Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer
File: LWNAd8yEe1nUBI1D4EszCWmP5jg.cer (raw, json)
Hash identifier: nV9X9JndmDoKCt24FunjY53S7SP0fXPafmq10Dj8dcw=
Subject key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021226
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 04 Oct 2024 03:47:08 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 133499
AS: 134450
IP: 43.225.80.0/22
IP: 43.225.188.0/22
IP: 43.228.236.0/22
IP: 45.113.96.0/22
IP: 45.114.180.0/22
IP: 45.120.48.0/22
IP: 45.125.244.0/22
IP: 45.252.188.0/22
IP: 103.3.224.0/22
IP: 103.44.212.0/22
IP: 103.50.28.0/22
IP: 103.52.248.0/22
IP: 103.53.36.0/22
IP: 103.66.178.0/23
IP: 103.69.144.0/22
IP: 103.75.8.0/22
IP: 103.75.228.0/22
IP: 103.77.102.0/23
IP: 103.77.255.0/24
IP: 103.84.120.0/22
IP: 103.85.228.0/22
IP: 103.101.58.0/23
IP: 103.104.92.0/22
IP: 103.104.128.0/23
IP: 103.108.0.0/23
IP: 103.109.74.0/23
IP: 103.109.80.0/23
IP: 103.109.244.0/24
IP: 103.110.144.0/22
IP: 103.114.56.0/22
IP: 103.119.108.0/22
IP: 103.119.244.0/24
IP: 103.119.247.0/24
IP: 103.192.205.0 -- 103.192.206.255
IP: 103.194.112.0/22
IP: 103.205.140.0/22
IP: 103.214.20.0/22
IP: 103.217.220.0/22
IP: 103.221.232.0/22
IP: 103.225.52.0/22
IP: 103.227.1.0/24
IP: 103.228.132.0/24
IP: 103.239.213.0/24
IP: 103.240.164.0/22
IP: 103.241.52.0/22
IP: 103.243.144.0/22
IP: 103.247.19.0/24
IP: 103.250.80.0/22
IP: 103.252.108.0/22
IP: 110.44.0.0/22
IP: 139.5.88.0/22
IP: 144.48.36.0/22
IP: 150.107.224.0/22
IP: 160.20.8.0/22
IP: 180.149.228.0/22
IP: 202.37.74.0/24
IP: 202.94.172.0/22
IP: 202.155.186.0/23
IP: 2402:bd80::/30
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 12:58:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135718 (0x21226)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 4 03:47:08 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ec:c0:dc:b9:7f:f8:08:2c:e2:08:d7:68:9a:
06:10:eb:d3:8a:b1:a1:61:47:80:2e:22:d0:71:3a:
69:53:68:36:f0:42:6e:4f:9b:72:c1:72:d2:4f:41:
fc:5a:f9:96:c1:84:fa:8d:30:88:28:44:81:c6:50:
af:73:2f:14:65:9a:03:69:5d:db:07:8b:8a:e3:f1:
95:94:50:d4:b6:e3:ca:ab:87:f7:24:71:0f:95:96:
82:2b:ad:ca:99:5d:c2:e0:7e:51:b3:e1:ad:b2:78:
8d:c6:a3:4f:80:69:42:ce:39:dd:1e:38:0e:4c:34:
1f:56:f9:db:c0:94:32:82:d5:dd:76:fc:af:6b:8c:
9a:68:b1:f2:8f:27:c9:16:ee:72:e2:97:23:98:9a:
a6:60:14:ef:0a:fd:a1:cf:a0:4a:62:21:29:80:c8:
74:e6:48:63:05:d4:34:0a:7a:8b:e9:b6:ff:f0:72:
fa:4f:b7:a9:72:e0:91:36:a8:ee:7e:a4:94:c4:b0:
b5:81:9a:54:19:1d:4b:49:ca:1f:fa:27:89:4b:9a:
f8:66:56:68:ec:f6:ca:56:f5:5b:af:da:da:33:59:
db:cd:7c:43:68:64:4c:8f:b8:09:37:aa:c6:31:e8:
56:0b:e9:66:1b:01:f5:fd:1e:09:ce:d4:1e:dd:f8:
9a:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133499
134450
sbgp-ipAddrBlock: critical
IPv4:
43.225.80.0/22
43.225.188.0/22
43.228.236.0/22
45.113.96.0/22
45.114.180.0/22
45.120.48.0/22
45.125.244.0/22
45.252.188.0/22
103.3.224.0/22
103.44.212.0/22
103.50.28.0/22
103.52.248.0/22
103.53.36.0/22
103.66.178.0/23
103.69.144.0/22
103.75.8.0/22
103.75.228.0/22
103.77.102.0/23
103.77.255.0/24
103.84.120.0/22
103.85.228.0/22
103.101.58.0/23
103.104.92.0/22
103.104.128.0/23
103.108.0.0/23
103.109.74.0/23
103.109.80.0/23
103.109.244.0/24
103.110.144.0/22
103.114.56.0/22
103.119.108.0/22
103.119.244.0/24
103.119.247.0/24
103.192.205.0-103.192.206.255
103.194.112.0/22
103.205.140.0/22
103.214.20.0/22
103.217.220.0/22
103.221.232.0/22
103.225.52.0/22
103.227.1.0/24
103.228.132.0/24
103.239.213.0/24
103.240.164.0/22
103.241.52.0/22
103.243.144.0/22
103.247.19.0/24
103.250.80.0/22
103.252.108.0/22
110.44.0.0/22
139.5.88.0/22
144.48.36.0/22
150.107.224.0/22
160.20.8.0/22
180.149.228.0/22
202.37.74.0/24
202.94.172.0/22
202.155.186.0/23
IPv6:
2402:bd80::/30
Signature Algorithm: sha256WithRSAEncryption
0a:21:f1:08:98:bb:f2:2d:93:1a:57:6b:03:61:28:d3:12:a4:
4c:3a:da:7b:b3:00:8b:ef:31:6b:6e:c4:b7:57:db:87:fd:b5:
98:75:32:4f:50:49:d0:1d:97:f9:5c:c0:0a:6f:ec:6a:48:2d:
b0:db:8a:7b:9f:3a:4d:4a:26:5e:e1:f9:9c:42:75:84:cd:7a:
28:01:f1:8b:65:e3:aa:53:9c:54:6e:29:d8:bc:e6:06:68:aa:
0c:72:a1:fd:47:3b:7c:41:99:7e:1d:51:55:24:95:b4:2b:28:
60:37:a5:64:53:60:7b:98:c1:c0:9c:fe:6a:e0:a9:44:dc:6f:
61:e9:f0:1a:f4:f1:c5:1d:7c:06:95:0f:0f:b6:f2:ef:12:5c:
22:75:88:a4:d5:9c:64:f2:47:84:3a:e8:13:48:c8:20:ee:2a:
86:a8:7b:1c:72:31:49:b0:e5:f0:e7:08:ff:c4:b1:42:82:8f:
c9:51:2e:5c:87:e9:84:8f:55:c2:0a:4c:1a:77:c1:b1:61:ff:
66:11:59:f0:a4:a7:88:92:ea:10:90:05:d1:fe:51:eb:07:9b:
af:8f:3f:91:f4:f1:46:72:2a:ab:a2:4e:c9:ce:00:17:66:dd:
4a:63:67:18:ec:81:01:d0:c6:a1:f7:c0:93:03:00:5e:26:ff:
6c:91:c4:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 14:24:20 2024 by rpki-client on console-ams.rpki-client.org