Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORjYC8twLsrPhMt6yogPh4oU_kg.cer
File: ORjYC8twLsrPhMt6yogPh4oU_kg.cer (raw, json)
Hash identifier: Lp4fZegShIkoi0MAYQtshS9k+USLbZErG+7PZkIRLBY=
Subject key identifier: 39:18:D8:0B:CB:70:2E:CA:CF:84:CB:7A:CA:88:0F:87:8A:14:FE:48
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D411
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 25 Dec 2023 13:58:02 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 55832
IP: 27.123.216.0/22
IP: 45.64.12.0/22
IP: 103.4.208.0/22
IP: 120.88.176.0/20
IP: 2407:2a00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 10:14:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119825 (0x1d411)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 25 13:58:02 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A9146B24/serialNumber=3918D80BCB702ECACF84CB7ACA880F878A14FE48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:2a:86:d3:19:d4:d5:aa:8a:24:05:cc:ed:1b:
49:ea:f4:6d:f1:d8:74:b6:db:14:c1:e1:80:a4:c0:
b2:b6:e6:bd:f8:96:29:c3:b2:7f:db:ac:ba:c8:92:
eb:13:01:c2:05:29:d1:35:7b:24:d5:da:09:83:bc:
d7:54:11:1e:5f:56:49:95:b8:ae:00:01:58:6c:24:
69:d6:8c:4e:82:ae:74:50:e7:66:9e:5b:c3:cd:36:
ed:2c:1a:f5:14:5c:8e:d7:fb:d9:14:58:d1:b7:94:
3e:60:a2:b1:0e:74:6c:bd:1f:8e:eb:0a:c7:3c:d0:
ee:09:ae:bb:e7:84:66:ac:1c:2b:44:d1:37:db:e5:
be:4d:a1:11:37:30:ad:40:0f:b7:3e:f1:a2:b8:a0:
33:cb:03:26:14:00:8e:c1:47:42:f3:0c:58:87:aa:
fd:11:89:02:71:b0:75:a8:ca:c9:ba:8b:c9:e0:85:
d7:c1:97:cb:bf:0b:c9:10:44:25:9b:01:c4:b8:07:
ea:91:82:08:50:4f:cf:b1:93:f0:32:1b:27:25:ec:
bc:72:17:f8:be:e2:49:27:2c:08:d3:68:70:40:e9:
f2:11:68:bd:f1:5d:2c:c3:33:6c:cf:b3:86:0d:5e:
3f:24:73:80:da:14:5d:25:55:aa:f3:5c:b9:b2:23:
15:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:18:D8:0B:CB:70:2E:CA:CF:84:CB:7A:CA:88:0F:87:8A:14:FE:48
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55832
sbgp-ipAddrBlock: critical
IPv4:
27.123.216.0/22
45.64.12.0/22
103.4.208.0/22
120.88.176.0/20
IPv6:
2407:2a00::/32
Signature Algorithm: sha256WithRSAEncryption
5c:86:87:c9:67:70:6c:bc:36:f0:f4:8d:73:c3:0d:e7:02:68:
b4:1d:1c:56:92:de:19:e2:b6:ce:45:39:58:17:60:b1:3a:25:
68:d6:47:ee:32:c6:b0:54:a4:f8:11:88:eb:b2:4f:66:df:ab:
3e:a0:d2:ef:83:e6:9f:40:c8:9f:3f:fc:82:3d:19:ed:d7:da:
c7:95:68:da:6c:c5:f5:85:44:e8:a6:9c:c4:15:58:89:f8:9c:
58:b4:0d:50:b7:c4:d8:79:ea:59:16:bb:99:55:65:2c:c7:3a:
ba:f5:88:6f:e8:21:de:1e:d0:b4:8f:9d:b0:82:33:c7:64:17:
71:da:1a:bd:2f:61:34:4d:b3:9c:8f:0f:5a:7e:97:16:08:07:
0f:f2:86:be:89:16:d5:d7:51:5f:e4:13:fb:a4:09:86:e3:d7:
0f:c5:68:c6:66:9c:00:ac:b7:ff:a1:18:e3:b6:52:66:a3:20:
9c:50:e5:c7:03:69:33:e4:d4:58:59:c0:e5:7f:b8:f9:c5:50:
db:d8:46:9c:83:46:b9:d0:e8:4c:2b:60:6a:62:03:5c:ad:67:
37:e2:87:d4:0e:bf:e4:b4:97:c9:10:07:99:e4:54:bb:53:2b:
b9:3a:cb:92:a4:7d:61:ba:76:53:0e:dd:96:f5:22:69:31:ff:
9a:1a:71:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 12:24:29 2024 by rpki-client on console-ams.rpki-client.org