Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y6KavYf0of5Vy_Kg9Al1CsNKwjU.cer
File: Y6KavYf0of5Vy_Kg9Al1CsNKwjU.cer (raw, json)
Hash identifier: wAHO4kj97uxp2+0kNPdk9/Bw7JKyGOlOQ9hFHK1RtmY=
Subject key identifier: 63:A2:9A:BD:87:F4:A1:FE:55:CB:F2:A0:F4:09:75:0A:C3:4A:C2:35
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020226
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DCDB3/9305D2E082AF11EEBEC59759C4F9AE02/Y6KavYf0of5Vy_Kg9Al1CsNKwjU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DCDB3/9305D2E082AF11EEBEC59759C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 24 Jul 2024 22:27:08 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 9651
IP: 103.29.104.0/23
IP: 103.250.42.0/23
IP: 2001:df2:1200::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131622 (0x20226)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 24 22:27:08 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91DCDB3/serialNumber=63A29ABD87F4A1FE55CBF2A0F409750AC34AC235
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:64:a9:b4:d2:c5:fb:8b:ff:db:8e:1f:9e:a5:
3e:79:db:30:e5:1d:2c:52:df:d6:9a:a5:2e:30:c4:
56:8b:f0:20:cb:c5:a4:f1:82:a7:cd:ff:a9:99:86:
e3:b3:a4:91:16:c2:e7:27:6a:1b:d1:1c:6f:09:02:
3f:35:3b:e8:df:cb:bc:b5:57:78:b2:5a:39:fe:bc:
d4:8a:c4:2f:5c:85:54:ba:47:fa:12:b1:2d:a1:0a:
7b:cb:3f:c1:9c:14:c4:a9:9f:dc:12:33:e5:53:e4:
f6:e3:8d:ef:bc:fe:9d:12:04:7a:1e:78:a9:1d:99:
b1:8d:01:dd:74:dd:44:1b:d1:be:a7:7f:46:63:a8:
a5:76:b9:05:2e:7d:8a:9e:fc:0b:06:bc:56:b7:b6:
32:fd:82:48:be:a3:22:ec:3b:99:67:ef:39:36:7d:
2f:2f:ac:6c:f3:1f:bd:02:1a:30:d3:a2:92:f0:c8:
df:64:1b:95:6c:d1:f9:f4:bb:50:74:f3:d4:64:bd:
a8:a1:1b:a8:93:d1:66:fe:a3:b2:b9:f6:4a:3a:5c:
f0:b1:9f:34:4d:af:9b:c4:d0:ee:d3:ca:84:bc:10:
d2:a6:05:03:e9:be:d7:99:86:bf:83:98:57:d3:f8:
40:ff:0b:d7:a7:51:a9:af:9c:aa:ac:77:8d:65:4d:
7b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:A2:9A:BD:87:F4:A1:FE:55:CB:F2:A0:F4:09:75:0A:C3:4A:C2:35
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DCDB3/9305D2E082AF11EEBEC59759C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DCDB3/9305D2E082AF11EEBEC59759C4F9AE02/Y6KavYf0of5Vy_Kg9Al1CsNKwjU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9651
sbgp-ipAddrBlock: critical
IPv4:
103.29.104.0/23
103.250.42.0/23
IPv6:
2001:df2:1200::/48
Signature Algorithm: sha256WithRSAEncryption
a2:de:c2:f4:05:d1:89:04:dd:cf:e6:c8:1c:f7:52:3a:d3:3c:
85:f0:75:7e:72:7b:c2:c1:bd:a6:6f:db:96:bf:30:53:8a:a4:
f4:fd:00:a5:bd:5d:cb:42:ea:0b:f6:f5:b2:ae:81:01:e6:90:
83:a2:a6:e6:33:c7:b0:04:f9:a4:36:ce:07:01:3f:6e:ee:25:
56:fe:8e:a8:e5:fa:fb:44:15:54:ea:ac:67:0a:01:e1:22:3e:
12:e2:c9:e0:90:eb:a1:eb:23:55:cb:95:9a:ad:94:f6:af:ae:
be:74:d4:6a:5f:50:2d:62:82:36:88:b4:04:d7:aa:c3:9f:b6:
26:75:02:4f:3c:fc:a5:36:31:5c:d6:1e:33:35:2c:f5:1d:cb:
d7:1b:63:06:06:93:a2:f2:c9:4b:98:0a:5e:73:67:9c:41:2f:
3f:0c:cd:13:cf:27:60:ed:42:38:2f:d8:39:f4:a9:26:55:c2:
ee:60:fa:99:a3:71:dc:68:9a:55:be:ac:b9:e4:2c:d2:47:73:
cd:c6:05:a7:9a:39:d1:37:c1:93:bf:5e:fa:66:bf:a1:51:39:
02:c9:34:05:81:ca:1c:95:66:49:87:36:a9:d5:fd:df:78:49:
67:b8:bf:ee:75:fc:e0:ea:98:56:c3:52:b8:03:3f:9e:72:23:
51:d2:33:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:35 2024 by rpki-client on console-fra.rpki-client.org