Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer
File: XsGmrXajq_3B4TKesmN8AYZLSAg.cer (raw, json)
Hash identifier: 2DHckLUjV7f5rbGBOyH6My16eBTlYf1meCkV1siLnzk=
Subject key identifier: 5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021C85
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 20 Nov 2024 12:48:19 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 38193
AS: 45843
IP: 103.86.38.0/23
IP: 103.92.20.0/22
IP: 110.93.192.0/18
IP: 117.20.16.0/20
IP: 119.63.128.0/20
IP: 221.132.112.0/21
IP: 2404:d400::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138373 (0x21c85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 20 12:48:19 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91AB20B/serialNumber=5EC1A6AD76A3ABFDC1E1329EB2637C01864B4808
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:8d:8f:ea:a0:0c:77:d4:d6:e3:e6:38:72:1e:
bf:ed:ad:df:b0:ce:2b:72:f9:17:f8:f9:84:4d:64:
88:b9:d2:ce:1c:20:7e:8a:d1:e7:d4:ce:e4:7b:2d:
e0:46:2d:c1:4c:81:23:b4:8b:7d:b3:28:24:03:3f:
46:09:86:b4:31:6d:4a:c1:e2:78:9b:f9:ea:1d:19:
23:20:56:eb:7e:ba:1f:40:11:8f:c8:2f:39:d9:7e:
12:ce:11:68:46:dd:2e:e5:b9:8c:89:f9:fa:88:c3:
0b:9d:7e:1c:f4:e9:f2:22:e2:2e:90:88:dd:68:1f:
7a:80:23:c5:b7:d5:9b:33:4a:0f:70:75:59:dd:fa:
17:d2:22:d4:a4:68:f7:c5:74:43:e3:4d:73:ca:39:
63:6b:c6:1f:b5:68:f8:17:42:55:58:31:2b:ce:39:
15:de:28:75:fb:a7:9d:28:3e:5a:23:49:73:d1:49:
39:92:b4:56:9b:76:22:f6:c1:d6:37:d1:c5:d5:ca:
97:3a:76:65:d3:3c:ef:27:fc:a9:3a:22:df:3e:0b:
e1:1e:73:44:d4:74:c1:19:fa:51:3c:57:5e:f6:ab:
51:09:88:f2:9a:85:34:3e:26:e1:6a:cb:f1:2d:3e:
ac:29:f8:15:d4:98:fa:15:7d:ed:a6:25:fc:d1:48:
27:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38193
45843
sbgp-ipAddrBlock: critical
IPv4:
103.86.38.0/23
103.92.20.0/22
110.93.192.0/18
117.20.16.0/20
119.63.128.0/20
221.132.112.0/21
IPv6:
2404:d400::/32
Signature Algorithm: sha256WithRSAEncryption
ca:de:98:01:6a:9e:3d:3a:32:a6:c9:65:38:44:a0:6b:82:d4:
e6:81:64:3e:c8:c8:08:33:92:f4:a5:ac:8d:a4:e4:57:7a:9e:
17:b8:fd:c6:9b:35:a8:3e:3e:3e:ac:f1:c7:5f:e0:cd:ef:54:
03:4a:85:7f:c2:6a:6c:1d:97:c7:ff:a1:15:ff:63:48:f5:e5:
db:11:b7:3a:91:38:d9:0f:69:63:f8:b6:34:84:82:de:c1:f8:
d6:26:6a:10:67:26:eb:43:3a:52:2e:d5:39:82:db:78:e9:0f:
15:94:93:c1:15:f2:5e:9e:76:d1:90:46:0b:65:f2:9c:0d:c7:
75:c4:6f:0e:e2:e4:a9:20:d2:ee:d7:cc:4e:2b:5d:78:f1:96:
f9:15:c8:aa:94:2e:e4:9a:72:bf:16:4b:9f:70:ad:8a:c5:f6:
82:a3:98:05:39:d4:b0:5c:32:e6:fd:0f:e5:96:87:1b:a1:a0:
c6:75:94:11:55:79:58:dd:4c:8b:a5:1f:e1:a7:79:9f:e3:31:
03:c0:a6:09:48:4d:e7:25:eb:3f:11:0b:79:a3:b9:a2:53:66:
4f:c8:bc:0e:63:e1:00:41:2c:bc:a2:df:20:a4:b2:d1:c5:f2:
5d:06:59:ff:60:2a:5c:26:e4:02:3d:5b:43:9b:3d:80:b9:20:
95:c3:74:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:15:29 2024 by rpki-client on console-ams.rpki-client.org