Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PGUVJLT5GjUNHs-7pmyr0bSPt8U.cer
File: PGUVJLT5GjUNHs-7pmyr0bSPt8U.cer (raw, json)
Hash identifier: tJdwyCeevwO2zPHd38wVeh2LV1OGUqB6qO/9Qn6AcSU=
Subject key identifier: 3C:65:15:24:B4:F9:1A:35:0D:1E:CF:BB:A6:6C:AB:D1:B4:8F:B7:C5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021718
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 31 Oct 2024 06:13:08 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 150788
IP: 103.203.240.0/24
IP: 103.206.98.0/24
IP: 203.0.139.0/24
IP: 2001:de6::/32
IP: 2001:df2:10c0::/48
IP: 2400:e760::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136984 (0x21718)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 31 06:13:08 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A914D2E1/serialNumber=3C651524B4F91A350D1ECFBBA66CABD1B48FB7C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f6:6f:2a:64:71:5f:f2:9b:a9:59:13:15:a9:
c9:91:96:62:f2:c0:79:b9:09:ce:ee:c1:e1:2d:bf:
5c:2a:6a:16:c8:29:e7:5d:37:d4:75:82:b6:cb:fe:
9c:bf:ee:93:30:f0:7f:9a:8d:c1:3c:fd:98:b2:04:
64:64:17:7b:f2:ed:c5:1b:18:3a:b9:69:5e:ae:46:
38:63:d3:c0:42:49:87:ac:ca:4e:b6:d5:92:a4:df:
5c:2b:ef:86:92:75:7b:d6:e5:ef:d3:e1:f0:ae:ff:
83:1c:13:26:d0:2e:c2:c2:25:f2:ea:9e:11:1d:73:
47:57:aa:25:7e:4f:6c:49:ef:d6:6e:f1:7e:81:81:
23:4c:94:ad:b2:ef:58:5b:18:a3:0f:b5:79:f4:cf:
e8:c6:3b:12:a5:ba:0d:51:ee:eb:e6:37:e6:16:f9:
49:f1:bf:6f:7b:1b:c6:fb:5c:ff:0b:29:2c:0d:24:
25:1c:f1:07:36:3f:03:ca:2b:76:90:28:ab:f5:40:
42:29:fb:81:bb:e5:cf:37:5e:9e:73:ec:6e:ab:18:
79:ec:b7:ab:0a:8c:c3:e9:90:6c:c4:aa:9f:6c:ff:
e1:1d:c7:8a:bd:77:ce:27:91:ce:f6:8c:8e:36:76:
00:6f:29:db:1c:63:e3:b8:07:0d:18:68:76:1f:9e:
bd:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:65:15:24:B4:F9:1A:35:0D:1E:CF:BB:A6:6C:AB:D1:B4:8F:B7:C5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914D2E1/DA86B616BA6E11EDB9CEA43AC4F9AE02/PGUVJLT5GjUNHs-7pmyr0bSPt8U.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150788
sbgp-ipAddrBlock: critical
IPv4:
103.203.240.0/24
103.206.98.0/24
203.0.139.0/24
IPv6:
2001:de6::/32
2001:df2:10c0::/48
2400:e760::/32
Signature Algorithm: sha256WithRSAEncryption
67:ba:9a:71:3c:e0:3b:6e:7f:24:96:8a:77:ba:c4:09:a1:a2:
b0:2d:1b:27:63:a3:4b:2f:bc:0d:8b:8f:78:f3:1f:1a:76:69:
79:f2:83:22:ed:9e:78:ee:b1:9a:22:b7:11:57:7a:4b:77:13:
6e:ea:ca:13:20:33:6c:aa:b9:ae:8f:25:91:87:40:52:33:8d:
11:bd:a8:34:85:33:dd:6d:ab:b9:01:5a:43:81:a6:c7:01:df:
ea:17:61:43:ae:b8:d3:e0:b9:f8:fb:aa:da:d9:64:f8:fd:ae:
c1:ce:9e:4e:a8:be:df:7d:fe:06:88:b4:cd:c8:d6:6d:16:37:
a0:09:77:d3:1a:04:e6:a5:72:9a:3e:03:be:5d:9e:56:a3:6f:
92:d7:df:a2:38:1e:45:2e:2b:e4:a0:38:89:59:2e:d3:3a:0c:
0f:ef:b5:fa:73:d0:e7:bc:d1:38:13:67:55:f6:96:ff:27:96:
3a:3e:d0:18:19:45:59:c4:e4:fb:1a:74:ac:39:8e:61:a9:f5:
7c:14:f8:c4:12:77:f8:a3:5c:da:eb:ca:75:4c:aa:7b:76:4b:
04:9a:82:ef:d6:e5:d4:52:f7:1b:53:ea:79:69:48:e4:13:b5:
14:e7:f5:3f:d4:a3:2e:4d:39:dd:b6:d9:ce:b8:ef:b8:6e:9b:
a3:7c:d5:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 04:07:44 2024 by rpki-client on console-ams.rpki-client.org