Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer
File: LWNAd8yEe1nUBI1D4EszCWmP5jg.cer (raw, json)
Hash identifier: jnboK4KLWPFwZmvfLKw5FQX1jYqorJ8v7RLIPhRt3sw=
Subject key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EA98
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 09 Apr 2024 05:34:37 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 133499
AS: 134450
IP: 43.225.80.0/22
IP: 43.225.188.0/22
IP: 43.228.236.0/22
IP: 45.113.96.0/22
IP: 45.114.180.0/22
IP: 45.120.48.0/22
IP: 45.125.244.0/22
IP: 45.252.188.0/22
IP: 103.3.224.0/22
IP: 103.44.212.0/22
IP: 103.50.28.0/22
IP: 103.52.248.0/22
IP: 103.53.36.0/22
IP: 103.66.178.0/23
IP: 103.69.144.0/22
IP: 103.75.8.0/22
IP: 103.75.228.0/22
IP: 103.77.255.0/24
IP: 103.84.120.0/22
IP: 103.85.228.0/22
IP: 103.101.58.0/23
IP: 103.104.128.0/23
IP: 103.108.0.0/23
IP: 103.109.74.0/23
IP: 103.109.80.0/23
IP: 103.109.244.0/24
IP: 103.110.144.0/22
IP: 103.114.56.0/23
IP: 103.119.108.0/22
IP: 103.119.244.0/24
IP: 103.119.247.0/24
IP: 103.192.205.0 -- 103.192.206.255
IP: 103.194.112.0/22
IP: 103.205.140.0/22
IP: 103.214.20.0/22
IP: 103.217.220.0/22
IP: 103.221.232.0/22
IP: 103.227.1.0/24
IP: 103.228.132.0/24
IP: 103.239.213.0/24
IP: 103.240.164.0/22
IP: 103.241.52.0/22
IP: 103.247.19.0/24
IP: 103.250.80.0/22
IP: 103.252.108.0/22
IP: 110.44.0.0/22
IP: 139.5.88.0/22
IP: 144.48.36.0/22
IP: 150.107.224.0/22
IP: 160.20.8.0/22
IP: 180.149.228.0/22
IP: 202.37.74.0/24
IP: 202.94.172.0/22
IP: 2402:bd80::/30
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125592 (0x1ea98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 9 05:34:37 2024 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ec:c0:dc:b9:7f:f8:08:2c:e2:08:d7:68:9a:
06:10:eb:d3:8a:b1:a1:61:47:80:2e:22:d0:71:3a:
69:53:68:36:f0:42:6e:4f:9b:72:c1:72:d2:4f:41:
fc:5a:f9:96:c1:84:fa:8d:30:88:28:44:81:c6:50:
af:73:2f:14:65:9a:03:69:5d:db:07:8b:8a:e3:f1:
95:94:50:d4:b6:e3:ca:ab:87:f7:24:71:0f:95:96:
82:2b:ad:ca:99:5d:c2:e0:7e:51:b3:e1:ad:b2:78:
8d:c6:a3:4f:80:69:42:ce:39:dd:1e:38:0e:4c:34:
1f:56:f9:db:c0:94:32:82:d5:dd:76:fc:af:6b:8c:
9a:68:b1:f2:8f:27:c9:16:ee:72:e2:97:23:98:9a:
a6:60:14:ef:0a:fd:a1:cf:a0:4a:62:21:29:80:c8:
74:e6:48:63:05:d4:34:0a:7a:8b:e9:b6:ff:f0:72:
fa:4f:b7:a9:72:e0:91:36:a8:ee:7e:a4:94:c4:b0:
b5:81:9a:54:19:1d:4b:49:ca:1f:fa:27:89:4b:9a:
f8:66:56:68:ec:f6:ca:56:f5:5b:af:da:da:33:59:
db:cd:7c:43:68:64:4c:8f:b8:09:37:aa:c6:31:e8:
56:0b:e9:66:1b:01:f5:fd:1e:09:ce:d4:1e:dd:f8:
9a:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133499
134450
sbgp-ipAddrBlock: critical
IPv4:
43.225.80.0/22
43.225.188.0/22
43.228.236.0/22
45.113.96.0/22
45.114.180.0/22
45.120.48.0/22
45.125.244.0/22
45.252.188.0/22
103.3.224.0/22
103.44.212.0/22
103.50.28.0/22
103.52.248.0/22
103.53.36.0/22
103.66.178.0/23
103.69.144.0/22
103.75.8.0/22
103.75.228.0/22
103.77.255.0/24
103.84.120.0/22
103.85.228.0/22
103.101.58.0/23
103.104.128.0/23
103.108.0.0/23
103.109.74.0/23
103.109.80.0/23
103.109.244.0/24
103.110.144.0/22
103.114.56.0/23
103.119.108.0/22
103.119.244.0/24
103.119.247.0/24
103.192.205.0-103.192.206.255
103.194.112.0/22
103.205.140.0/22
103.214.20.0/22
103.217.220.0/22
103.221.232.0/22
103.227.1.0/24
103.228.132.0/24
103.239.213.0/24
103.240.164.0/22
103.241.52.0/22
103.247.19.0/24
103.250.80.0/22
103.252.108.0/22
110.44.0.0/22
139.5.88.0/22
144.48.36.0/22
150.107.224.0/22
160.20.8.0/22
180.149.228.0/22
202.37.74.0/24
202.94.172.0/22
IPv6:
2402:bd80::/30
Signature Algorithm: sha256WithRSAEncryption
60:9e:9a:73:cc:ec:52:40:1d:84:0b:ef:e2:1f:4b:be:21:d6:
c4:13:6e:4f:e7:31:4a:3d:fb:e1:e5:63:d4:79:2c:f2:60:0e:
cf:94:72:eb:61:85:b8:51:ca:4d:fd:da:2d:a0:84:e9:dc:7a:
de:3e:9d:ae:6a:64:40:31:f7:d2:6b:8d:f2:7a:27:c1:4e:b3:
0e:fb:8c:2a:84:82:bf:a9:a8:12:36:c2:4a:38:f0:14:35:19:
0c:b9:3c:a6:52:85:b8:9f:21:f8:b5:82:6a:5b:16:28:37:64:
30:1d:fc:34:4c:66:86:c2:b7:68:71:c2:23:cd:6c:dd:f0:dc:
82:07:c4:b3:1e:df:f5:58:d3:dd:b2:37:80:e4:00:b7:f2:ed:
4c:c8:cf:84:a8:ea:03:f8:42:9b:09:0c:5d:80:f6:9d:cf:5e:
47:72:4c:2c:08:af:d9:f5:47:58:02:1e:a0:ce:3e:df:20:03:
c6:c8:78:83:d2:f9:8f:43:5b:a0:b1:7f:ef:83:32:54:2d:86:
1d:82:95:5d:db:b6:89:87:40:a1:92:39:9e:d2:41:83:73:a0:
b2:14:16:57:47:87:b8:52:f0:0e:08:be:ef:7b:95:1e:59:6a:
37:e7:e3:64:b6:d0:73:77:49:fc:73:4b:99:fa:0d:77:1e:f5:
b8:64:1f:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 03:32:48 2024 by rpki-client on console-ams.rpki-client.org