Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LlwMrqX6-WreoBWKqPtS-jRn4Og.cer
File: LlwMrqX6-WreoBWKqPtS-jRn4Og.cer (raw, json)
Hash identifier: mRgkK+bac9MuWdSXJrZqZpfYQtJNAtELaHhYe3SRuXE=
Subject key identifier: 2E:5C:0C:AE:A5:FA:F9:6A:DE:A0:15:8A:A8:FB:52:FA:34:67:E0:E8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CC4D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918F7E6/01C72C807D7511EB8D8F486DC4F9AE02/LlwMrqX6-WreoBWKqPtS-jRn4Og.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918F7E6/01C72C807D7511EB8D8F486DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 22 Nov 2023 16:52:47 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 133130
IP: 43.245.112.0/22
IP: 103.252.56.0/22
IP: 2400:3c80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117837 (0x1cc4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 22 16:52:47 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A918F7E6/serialNumber=2E5C0CAEA5FAF96ADEA0158AA8FB52FA3467E0E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:be:06:a4:cf:22:4d:07:b1:4e:61:d5:3e:42:
2d:70:6e:3d:90:89:df:7a:a4:00:bf:27:51:f3:f1:
41:ff:3a:ca:36:e8:b1:37:3d:1f:aa:d0:b9:07:da:
cf:3b:57:cc:3a:dc:c2:89:2e:05:03:6c:4f:6c:ad:
7e:1a:8c:72:a1:81:1a:cc:ce:da:5e:eb:51:90:17:
ec:db:5c:9e:d8:c3:03:ca:c8:8b:03:ba:eb:ba:1d:
12:9a:3d:53:00:0e:b1:20:8a:b7:78:26:9a:61:44:
45:9b:c5:c4:3d:b6:51:fb:ba:83:c5:b8:a6:95:c7:
5a:36:4c:91:bf:49:f9:cc:1f:c9:10:1d:a0:ed:de:
0c:9e:0a:d0:fa:2a:3f:9e:f8:e7:00:f1:93:ea:91:
2f:46:d5:eb:5c:d5:5d:29:e8:90:96:c9:49:0d:84:
99:66:d6:59:9d:fd:3e:43:66:4e:75:f2:7e:69:a1:
97:29:20:a4:95:42:82:5b:1c:82:c4:ab:ca:07:12:
fb:6a:35:fb:0d:f4:41:4b:b2:bd:08:47:5c:27:e0:
91:1e:55:62:a5:c4:29:69:ac:aa:32:5f:5c:67:05:
9f:ed:9f:7c:af:09:60:ec:e0:47:9e:03:ea:4a:da:
22:9d:b3:60:7d:4f:5d:af:5d:62:b8:4d:0d:c9:6c:
09:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:5C:0C:AE:A5:FA:F9:6A:DE:A0:15:8A:A8:FB:52:FA:34:67:E0:E8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918F7E6/01C72C807D7511EB8D8F486DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918F7E6/01C72C807D7511EB8D8F486DC4F9AE02/LlwMrqX6-WreoBWKqPtS-jRn4Og.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133130
sbgp-ipAddrBlock: critical
IPv4:
43.245.112.0/22
103.252.56.0/22
IPv6:
2400:3c80::/32
Signature Algorithm: sha256WithRSAEncryption
87:c0:cb:6a:79:61:f0:28:b3:12:9a:c7:6f:57:8b:38:23:f4:
ac:d1:cb:6e:0b:7e:6a:01:b3:f7:c7:d1:90:2d:c6:88:f0:39:
79:0a:fd:6f:0e:c2:89:1d:8e:8f:e5:fb:8b:85:16:22:a7:73:
e7:3d:02:9c:e5:51:25:06:d4:85:67:5a:e1:4a:a1:1d:e5:55:
c1:0b:c4:55:05:93:d2:21:f0:e7:c1:6b:65:ea:22:7b:d2:7c:
94:34:a6:cf:ab:9a:ed:bb:b5:16:e5:1d:d9:fa:d4:78:29:b7:
24:d7:9d:a5:25:f3:54:d5:aa:9a:08:8d:64:e2:58:4a:46:f4:
38:e5:52:43:5b:e0:98:1b:58:93:54:27:ff:3e:7f:e9:82:9c:
90:96:d8:1d:b3:e3:90:5c:4b:8a:39:cf:32:42:79:dd:31:0b:
d7:ee:6d:77:91:40:b6:1f:ed:fb:68:bc:56:0a:7c:4b:02:69:
3e:2d:bb:eb:2f:a9:65:3d:db:36:5e:22:8f:3c:63:36:e6:e3:
d1:01:8b:ff:c5:eb:2e:c9:b3:a3:ca:c6:5b:f5:08:24:0f:20:
a2:0d:2c:3a:41:dd:e2:f2:02:be:01:67:07:b1:bb:1c:1c:56:
04:5d:26:b3:f3:52:a7:ec:a6:e6:22:fb:0b:0f:22:e4:2d:f0:
14:5c:52:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:37 2024 by rpki-client on console-ams.rpki-client.org