Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FfB_78oF6EbUU4USXou0J3WDAPk.cer
File: FfB_78oF6EbUU4USXou0J3WDAPk.cer (raw, json)
Hash identifier: C2wI873P3XG6R/MnQVkriKDQMZUweIX0bsNRcgGZrBs=
Subject key identifier: 15:F0:7F:EF:CA:05:E8:46:D4:53:85:12:5E:8B:B4:27:75:83:00:F9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021AB6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91503BB/4725FC78212F11EA830E0A35C4F9AE02/FfB_78oF6EbUU4USXou0J3WDAPk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91503BB/4725FC78212F11EA830E0A35C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 11 Nov 2024 14:07:07 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 58910
IP: 43.241.96.0/22
IP: 103.18.88.0/22
IP: 2400:5380::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137910 (0x21ab6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 11 14:07:07 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91503BB/serialNumber=15F07FEFCA05E846D45385125E8BB427758300F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:87:9b:53:06:6d:ef:7f:ed:69:70:d6:10:57:
5f:81:a0:60:15:11:36:5b:1d:2a:dc:9a:ee:90:3b:
7d:f1:05:81:a7:08:14:6f:02:62:cf:6d:04:be:5a:
99:2d:d8:4e:e2:37:bc:27:cc:d3:5a:de:1b:61:ff:
2b:47:67:c8:b7:8f:b3:6e:c5:a0:67:c2:6f:eb:1a:
3a:e1:04:ba:03:78:76:d6:a3:bd:c2:5e:08:13:85:
fb:f1:fd:f1:5b:17:00:b7:38:5c:b4:63:ee:eb:b9:
14:6a:2d:bb:2c:15:4c:86:41:ab:97:93:ad:c4:8f:
68:8b:11:88:13:d1:c4:82:aa:10:be:ef:c7:51:b3:
6b:f9:2b:1a:47:9e:52:74:17:9f:ba:12:a8:ad:07:
c4:bc:98:e2:87:9a:7a:a6:ec:74:bf:44:3c:dc:c9:
04:c8:e0:b5:15:76:39:5c:5c:6e:c4:b1:17:36:a6:
e1:ac:a6:fd:3a:68:9e:fe:6f:3b:d7:3b:bc:2a:0c:
3e:2e:74:e2:15:9a:94:47:41:c1:16:58:5e:61:d4:
66:87:36:8e:78:36:a3:27:a1:ac:7f:0a:24:af:7b:
d7:b9:ab:6d:ac:ca:bb:d7:6a:86:cb:ee:5b:56:4e:
e1:9a:c6:ef:da:cf:4f:96:d4:be:8d:17:07:c6:7b:
36:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:F0:7F:EF:CA:05:E8:46:D4:53:85:12:5E:8B:B4:27:75:83:00:F9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91503BB/4725FC78212F11EA830E0A35C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91503BB/4725FC78212F11EA830E0A35C4F9AE02/FfB_78oF6EbUU4USXou0J3WDAPk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58910
sbgp-ipAddrBlock: critical
IPv4:
43.241.96.0/22
103.18.88.0/22
IPv6:
2400:5380::/32
Signature Algorithm: sha256WithRSAEncryption
2f:04:df:a2:96:76:de:d8:ee:db:27:00:08:fd:b6:17:d6:2d:
e5:28:16:54:f8:23:cb:fa:3a:52:65:63:0b:19:f6:40:3a:db:
5f:d6:90:c2:4b:de:3d:f1:10:a1:ae:6d:78:30:ad:22:d7:7c:
da:b9:f1:85:57:64:ec:41:36:56:b0:94:ce:86:09:40:c8:38:
15:3e:d6:fb:56:91:bd:8b:0f:4f:f4:c0:47:56:29:67:84:26:
ed:05:9e:83:f2:ca:98:be:0b:69:74:f4:d7:86:9f:ec:90:8f:
e5:6a:f8:68:c5:ee:9f:68:6d:06:fa:84:18:e1:7e:03:02:6d:
75:3c:7e:62:e6:75:33:d4:ee:bf:38:b7:6f:21:9e:73:eb:c7:
c6:17:3a:36:fb:21:e3:c7:26:99:ff:85:5a:d8:b7:37:56:d8:
80:5d:ad:36:f4:58:5c:04:e5:6f:f7:ea:ab:2e:a5:95:e2:7c:
61:08:8b:49:db:07:3a:e2:ba:37:b8:2b:0a:91:05:08:32:85:
31:14:49:8f:31:2d:83:f3:43:30:38:24:f6:68:89:5f:d0:97:
76:4f:ff:52:a6:ad:19:f3:3e:c5:0a:44:9b:e4:d8:0e:69:f7:
3a:1a:5a:89:28:36:ff:4d:55:41:85:2e:0d:71:a4:95:a2:4c:
e3:bb:b6:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:31 2024 by rpki-client on console-ams.rpki-client.org