Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer
File: XsGmrXajq_3B4TKesmN8AYZLSAg.cer (raw, json)
Hash identifier: ZKFTh0wlkb/pqyxeOCdYgVk1DpEBEcfU0uja8mLMgdE=
Subject key identifier: 5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BAA7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 31 Aug 2023 20:52:53 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 38193
AS: 45843
IP: 110.93.192.0/18
IP: 117.20.16.0/20
IP: 119.63.128.0/20
IP: 221.132.112.0/21
IP: 2404:d400::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 23 Apr 2024 21:40:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113319 (0x1baa7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 31 20:52:53 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91AB20B/serialNumber=5EC1A6AD76A3ABFDC1E1329EB2637C01864B4808
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:8d:8f:ea:a0:0c:77:d4:d6:e3:e6:38:72:1e:
bf:ed:ad:df:b0:ce:2b:72:f9:17:f8:f9:84:4d:64:
88:b9:d2:ce:1c:20:7e:8a:d1:e7:d4:ce:e4:7b:2d:
e0:46:2d:c1:4c:81:23:b4:8b:7d:b3:28:24:03:3f:
46:09:86:b4:31:6d:4a:c1:e2:78:9b:f9:ea:1d:19:
23:20:56:eb:7e:ba:1f:40:11:8f:c8:2f:39:d9:7e:
12:ce:11:68:46:dd:2e:e5:b9:8c:89:f9:fa:88:c3:
0b:9d:7e:1c:f4:e9:f2:22:e2:2e:90:88:dd:68:1f:
7a:80:23:c5:b7:d5:9b:33:4a:0f:70:75:59:dd:fa:
17:d2:22:d4:a4:68:f7:c5:74:43:e3:4d:73:ca:39:
63:6b:c6:1f:b5:68:f8:17:42:55:58:31:2b:ce:39:
15:de:28:75:fb:a7:9d:28:3e:5a:23:49:73:d1:49:
39:92:b4:56:9b:76:22:f6:c1:d6:37:d1:c5:d5:ca:
97:3a:76:65:d3:3c:ef:27:fc:a9:3a:22:df:3e:0b:
e1:1e:73:44:d4:74:c1:19:fa:51:3c:57:5e:f6:ab:
51:09:88:f2:9a:85:34:3e:26:e1:6a:cb:f1:2d:3e:
ac:29:f8:15:d4:98:fa:15:7d:ed:a6:25:fc:d1:48:
27:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38193
45843
sbgp-ipAddrBlock: critical
IPv4:
110.93.192.0/18
117.20.16.0/20
119.63.128.0/20
221.132.112.0/21
IPv6:
2404:d400::/32
Signature Algorithm: sha256WithRSAEncryption
14:c5:ec:eb:ab:84:34:4d:79:62:20:57:11:42:57:0d:d4:37:
9b:28:6e:07:6f:2e:cd:88:c2:5c:2c:b9:b9:d2:cc:f7:ce:8f:
e3:22:60:64:85:32:9b:93:59:cf:47:44:79:dc:c8:8a:13:d4:
60:25:1b:83:f3:37:4a:44:38:37:86:0f:ec:0b:c0:44:dc:5d:
c9:e9:0a:2b:3b:ca:96:41:54:46:a3:99:b7:04:85:03:66:ff:
38:3e:d3:f0:b0:6c:7a:b6:bd:81:4d:24:7f:c9:8e:f0:b2:77:
19:fe:44:c3:6e:1c:c0:87:f2:fb:49:d2:cd:bd:3c:8d:61:ba:
84:4a:5d:1d:5f:51:30:d2:9c:a6:8f:0e:1f:70:94:4e:7e:22:
4a:2b:4d:b8:bd:2a:9a:da:03:62:02:32:65:72:22:48:db:e5:
0b:c5:8e:53:4b:b9:71:74:b0:b6:8c:7a:eb:b6:13:b8:df:f8:
10:05:83:f8:99:11:64:42:21:1a:83:44:d3:00:3a:a3:26:25:
f4:18:84:41:0a:a7:ff:65:50:a7:1c:34:35:db:f3:77:cd:e8:
0a:5f:14:66:38:85:3b:29:34:be:24:bf:30:d4:76:04:b4:e2:
74:e0:a6:c2:01:ad:05:fd:36:58:6b:ec:3b:89:1d:6f:b9:9d:
ec:39:5e:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 16 22:47:42 2024 by rpki-client on console-ams.rpki-client.org