Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xvcvm-Tjoo3jVp523i0iJdvz_Yo.cer
File: Xvcvm-Tjoo3jVp523i0iJdvz_Yo.cer (raw, json)
Hash identifier: ++eMVfvX2Wn7M6eFybTPIwRxAzdp3r0W/Ataaw4BZss=
Subject key identifier: 5E:F7:2F:9B:E4:E3:A2:8D:E3:56:9E:76:DE:2D:22:25:DB:F3:FD:8A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D2C7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DB63B/2E2CEA169F4611EA988D0B65C4F9AE02/Xvcvm-Tjoo3jVp523i0iJdvz_Yo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DB63B/2E2CEA169F4611EA988D0B65C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 18 Dec 2023 23:58:34 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 38084
AS: 55922
IP: 103.72.88.0/24
IP: 103.108.168.0/22
IP: 203.27.21.0/24
IP: 210.48.208.0/21
IP: 2406:7600::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119495 (0x1d2c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 18 23:58:34 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91DB63B/serialNumber=5EF72F9BE4E3A28DE3569E76DE2D2225DBF3FD8A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:91:56:ec:b9:1e:dc:56:9f:20:c1:57:7b:b6:
ef:c0:e6:eb:89:e8:74:83:3a:5b:64:c3:24:89:8c:
aa:73:f9:e9:db:59:4e:02:5b:36:13:e0:6c:bf:d4:
08:e6:50:95:8f:67:aa:86:e6:e5:39:2f:09:99:10:
61:fc:81:67:11:ff:6d:bc:0b:88:d0:1d:4d:3f:24:
a0:72:1f:bd:31:62:21:f0:69:fa:92:b1:d1:08:db:
c4:7e:ed:d3:4d:26:83:4a:da:ed:ba:80:03:98:b5:
1b:0a:2f:25:56:02:e9:5a:83:c1:37:0d:84:5b:89:
44:68:18:63:22:28:d6:d2:07:9d:4d:ab:61:22:c3:
e0:54:9a:06:c1:d2:86:2f:ed:8f:95:86:12:97:1f:
74:97:b8:b9:5a:3e:37:29:45:68:88:cd:94:31:7c:
2c:32:ac:dd:90:b2:e5:e6:da:63:62:40:d1:ba:17:
94:2b:c8:44:7c:23:98:e8:87:fd:9e:79:d2:e6:47:
08:ea:be:14:98:24:69:f4:b8:c0:04:5d:67:65:b0:
c1:12:81:37:86:74:8c:63:b3:78:cd:34:50:e7:df:
80:42:eb:00:45:58:33:87:ae:56:9e:20:90:0f:ba:
5f:75:3b:b3:7d:a5:ca:ee:96:b8:0d:fe:86:fc:8c:
5d:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:F7:2F:9B:E4:E3:A2:8D:E3:56:9E:76:DE:2D:22:25:DB:F3:FD:8A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DB63B/2E2CEA169F4611EA988D0B65C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DB63B/2E2CEA169F4611EA988D0B65C4F9AE02/Xvcvm-Tjoo3jVp523i0iJdvz_Yo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38084
55922
sbgp-ipAddrBlock: critical
IPv4:
103.72.88.0/24
103.108.168.0/22
203.27.21.0/24
210.48.208.0/21
IPv6:
2406:7600::/32
Signature Algorithm: sha256WithRSAEncryption
9c:3e:b1:29:43:27:53:7f:1b:fc:52:3f:87:fe:c2:b8:53:86:
18:e8:39:98:34:54:f1:54:b2:a0:e9:b8:53:ee:ef:9e:8e:82:
af:ce:b7:b9:3d:d7:cf:6f:a4:46:10:03:5c:05:08:f5:fe:aa:
89:a4:7f:cf:bb:0b:29:c6:c1:93:d0:1a:89:e3:e0:fb:71:bb:
61:3e:0f:4f:84:a2:33:56:4c:29:f2:97:96:f1:e2:63:b8:24:
d9:0f:48:0b:ff:8f:bf:30:98:80:f1:3b:c8:bf:da:8b:d5:16:
71:cc:ee:56:14:7d:a6:56:82:9a:d9:f6:96:a8:c7:ff:34:3a:
d5:5c:28:3b:e7:1a:95:c0:0b:fc:15:aa:b6:d1:0b:7e:d0:2e:
90:ea:63:18:13:aa:aa:90:3c:6f:2e:07:1f:a5:26:02:16:c1:
dc:66:bd:55:6c:ce:16:b3:56:91:06:26:03:79:6d:3c:88:65:
60:76:00:aa:ff:11:25:50:c0:78:ce:65:9d:2e:bd:5b:c4:4c:
25:0d:28:69:e1:21:12:d0:e1:73:d6:ac:7e:c1:a2:2c:d8:e2:
50:f4:c3:c3:1b:c9:fb:05:a6:5d:82:9f:ca:cc:08:32:ad:28:
17:2c:f6:f7:ff:6d:3c:0f:22:5e:31:8b:31:62:50:8b:e4:80:
b4:c8:32:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 03:57:55 2024 by rpki-client on console-fra.rpki-client.org