Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B5ku7PYjoMe42kradUVPo_cWpXA.cer
File: B5ku7PYjoMe42kradUVPo_cWpXA.cer (raw, json)
Hash identifier: PmTeAgz/Pdvz3skHI9Hl63tnQES8+wfFYPi1Cp+cgiw=
Subject key identifier: 07:99:2E:EC:F6:23:A0:C7:B8:DA:4A:DA:75:45:4F:A3:F7:16:A5:70
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CDF0
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D94A7/F70588781D8D11E2AD4A04EC08B02CD2/B5ku7PYjoMe42kradUVPo_cWpXA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D94A7/F70588781D8D11E2AD4A04EC08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 30 Nov 2023 14:44:54 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 18209
AS: 55577
AS: 131269
IP: 45.112.252.0/22
IP: 49.204.0.0/14
IP: 103.16.200.0/22
IP: 123.176.32.0/20
IP: 124.123.0.0/16
IP: 183.82.0.0/15
IP: 202.53.8.0/21
IP: 2406:b400::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 12:36:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118256 (0x1cdf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 30 14:44:54 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91D94A7/serialNumber=07992EECF623A0C7B8DA4ADA75454FA3F716A570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:4a:83:a1:2a:ba:39:ba:a2:c7:2a:1d:2f:78:
69:9d:9b:ee:37:f5:02:7c:74:91:cf:81:c3:40:44:
e3:58:0d:70:42:0d:87:f3:93:6d:1e:d7:17:4d:a6:
50:bd:ed:ba:5f:5f:34:b6:d8:8e:ca:4f:83:3c:e4:
52:7a:87:48:8e:33:ff:7f:4d:b5:bc:df:d1:d7:68:
25:53:29:a5:e1:91:dc:5f:9a:c6:f1:dd:55:c6:bb:
fe:5a:12:58:92:65:81:11:d7:d3:c5:ab:d6:a7:0f:
95:22:e9:d2:61:35:73:fc:0d:3e:d6:f9:2a:a3:99:
63:0d:f2:a9:66:10:dd:91:7f:72:97:c7:01:98:4e:
22:a0:16:1f:f6:13:24:fc:51:cf:bd:7d:40:25:0a:
77:b8:26:86:bf:a6:59:8c:23:58:2a:60:c8:88:6f:
1e:32:a5:81:90:e7:c8:53:b9:13:82:e9:df:46:f2:
b8:30:96:23:4f:4d:1b:c4:f9:3c:a1:e2:6f:70:e7:
c3:25:a8:1b:31:d5:45:18:56:b3:95:3a:a5:ec:37:
f4:18:57:a1:bb:0d:1c:65:34:bf:08:8b:1d:68:b3:
76:68:e4:f5:e5:4d:91:c9:62:e8:07:d2:c4:83:d3:
4d:01:9a:7d:a8:1d:1f:15:7b:2f:91:ff:aa:28:05:
f8:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:99:2E:EC:F6:23:A0:C7:B8:DA:4A:DA:75:45:4F:A3:F7:16:A5:70
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D94A7/F70588781D8D11E2AD4A04EC08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D94A7/F70588781D8D11E2AD4A04EC08B02CD2/B5ku7PYjoMe42kradUVPo_cWpXA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
18209
55577
131269
sbgp-ipAddrBlock: critical
IPv4:
45.112.252.0/22
49.204.0.0/14
103.16.200.0/22
123.176.32.0/20
124.123.0.0/16
183.82.0.0/15
202.53.8.0/21
IPv6:
2406:b400::/32
Signature Algorithm: sha256WithRSAEncryption
3f:5b:b8:25:55:0f:d6:a5:e9:0e:9d:c6:6c:bf:35:85:1b:d8:
34:90:66:6f:da:a1:aa:11:da:7a:7a:ed:7c:2d:47:1c:93:d6:
40:54:7e:cc:b2:eb:19:e1:fa:23:9a:56:5b:a8:85:fd:5c:3b:
bd:8f:77:1e:44:6c:96:55:aa:c9:44:b4:a6:cf:4a:41:57:61:
06:d9:e3:5c:08:0a:da:ec:7d:86:ca:88:d0:2a:1f:5e:9f:ad:
2d:9a:66:69:6e:02:9d:c6:61:97:51:e0:57:63:1c:65:c3:03:
bf:bc:94:83:34:08:4c:04:65:7a:3c:50:a8:75:7f:e1:fe:42:
e4:06:5f:1a:fa:f9:60:d1:75:70:80:e9:f3:c5:83:74:69:21:
ac:bc:61:e2:01:99:d7:12:54:79:5d:05:b1:6e:5b:49:a8:c1:
4c:28:f5:9b:59:c1:b1:74:4e:35:78:35:3b:be:67:d7:c5:08:
f8:70:f2:da:0e:05:3b:2f:68:19:20:15:89:dc:13:d7:12:75:
dc:94:90:5b:64:aa:1e:6a:5f:f5:80:70:1a:2f:53:51:30:86:
50:e0:31:73:ff:38:9b:03:c6:49:a9:20:7c:24:c6:fd:9a:b6:
7c:05:f1:fd:6f:11:02:35:23:d0:55:c5:ac:e2:e3:4d:0a:b5:
47:6a:02:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 13:46:53 2024 by rpki-client on console-ams.rpki-client.org