Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgVW-X1UVDTSyFQSHcXcZGNKZKw.cer
File: AgVW-X1UVDTSyFQSHcXcZGNKZKw.cer (raw, json)
Hash identifier: N0WmmxbyaEg4DOu/z+AAZS6cARjTutHWEArCjrDQCM8=
Subject key identifier: 02:05:56:F9:7D:54:54:34:D2:C8:54:12:1D:C5:DC:64:63:4A:64:AC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CE16
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9142BCC/8A56C09E983E11E7B47DE57AC4F9AE02/AgVW-X1UVDTSyFQSHcXcZGNKZKw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9142BCC/8A56C09E983E11E7B47DE57AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 30 Nov 2023 16:18:24 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 134732
IP: 59.153.100.0/22
IP: 103.198.136.0/22
IP: 2401:f40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118294 (0x1ce16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 30 16:18:24 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A9142BCC/serialNumber=020556F97D545434D2C854121DC5DC64634A64AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f0:0d:c0:49:e4:67:0c:c4:f9:b4:30:4f:71:
c2:e6:f7:18:43:e9:59:f4:2c:e8:ee:f6:53:f7:fd:
1a:37:cb:5d:35:b6:51:ed:37:c4:64:27:6d:ce:88:
e0:b1:dc:64:71:04:de:d3:5b:f0:b8:73:3f:f4:df:
e2:19:c0:28:0b:86:48:8c:63:38:fb:80:fa:61:a8:
ce:38:cb:8d:26:c1:cf:5f:1e:13:f1:5f:ad:62:66:
aa:33:9d:45:5a:93:da:39:67:46:02:1a:dd:16:af:
36:75:6a:ee:d1:4c:ac:55:5a:fa:62:d1:f8:26:6b:
e1:e5:e7:98:a2:fb:a3:c6:c8:dc:67:d3:a2:8b:8e:
05:7c:0a:f8:36:77:7d:fe:de:24:f5:5a:0f:44:14:
78:96:96:69:68:db:6c:a2:a0:99:fe:c6:83:7f:93:
4b:d5:8f:cb:e9:16:75:28:d3:be:79:fa:85:7d:36:
9f:2f:22:3a:36:2f:9f:d1:45:b8:fa:3f:ce:29:6e:
d3:18:37:37:e6:e1:53:1e:4e:59:22:98:d0:e1:c3:
75:48:f5:c3:3a:e2:30:2a:01:e8:95:3b:0a:a0:23:
b4:d4:41:3b:9f:fb:37:b1:b8:c4:26:29:a9:03:5c:
8e:9e:b1:49:54:d8:8a:94:a8:15:cb:8b:7d:5e:9c:
43:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:05:56:F9:7D:54:54:34:D2:C8:54:12:1D:C5:DC:64:63:4A:64:AC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9142BCC/8A56C09E983E11E7B47DE57AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9142BCC/8A56C09E983E11E7B47DE57AC4F9AE02/AgVW-X1UVDTSyFQSHcXcZGNKZKw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134732
sbgp-ipAddrBlock: critical
IPv4:
59.153.100.0/22
103.198.136.0/22
IPv6:
2401:f40::/32
Signature Algorithm: sha256WithRSAEncryption
3f:a1:a0:25:d6:b5:b0:90:f0:e0:1b:0f:2e:f4:57:d8:0e:7c:
5e:ff:7e:95:b0:0a:ab:fb:a6:18:0b:7c:33:3d:cf:9a:cf:47:
d6:f1:b9:e2:37:3a:f4:1d:52:70:e6:16:b1:08:02:ff:0f:75:
4b:fa:b6:b9:78:94:69:86:e6:c6:8f:25:4c:7e:d7:bb:aa:d1:
db:52:d1:dd:b2:7e:0b:1e:1c:f3:14:e8:da:23:b6:e4:5c:54:
d5:ba:cb:d0:7d:77:1f:79:86:f3:4e:5d:e0:1e:f0:98:6f:c2:
d5:28:a7:0f:1e:90:12:94:49:73:23:fc:10:ca:42:65:fc:56:
a4:8c:48:0f:3a:6b:82:81:46:95:82:10:78:0e:28:15:5b:a3:
6e:fd:60:2e:3d:e8:94:a6:2e:84:58:d4:08:3b:d6:d4:5e:57:
72:e8:11:ce:78:52:7c:67:bc:46:b3:81:04:d2:9b:cc:0f:84:
04:6f:be:dd:c8:7d:07:81:c5:98:a7:9c:3e:fb:53:53:f5:c6:
b3:3d:a7:a4:e0:06:e5:73:3f:fd:69:c1:19:af:9c:4f:35:9d:
be:3f:6e:61:de:4b:dd:32:49:39:05:ce:fc:da:90:d8:9a:dd:
a7:0d:8c:62:91:2e:bd:ab:9a:5e:6a:ad:25:11:65:8b:de:85:
55:ca:22:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:02:46 2024 by rpki-client on console-ams.rpki-client.org