:4e:bf:b6:94:cc:1c:86:
86:eb:ca:ea:71:06:ab:2f:e3:5a:1d:d1:f2:e8:35:
5c:fb:fe:13:4c:37:83:20:e2:26:2a:0b:c2:2f:19:
de:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9513
9908
142115
sbgp-ipAddrBlock: critical
IPv4:
61.10.0.0/16
61.15.0.0/16
61.18.0.0/16
125.59.0.0/16
203.83.64.0/18
203.168.128.0/17
218.252.0.0-218.253.63.255
218.254.0.0/16
222.166.0.0/15
IPv6:
2400:8d00::/32
Signature Algorithm: sha256WithRSAEncryption
b4:b8:6e:58:27:99:44:94:3b:1d:2e:b6:4a:87:a8:8c:44:cf:
a7:22:08:98:ef:9d:58:c7:ea:8e:06:5c:1f:6e:25:76:b8:9f:
72:fe:38:dc:d5:30:1e:e7:52:28:5b:d6:13:e4:57:ad:53:50:
dd:6a:80:8e:a8:b9:a5:1c:a2:b7:2f:85:30:0f:93:45:89:5f:
f3:96:38:33:ab:cb:83:3a:9c:cc:55:a1:28:c7:a0:26:1a:86:
af:a5:8c:ac:36:2f:a3:3d:6f:31:18:c6:18:02:a6:f5:bb:fd:
6a:1e:50:05:e0:f1:3b:a7:96:30:98:db:f8:89:29:12:a1:c6:
70:ba:bf:e6:3a:9f:20:50:28:1f:3f:f2:d4:61:3b:f3:7f:6f:
99:c1:35:0f:21:9a:a0:fa:5c:46:4c:6e:9f:b8:3a:84:d0:ac:
99:d3:93:70:6c:b7:ea:d5:1a:62:87:d6:43:6f:89:2d:a7:08:
76:f6:5c:a2:78:01:83:05:96:0d:20:6a:83:5a:f9:f2:0b:02:
d6:e0:e0:df:a0:a8:5c:c1:4a:be:e7:9a:c6:3c:7c:18:42:8c:
43:ea:97:3b:03:90:36:90:eb:91:38:e9:e6:8b:4f:ad:2e:7c:
69:e6:e0:c4:b6:36:87:4a:8f:fc:2c:a1:c2:22:d2:29:2f:ad:
9a:d1:32:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 13:20:42 2024 by rpki-client on console-fra.rpki-client.org