Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer
File: YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer (raw, json)
Hash identifier: mFrW9y5OT67HVwTUvUs5KH9eJX/zwq28u6qKpmQCZ6U=
Subject key identifier: 61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020B22
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 02 Sep 2024 17:48:47 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 4643
AS: 4778
AS: 4794
AS: 4804
AS: 7474
AS: 9243
AS: 9250
AS: 9252
AS: 9257
AS: 9261
AS: 9279
AS: 9426
AS: 9438
AS: 9447
AS: 9473
AS: 9477
AS: 9480
AS: 9550
AS: 9553
AS: 9564
AS: 9624
AS: 9626
AS: 9668
AS: 9672
AS: 9682
AS: 9746
AS: 9932 -- 9933
AS: 9983
AS: 9985
AS: 10115
AS: 10119
AS: 10128
AS: 10134
AS: 10142
AS: 10150
AS: 10218
AS: 10221
AS: 10237
AS: 17461
AS: 17662
AS: 17719
AS: 17722
AS: 17738
AS: 17757
AS: 18102
AS: 18191
AS: 18208
AS: 18213
AS: 18430
AS: 23895
AS: 23909
AS: 23968
AS: 24340
AS: 24510
AS: 37931
AS: 38214
AS: 45206
AS: 45228
AS: 45623
AS: 56084
AS: 56104
IP: 1.44.0.0/16
IP: 59.154.0.0/16
IP: 61.88.0.0/16
IP: 119.225.0.0/16
IP: 123.102.0.0/16
IP: 124.19.0.0/17
IP: 125.63.128.0/17
IP: 202.2.56.0/22
IP: 202.139.0.0 -- 202.139.191.255
IP: 203.2.75.0/24
IP: 203.10.64.0/21
IP: 203.13.96.0 -- 203.13.143.255
IP: 203.16.64.0/18
IP: 203.17.138.0 -- 203.17.143.255
IP: 203.22.136.0/21
IP: 203.29.192.0/21
IP: 203.29.204.0/24
IP: 203.29.206.0/23
IP: 203.110.248.0/21
IP: 203.202.0.0 -- 203.202.191.255
IP: 210.0.0.0/19
IP: 220.101.0.0 -- 220.101.191.255
IP: 2405:9000::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 05:23:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133922 (0x20b22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 2 17:48:47 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ea:0b:54:d0:95:cb:cf:7a:42:e8:e6:a5:e3:
ef:aa:b7:af:64:33:49:35:92:6d:38:74:a7:e0:9b:
13:ec:7c:69:17:e5:e1:59:ea:d3:48:ba:8f:b8:1d:
0d:8e:c1:42:f4:80:e0:29:ed:ea:48:0b:78:52:d4:
51:73:4c:8b:0f:c4:b3:0b:1c:90:41:4b:7c:c1:e1:
c9:06:7f:47:33:7d:5d:aa:fc:0e:9e:b8:57:34:3e:
d3:fe:66:79:45:d4:a6:bd:6d:53:c8:23:c3:a0:95:
8a:43:43:3a:bc:14:75:35:55:b7:df:69:95:56:28:
31:b7:a5:aa:80:48:3b:55:f4:84:c2:44:23:82:8c:
99:7a:a0:7e:a4:3f:23:fa:d3:fa:2f:c3:6a:5e:ff:
59:60:ba:74:46:51:83:ca:4f:86:d0:12:e7:81:00:
ce:01:99:98:c5:15:67:9b:b6:c4:31:da:1e:bd:7b:
4d:3c:e1:fe:3c:89:b8:a4:eb:a9:64:86:e5:e1:c9:
4f:b9:c0:a7:ec:89:97:db:2e:a6:91:76:39:08:16:
cb:12:c9:49:87:2a:e7:50:13:41:d5:ab:ba:c9:09:
e9:41:e6:dd:2b:e1:37:30:8c:16:8f:1f:34:8f:bb:
6a:1d:1c:11:20:f9:a5:37:33:e0:08:ef:c4:ca:dd:
e4:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
4643
4778
4794
4804
7474
9243
9250
9252
9257
9261
9279
9426
9438
9447
9473
9477
9480
9550
9553
9564
9624
9626
9668
9672
9682
9746
9932-9933
9983
9985
10115
10119
10128
10134
10142
10150
10218
10221
10237
17461
17662
17719
17722
17738
17757
18102
18191
18208
18213
18430
23895
23909
23968
24340
24510
37931
38214
45206
45228
45623
56084
56104
sbgp-ipAddrBlock: critical
IPv4:
1.44.0.0/16
59.154.0.0/16
61.88.0.0/16
119.225.0.0/16
123.102.0.0/16
124.19.0.0/17
125.63.128.0/17
202.2.56.0/22
202.139.0.0-202.139.191.255
203.2.75.0/24
203.10.64.0/21
203.13.96.0-203.13.143.255
203.16.64.0/18
203.17.138.0-203.17.143.255
203.22.136.0/21
203.29.192.0/21
203.29.204.0/24
203.29.206.0/23
203.110.248.0/21
203.202.0.0-203.202.191.255
210.0.0.0/19
220.101.0.0-220.101.191.255
IPv6:
2405:9000::/32
Signature Algorithm: sha256WithRSAEncryption
55:ed:8d:ec:31:04:41:84:79:19:8a:06:6b:c9:dd:2f:b1:eb:
a9:ca:82:09:13:80:21:51:86:3b:34:c6:f3:29:6f:63:b3:bf:
1a:d9:ec:ae:2e:39:31:77:ef:3c:1e:5f:a8:fc:b2:9d:2f:fd:
ec:2d:39:be:da:68:87:29:4f:d7:60:d7:78:06:6c:9b:8f:b0:
18:29:07:28:78:6d:b4:d4:1c:56:a5:9c:44:af:d1:77:75:c5:
86:62:92:91:57:98:8e:86:7b:47:ef:95:ec:34:cc:a9:10:08:
ca:f8:01:f8:51:cf:05:0b:0a:39:03:be:08:a4:3c:23:24:f1:
40:75:89:ce:f4:ea:08:68:83:10:34:f4:8a:23:4d:ce:fa:5f:
c8:05:8b:18:3e:a7:02:cd:c1:cb:f4:49:a5:d2:7d:f9:76:82:
b0:7a:ab:38:a1:15:e6:67:ba:b6:dd:0e:47:91:92:2f:d1:af:
e6:31:5f:d0:71:48:a4:69:c7:40:91:4a:a0:1a:c9:65:17:8f:
fc:b0:f1:24:48:64:95:64:83:13:47:9f:c2:36:2d:9c:96:32:
5f:75:48:8f:09:cb:32:02:cd:44:c4:b3:50:fe:7e:94:df:b3:
66:59:3c:aa:48:63:f2:93:dc:ca:f7:dd:ae:a6:d0:26:35:f7:
bc:9c:95:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 06:36:59 2024 by rpki-client on console-ams.rpki-client.org