Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IMtYu3zUJOdhvDk7_LjWdmhfbA0.cer
File: IMtYu3zUJOdhvDk7_LjWdmhfbA0.cer (raw, json)
Hash identifier: lyXGC7bwyfgCQw6ndDttVQViZohMcf+AoG1wglqGxAo=
Subject key identifier: 20:CB:58:BB:7C:D4:24:E7:61:BC:39:3B:FC:B8:D6:76:68:5F:6C:0D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020D14
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918754F/2AD16F301A4A11E59209ED72C4F9AE02/IMtYu3zUJOdhvDk7_LjWdmhfbA0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918754F/2AD16F301A4A11E59209ED72C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 11 Sep 2024 16:53:31 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 58691
AS: 58749
AS: 58752
AS: 58886
AS: 58892
AS: 58953
AS: 59375
AS: 133109
IP: 43.245.232.0/22
IP: 103.31.176.0/23
IP: 2407:1500::/32
IP: 2407:6d00::/32
IP: 2407:6f00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134420 (0x20d14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 11 16:53:31 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A918754F/serialNumber=20CB58BB7CD424E761BC393BFCB8D676685F6C0D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:9e:e2:69:a8:df:bf:45:7f:d3:e1:c4:2e:6d:
30:fe:16:8d:50:c5:2c:ab:b1:c7:28:b0:d0:3b:6a:
07:31:8e:de:b8:2c:2d:99:1d:a1:04:5f:96:d6:01:
50:4f:e6:a4:9a:78:57:e1:04:63:8b:d9:78:4e:23:
12:64:09:93:15:b6:cb:dd:13:2c:8c:16:3e:50:78:
02:82:66:42:9a:00:83:46:f0:6f:1e:8c:1b:90:6b:
f9:58:da:0a:94:6a:e1:8f:8e:5d:6a:0f:1a:93:50:
c5:66:9c:cc:d9:22:0b:ce:ff:b5:8b:9d:a9:f2:00:
1c:7b:73:43:9b:7d:7c:4c:55:47:38:47:1d:92:da:
f4:38:c4:6b:d6:02:41:17:12:82:14:1a:f6:5b:fa:
a2:c2:d6:ce:64:60:be:d3:d1:b7:c1:79:81:46:53:
c8:ac:a7:2a:8a:11:39:be:14:4a:db:98:59:6a:f5:
af:f2:51:ed:6e:4e:f7:25:c8:82:8d:80:41:46:87:
2c:9d:bf:06:cb:98:8d:b5:7f:41:91:53:0b:93:eb:
3a:e4:67:db:70:8d:1c:a9:b1:41:bc:54:b2:ff:71:
a1:f7:19:d8:13:c7:03:4f:fb:27:66:bc:14:e8:a4:
29:8e:05:c7:c3:cb:30:38:0c:96:7a:fa:2c:03:47:
f3:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:CB:58:BB:7C:D4:24:E7:61:BC:39:3B:FC:B8:D6:76:68:5F:6C:0D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918754F/2AD16F301A4A11E59209ED72C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918754F/2AD16F301A4A11E59209ED72C4F9AE02/IMtYu3zUJOdhvDk7_LjWdmhfbA0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58691
58749
58752
58886
58892
58953
59375
133109
sbgp-ipAddrBlock: critical
IPv4:
43.245.232.0/22
103.31.176.0/23
IPv6:
2407:1500::/32
2407:6d00::/32
2407:6f00::/32
Signature Algorithm: sha256WithRSAEncryption
d9:f0:6f:14:72:e5:d9:83:72:88:ce:72:1c:37:9f:88:01:83:
d1:79:83:95:a6:a4:9e:2e:68:a5:87:d1:23:41:4f:5a:7a:33:
72:ba:13:59:d0:75:b8:33:aa:18:c3:4f:61:72:7b:5c:59:5b:
44:d8:ef:96:f2:3e:07:68:8c:58:39:77:0d:3d:c0:af:32:74:
ae:78:75:17:3c:63:55:dd:ff:b3:74:c5:46:dc:b5:12:f1:f1:
b0:35:30:b7:b9:25:0b:ef:b6:1c:15:1f:45:c5:cc:c0:fa:34:
4a:b5:00:e9:b9:59:73:93:bc:20:04:09:36:87:20:d0:b6:f9:
25:ef:84:84:af:49:8b:ad:1a:c2:5b:75:3f:a9:0f:dd:fd:fd:
68:91:61:1e:f2:eb:85:ea:d1:b9:90:93:48:65:a8:b0:ab:1b:
14:7d:5f:64:c3:80:bb:22:67:8b:e2:bf:01:51:8c:2b:44:3b:
40:3d:d4:b2:b8:1e:99:10:2d:12:e1:cd:a9:0a:29:ea:96:a0:
6e:e8:3f:4e:99:6a:18:65:aa:09:43:39:8f:78:60:19:99:e9:
e7:65:98:19:82:d7:e4:b1:50:90:83:1e:d0:bb:3f:51:42:94:
b5:bb:60:bd:d4:ce:ab:1a:09:8d:69:e6:dc:04:2e:3f:5d:e1:
be:f1:db:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:22 2024 by rpki-client on console-fra.rpki-client.org