Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qg2MLsPSR5xUI6v_dHgriopLfeo.cer
File: Qg2MLsPSR5xUI6v_dHgriopLfeo.cer (raw, json)
Hash identifier: H4NaKPia/GzLPqijFTsLmQWyHYCLU/1V/uZWjpMMYHA=
Subject key identifier: 42:0D:8C:2E:C3:D2:47:9C:54:23:AB:FF:74:78:2B:8A:8A:4B:7D:EA
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E855
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/Qg2MLsPSR5xUI6v_dHgriopLfeo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 01 Apr 2024 19:40:24 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 132220
IP: 45.125.152.0/22
IP: 45.248.16.0/22
IP: 45.250.232.0/22
IP: 103.7.148.0/22
IP: 103.216.52.0/22
IP: 157.119.176.0/22
IP: 183.87.160.0/19
IP: 183.87.193.0 -- 183.87.211.255
IP: 2403:7100::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125013 (0x1e855)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 1 19:40:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A9182F75/serialNumber=420D8C2EC3D2479C5423ABFF74782B8A8A4B7DEA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:91:41:bc:55:81:a1:bf:75:38:d6:70:1b:81:
d3:08:66:c5:91:b3:11:e5:a0:fc:2e:f2:fd:82:ef:
9d:d8:9d:b0:4e:05:bd:4f:8b:19:5b:c6:a2:2e:12:
a3:e1:82:dc:d2:1b:be:d8:10:6f:dd:db:da:0b:db:
7d:db:0c:ae:82:44:f0:10:10:97:99:e2:9d:02:f2:
f7:b2:34:1e:21:c9:c1:69:58:ce:2d:0b:64:75:41:
2b:e6:29:43:d3:47:68:14:9d:83:24:e0:26:0a:5c:
3c:b3:b8:f8:22:82:9c:2a:cd:1f:56:dc:10:cb:d9:
d6:c4:fe:df:ec:79:29:32:af:4e:e2:b9:b5:fa:cf:
1e:d8:20:92:b9:3a:36:6d:65:f5:47:3f:f9:9f:fc:
c9:6d:4a:3f:e9:c4:f9:ba:a7:e0:52:55:b2:34:e3:
db:97:3a:2e:fe:df:dc:5d:4a:25:27:65:96:1c:d9:
de:f4:11:9b:4e:48:c1:76:da:72:f3:91:b4:f9:c5:
ce:4a:8d:d5:d2:b0:6a:99:ac:a3:05:41:d9:70:84:
cd:76:42:0a:99:33:cc:36:7f:e7:53:fa:5e:02:a8:
cb:56:78:c9:af:1a:8f:43:68:9b:ab:33:28:36:48:
e2:b6:2f:5b:cd:6b:15:42:80:d8:c8:d8:d7:1b:ec:
12:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:0D:8C:2E:C3:D2:47:9C:54:23:AB:FF:74:78:2B:8A:8A:4B:7D:EA
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/Qg2MLsPSR5xUI6v_dHgriopLfeo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132220
sbgp-ipAddrBlock: critical
IPv4:
45.125.152.0/22
45.248.16.0/22
45.250.232.0/22
103.7.148.0/22
103.216.52.0/22
157.119.176.0/22
183.87.160.0/19
183.87.193.0-183.87.211.255
IPv6:
2403:7100::/32
Signature Algorithm: sha256WithRSAEncryption
cc:d2:64:d8:42:b6:c0:3f:27:1b:61:f1:30:99:6a:ac:6b:32:
2f:89:7a:ce:fb:25:e9:75:74:ec:1e:4e:c2:e5:7d:c0:96:47:
a8:35:33:dd:34:ca:df:e9:ed:6d:d2:41:a2:0c:17:f3:d5:5b:
4b:d9:61:75:d6:c4:b9:e0:a3:66:3c:1c:c3:94:9b:cc:71:52:
eb:b5:55:34:cb:70:3f:6b:32:5c:cf:37:52:7c:88:eb:e9:1a:
92:33:dc:97:1e:f8:67:ea:76:f5:9d:b5:61:01:f0:ee:e5:5f:
ed:f2:ae:9b:dd:58:c1:73:ad:05:d6:60:98:2c:b0:9a:8b:8d:
61:f3:a9:07:a0:c1:d5:0a:99:4a:59:c4:7a:69:63:ac:40:9c:
ae:4f:ba:52:a6:d1:03:10:ee:4a:6f:4c:90:3d:b8:aa:f3:24:
34:d2:e6:42:b3:dd:ea:aa:18:92:53:a3:e2:21:17:9c:b0:dc:
ea:19:cd:d2:f0:64:d7:f9:ec:19:06:82:24:1c:c9:9c:76:03:
38:cc:6f:be:99:37:cd:84:35:6e:0f:93:1c:da:1a:77:2e:20:
73:e9:69:5d:00:b7:99:27:54:11:c6:91:78:b9:c7:21:8c:c5:
cb:6f:bb:2e:4b:48:8e:c6:c5:d0:2f:5a:73:47:e2:9e:40:34:
16:a9:fb:bf
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:22 2024 by rpki-client on console-fra.rpki-client.org