Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYkRMAEE18WLMm5WZLPXmi1GRuA.cer
File: OYkRMAEE18WLMm5WZLPXmi1GRuA.cer (raw, json)
Hash identifier: C4n/2VETCcTVsgbnDraoyyarmATcCDIKw5jOdAWB4jQ=
Subject key identifier: 39:89:11:30:01:04:D7:C5:8B:32:6E:56:64:B3:D7:9A:2D:46:46:E0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021760
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 31 Oct 2024 17:34:48 +0000
Certificate not after: Sat 01 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 138167
IP: 103.121.224.0/22
IP: 2403:72c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137056 (0x21760)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 31 17:34:48 2024 GMT
Not After : Mar 1 00:00:00 2025 GMT
Subject: CN=A918F1C9/serialNumber=398911300104D7C58B326E5664B3D79A2D4646E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:20:b2:0f:65:13:ae:93:40:7a:3a:60:b6:8a:
7b:15:72:62:28:2f:d3:a0:ce:74:c3:18:36:f9:c7:
0e:c2:b9:8e:50:e7:5c:d6:4d:84:ab:5c:82:a3:fd:
bf:df:5f:0e:96:b1:ac:83:a5:e5:80:26:6f:5a:17:
c0:69:df:6d:7b:f4:2e:29:d1:ce:04:69:16:6e:fd:
0e:6e:88:aa:dc:04:50:43:b3:6a:8e:94:58:ed:4a:
18:db:82:e5:08:bd:d5:c4:cb:68:61:3e:f4:ec:96:
18:4f:70:db:bd:0f:b2:1b:47:12:d4:2b:2a:4a:ab:
71:50:41:2e:32:12:6f:a2:37:e0:4b:f7:03:4f:93:
2f:12:5e:0b:e2:8f:4a:99:59:56:4f:7c:76:7d:e2:
a5:cb:57:9a:1e:87:a6:58:3c:0d:50:d5:4c:61:07:
9d:84:ff:e4:d7:9b:5e:5d:25:4b:6b:50:9b:83:d8:
ed:d4:eb:50:c4:7e:85:a7:3b:3a:fd:c6:16:5d:79:
ee:34:89:b9:6b:f9:be:72:93:0b:8b:38:ff:5f:f2:
6a:1c:09:d4:be:d7:a6:cf:a1:56:5a:06:81:86:04:
cc:ff:c8:11:c4:5c:2d:5c:52:bd:53:6f:76:e7:cf:
57:2c:ef:cc:54:ac:6d:4e:8f:01:00:ce:a8:0c:76:
dd:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:89:11:30:01:04:D7:C5:8B:32:6E:56:64:B3:D7:9A:2D:46:46:E0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138167
sbgp-ipAddrBlock: critical
IPv4:
103.121.224.0/22
IPv6:
2403:72c0::/32
Signature Algorithm: sha256WithRSAEncryption
ba:7f:91:bc:c2:5b:99:12:5f:4f:66:d7:a4:24:3a:aa:0f:7f:
c1:56:dc:9f:17:8d:92:d4:41:24:58:70:e6:e7:71:a5:d6:a4:
0b:38:d9:ed:64:16:23:d2:7b:4d:30:5f:d1:11:bb:5d:d9:dc:
d6:28:d6:3a:58:b5:0c:41:3d:c0:4c:0f:a2:03:3e:77:af:89:
03:4c:30:5e:a4:95:46:e9:f6:4f:7c:8d:06:92:41:1b:bd:f8:
a1:f1:de:b5:0c:36:a4:be:0e:4e:83:bf:7c:d0:13:c3:2f:00:
ce:e6:88:97:ad:9e:14:f9:fb:75:9f:17:32:c1:a3:3f:99:0f:
71:63:cd:26:65:a2:29:0d:34:45:84:8d:50:d1:1b:c5:f1:bb:
79:6a:6e:b0:8c:f4:ec:b1:2b:e0:a0:64:92:4c:e5:9d:4c:ac:
ac:25:9f:08:ee:5d:e8:54:61:c0:c3:43:27:a1:25:17:3b:8c:
73:e0:90:4d:89:b5:25:18:a0:ea:82:3a:da:a6:a0:94:30:a8:
48:8b:4b:3c:15:41:3d:fe:e9:4f:71:52:4a:03:f3:44:7d:62:
5a:6b:82:88:92:cc:05:8a:19:8e:a0:c1:31:45:37:c9:6c:aa:
7d:13:e9:f7:6d:18:23:d1:2f:96:68:cd:ab:cd:1c:90:f1:dd:
f7:43:65:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:28 2024 by rpki-client on console-fra.rpki-client.org