Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPuiiRbqwHsjWQlIVdieFqCBS6w.cer
File: XPuiiRbqwHsjWQlIVdieFqCBS6w.cer (raw, json)
Hash identifier: 9fq9Qboa0k7OdpfbAcbJzfaym40TTT1X2IIMJR0PVFA=
Subject key identifier: 5C:FB:A2:89:16:EA:C0:7B:23:59:09:48:55:D8:9E:16:A0:81:4B:AC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EB90
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 15 Apr 2024 18:05:15 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 55497
IP: 59.153.40.0/22
IP: 103.4.114.0/23
IP: 103.198.32.0/23
IP: 202.9.66.0/23
IP: 2401:ef00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 03 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125840 (0x1eb90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 15 18:05:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A918E843/serialNumber=5CFBA28916EAC07B2359094855D89E16A0814BAC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:da:7d:99:8a:d9:ec:16:e6:bb:20:44:80:2c:
72:0d:22:69:a3:7f:59:d0:7b:ba:91:a4:a2:6e:f8:
29:68:5f:81:0d:db:06:14:14:31:bb:e7:aa:5c:dc:
b8:de:6e:8f:7c:83:2d:41:fc:c2:78:15:c6:c1:35:
15:86:d4:7f:11:03:00:81:36:33:92:3d:52:f7:ed:
99:f0:48:41:dc:a4:6e:62:2e:fe:70:ce:6d:e2:ff:
81:4a:cb:e0:ce:8a:4b:07:f3:65:8b:04:ce:b4:3b:
6b:b6:1e:43:b4:ab:ad:72:bc:74:4a:8c:4e:0e:27:
4a:0e:24:88:8d:01:40:bc:71:d0:80:13:9b:6f:34:
d3:47:f7:bf:1c:e6:0d:f6:df:1d:71:e2:5c:e1:e7:
fb:36:d8:ed:8b:38:12:88:2c:ec:0c:9c:49:43:bf:
f1:80:b8:51:68:77:e0:34:a1:59:3c:46:f1:2c:4e:
cb:c0:09:d4:05:51:be:3f:e1:98:2a:ce:2c:31:8d:
75:39:58:70:10:6f:e7:98:c2:6e:94:e7:11:c0:30:
23:78:3a:a2:5b:e7:e0:44:b5:f8:7a:35:8e:d4:39:
f3:95:bf:69:04:89:76:b0:0b:6b:f3:7e:34:6d:1a:
af:6f:de:fc:4a:02:90:1b:0b:a0:c8:00:17:8f:f5:
24:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:FB:A2:89:16:EA:C0:7B:23:59:09:48:55:D8:9E:16:A0:81:4B:AC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918E843/957BCB44395F11EABB854755C4F9AE02/XPuiiRbqwHsjWQlIVdieFqCBS6w.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55497
sbgp-ipAddrBlock: critical
IPv4:
59.153.40.0/22
103.4.114.0/23
103.198.32.0/23
202.9.66.0/23
IPv6:
2401:ef00::/32
Signature Algorithm: sha256WithRSAEncryption
8f:cd:65:0d:58:9c:33:0e:1a:d2:fc:d5:a0:b3:1e:8d:d3:7f:
e8:25:c6:da:4b:9c:e8:10:3b:d3:92:89:d0:a2:96:63:45:b6:
9c:f9:2f:c2:53:2f:bc:ab:6f:5b:06:f7:b9:c7:ef:c2:32:66:
f1:9c:79:a1:41:68:26:4b:4a:1e:a4:e1:ea:4b:d2:55:1c:75:
e1:97:11:d4:ad:6d:53:d1:b0:c3:99:ea:c7:35:09:5a:68:05:
22:46:7d:ed:3a:25:e1:1c:a5:f5:55:1a:2a:fc:a7:8d:53:20:
b6:d1:c5:34:98:26:eb:62:bf:29:11:de:cf:8a:dd:1b:ae:ac:
14:71:aa:25:2f:d4:8a:5f:31:a5:0a:74:28:09:6e:26:fd:f6:
08:8f:c8:c1:d5:67:4e:f3:d9:e6:33:0d:61:cb:0b:20:98:69:
32:a4:38:87:56:6c:50:9a:6c:72:96:dd:a2:2f:0e:95:95:da:
9a:cb:12:f3:de:36:ed:31:8b:3b:c2:51:3d:b0:50:fa:37:87:
da:3f:90:35:65:64:e6:85:98:51:c2:3d:39:b0:2b:b5:05:35:
8f:b9:b4:2d:00:c0:09:d7:e7:47:5d:3f:0d:66:a9:27:28:32:
bf:84:85:75:cc:3e:b0:49:d8:00:7b:34:e6:f3:2c:e3:f5:b2:
51:3d:fb:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 04:55:46 2024 by rpki-client on console-ams.rpki-client.org