Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N9M3SYXzuqgtC-BMbYejoDXiDeo.cer
File: N9M3SYXzuqgtC-BMbYejoDXiDeo.cer (raw, json)
Hash identifier: xP0cQR3aTbW/pcWbKgLAp639RIXd0olNOM3xA36w9+Y=
Subject key identifier: 37:D3:37:49:85:F3:BA:A8:2D:0B:E0:4C:6D:87:A3:A0:35:E2:0D:EA
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E0F6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91415FB/7F488968735D11E788DA4F14C4F9AE02/N9M3SYXzuqgtC-BMbYejoDXiDeo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91415FB/7F488968735D11E788DA4F14C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 27 Feb 2024 15:17:09 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 9346
AS: 132738
IP: 43.241.160.0/22
IP: 103.246.208.0/22
IP: 202.5.224.0/19
IP: 2400:1500::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 15:22:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123126 (0x1e0f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 27 15:17:09 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91415FB/serialNumber=37D3374985F3BAA82D0BE04C6D87A3A035E20DEA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:3e:17:2c:c3:cb:08:19:0a:3d:9e:09:b0:b6:
ae:24:f3:b1:e0:be:00:cf:8e:c0:9f:35:97:00:ee:
ee:b3:6a:c2:ac:97:8d:60:ce:2f:6a:44:f3:7a:cc:
dd:f5:19:4e:0a:64:e6:4d:cf:90:43:fc:1c:92:06:
01:4e:8c:13:c6:71:cb:7e:b2:65:9d:5c:06:57:2d:
95:9f:94:12:5b:60:48:e3:17:ac:be:3f:fe:df:a5:
64:17:40:c2:81:b2:74:4a:22:a4:6a:ae:a4:2d:d6:
16:a2:2e:04:bd:79:42:27:97:82:23:81:f9:c3:b1:
ab:7f:36:c7:b5:ba:d1:73:c6:85:3b:4a:94:21:52:
62:b0:f6:81:95:f4:2b:77:89:53:68:a6:80:a6:71:
98:36:85:30:d5:93:6f:38:17:82:37:48:dc:95:a6:
ce:2a:7d:d0:93:e7:38:a6:95:cb:98:dc:11:5d:61:
4d:cd:b8:62:b4:ae:aa:bc:78:0e:8c:a8:19:75:66:
92:de:60:d1:c0:90:ad:9b:e3:2d:2b:03:43:c3:39:
4e:bc:02:c9:52:05:8a:7d:fa:9b:24:22:d3:b4:46:
42:3a:ac:e5:2f:d9:71:9a:ff:3f:6c:3e:89:53:79:
e2:ce:3b:92:4c:fb:aa:8a:4f:e6:4e:1e:a6:6f:49:
5b:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:D3:37:49:85:F3:BA:A8:2D:0B:E0:4C:6D:87:A3:A0:35:E2:0D:EA
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91415FB/7F488968735D11E788DA4F14C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91415FB/7F488968735D11E788DA4F14C4F9AE02/N9M3SYXzuqgtC-BMbYejoDXiDeo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9346
132738
sbgp-ipAddrBlock: critical
IPv4:
43.241.160.0/22
103.246.208.0/22
202.5.224.0/19
IPv6:
2400:1500::/32
Signature Algorithm: sha256WithRSAEncryption
30:ad:62:57:6b:68:28:85:0d:fb:fd:72:fa:ff:b7:c1:5a:94:
67:65:32:97:b3:f9:fc:6a:8c:22:73:05:07:dd:02:43:32:d0:
82:f6:1b:2b:72:93:b7:70:e3:e2:7d:a0:e4:56:a4:5f:87:78:
f3:e9:ee:6c:72:d7:6b:ec:07:fe:7e:0e:5f:ad:ad:50:ff:96:
99:8c:64:c3:33:16:57:86:4a:03:5d:45:8c:9d:37:6f:33:e5:
51:6c:c1:59:c8:6d:60:95:5b:13:03:96:96:c7:9b:5a:c6:58:
5d:d8:c3:ea:b6:6f:f1:6f:d9:37:ff:24:18:0f:4d:bf:e2:28:
ff:6a:93:77:0b:71:16:a1:d7:be:31:97:cd:c5:17:f0:42:b9:
15:c2:e5:53:0c:79:65:84:ad:fb:d5:f4:11:86:9a:9a:c9:ed:
66:1f:6a:33:1b:d5:8c:e9:26:f1:42:f7:20:cb:df:03:e4:b1:
2a:70:15:8b:5f:d2:b5:dd:04:01:da:92:f9:8a:8e:62:a6:73:
03:8b:16:9a:94:30:e6:47:76:cb:43:eb:d4:db:11:6d:60:cb:
02:c7:cf:de:c0:53:f8:00:8a:fd:c3:40:39:f8:e4:2b:c2:76:
f0:63:50:a7:fd:c7:61:f5:ef:4d:c9:16:4a:6b:46:9b:7d:57:
df:22:70:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 16:50:35 2024 by rpki-client on console-ams.rpki-client.org