Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7aVMpWAEDjwF_pl1HB4GlzHcsA.cer
File: M7aVMpWAEDjwF_pl1HB4GlzHcsA.cer (raw, json)
Hash identifier: Yw4GN07l0QRKSdpbsPyujtNFimbm4S3/jkpWFtZ5khU=
Subject key identifier: 33:B6:95:32:95:80:10:38:F0:17:FA:65:D4:70:78:1A:5C:C7:72:C0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0209C7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/M7aVMpWAEDjwF_pl1HB4GlzHcsA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 29 Aug 2024 17:51:21 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 134373
IP: 45.122.136.0/22
IP: 103.63.4.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133575 (0x209c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 29 17:51:21 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A9191E08/serialNumber=33B6953295801038F017FA65D470781A5CC772C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:79:0a:0b:e3:f7:25:b7:d1:ee:b4:16:83:4e:
44:e0:07:9a:6d:d6:50:bc:9e:5f:22:7d:d2:ff:67:
3d:1f:53:21:ff:2c:9c:29:ae:4e:ef:02:c7:3e:cc:
dd:b4:ff:b5:80:ad:f0:31:e7:b8:79:47:6a:e1:b0:
c0:cb:58:16:71:40:83:ae:f3:62:b2:26:cc:4f:54:
22:99:5b:7b:b5:23:23:eb:44:62:11:4d:a9:f8:9f:
1e:85:9d:e8:bf:01:76:32:3f:03:91:e6:92:cf:ab:
ce:83:e5:09:49:31:7e:de:9a:93:d8:5d:ba:ab:fe:
80:1d:f4:e1:24:78:e5:cf:9d:9c:a8:e5:df:2c:a4:
62:f0:a3:26:12:f9:09:e7:f5:12:f7:ad:ef:f0:74:
e0:96:66:ab:40:36:da:6c:53:28:50:03:e7:da:71:
89:39:40:cb:33:78:cd:07:bd:b2:60:9c:1e:84:3d:
78:c5:9a:22:0b:0a:3a:7a:0e:23:81:83:66:a4:24:
5c:b8:a0:0c:c8:66:f3:a8:44:22:7a:d3:97:a4:d3:
a9:92:8c:6b:c6:27:91:46:f4:d8:13:80:56:72:6c:
ec:0c:e3:d5:9e:23:c9:10:a5:dc:98:dc:6a:af:15:
6f:81:3f:d6:e4:86:83:e8:c3:47:ac:7f:e9:ae:cc:
e1:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:B6:95:32:95:80:10:38:F0:17:FA:65:D4:70:78:1A:5C:C7:72:C0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/M7aVMpWAEDjwF_pl1HB4GlzHcsA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134373
sbgp-ipAddrBlock: critical
IPv4:
45.122.136.0/22
103.63.4.0/22
Signature Algorithm: sha256WithRSAEncryption
28:a0:34:89:5f:4f:e0:15:2a:4f:91:3d:c2:3c:51:8c:54:c9:
27:bb:ac:e6:25:4e:80:93:43:fe:17:38:27:51:fc:64:39:e2:
03:f8:98:ee:78:cd:de:76:fa:64:40:7c:96:bc:da:79:70:3c:
9e:0c:06:80:eb:98:c8:da:2d:ea:81:cb:5a:c7:71:33:7a:ee:
88:f9:b8:92:f6:19:52:35:d8:d9:2b:5f:85:4c:21:4f:bf:6b:
59:d5:78:b7:fb:6c:ee:1b:91:53:70:e1:eb:c5:e2:59:e3:90:
34:cc:63:a1:3f:75:83:fd:a4:a6:29:3e:bc:ee:33:42:4a:3f:
70:be:21:1d:df:8a:31:09:5a:51:c1:fb:8a:ba:4c:da:ad:48:
47:25:f8:25:cb:59:80:51:63:d6:42:2f:87:e3:64:2a:67:c6:
87:58:98:db:fa:bf:f8:49:6a:88:ec:a5:5f:cc:14:2b:3c:0f:
44:aa:94:94:10:cb:0f:1b:f2:06:f9:48:3c:ce:96:92:bd:74:
d9:e3:26:79:07:32:73:94:5c:8e:fe:1e:e0:79:1c:06:6f:82:
13:53:5d:54:f9:ff:59:16:77:d0:1e:5b:c9:28:fb:9d:79:5f:
c6:63:f4:b9:ee:60:5f:9e:3a:5c:46:26:6a:59:3b:4a:d1:2e:
66:4f:b1:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:37 2024 by rpki-client on console-ams.rpki-client.org