Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer
File: Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer (raw, json)
Hash identifier: s6VXlAZIFAzNFyYYTa6qYKqlvxhwtXLRa4OpCiYom+M=
Subject key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DC7E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 01 Feb 2024 07:05:36 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 7470
AS: 17468
AS: 17552
AS: 17556
AS: 18197
AS: 23717
AS: 23891
AS: 24042
AS: 24067
AS: 24128
AS: 24562
AS: 37977
AS: 38002
AS: 38081 -- 38082
AS: 38543
AS: 38554
AS: 38599
AS: 45199 -- 45200
AS: 45805 -- 45807
AS: 55476
AS: 55498
AS: 55538
AS: 55549
AS: 55554
AS: 55646
AS: 55790
AS: 55844
AS: 55867 -- 55868
AS: 58544
AS: 58692
AS: 58806
AS: 58924
AS: 131162
AS: 132009
AS: 132013
AS: 132063
AS: 132545
AS: 132605
AS: 133063
AS: 133113
AS: 133167
AS: 133376
AS: 133529
AS: 133761
AS: 133764
AS: 133791
AS: 133907
AS: 133956
AS: 134095
AS: 134438
AS: 134682
AS: 136182
AS: 136579
AS: 139295
AS: 151337
AS: 151808
AS: 151825
AS: 152130
IP: 27.123.16.0/22
IP: 27.145.0.0/16
IP: 58.8.0.0/14
IP: 58.97.0.0/17
IP: 61.90.0.0/15
IP: 103.3.176.0/22
IP: 110.168.0.0/14
IP: 113.21.240.0/21
IP: 114.109.0.0/16
IP: 115.87.0.0/16
IP: 116.206.112.0/22
IP: 119.46.0.0/16
IP: 119.76.0.0/16
IP: 122.144.24.0/21
IP: 124.120.0.0 -- 124.122.255.255
IP: 171.96.0.0/13
IP: 182.17.0.0/16
IP: 202.71.112.0/20
IP: 202.93.48.0/20
IP: 202.133.128.0/18
IP: 202.176.64.0 -- 202.176.191.255
IP: 203.118.64.0/18
IP: 203.144.128.0/17
IP: 203.153.128.0/20
IP: 210.86.128.0 -- 210.86.223.255
IP: 210.213.0.0/18
IP: 2001:fb0::/31
IP: 2405:4000::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 30 Apr 2024 21:54:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121982 (0x1dc7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 1 07:05:36 2024 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f9:05:65:b8:0b:29:02:55:db:25:62:a8:4a:
3f:18:a7:cc:c7:59:7b:bc:c7:13:20:f5:43:fe:7c:
dc:70:5c:e8:ef:22:ef:46:e1:80:24:af:b7:c5:a3:
fd:b6:40:d9:40:e1:3a:02:da:d6:06:e8:2d:d4:01:
1b:eb:9a:27:c3:1e:a2:bf:b8:66:4e:c3:43:29:93:
61:ab:62:b4:6d:f5:07:fe:66:97:4c:9d:f8:1c:a0:
6a:d2:a9:f6:2c:56:75:0c:62:ea:3e:61:48:24:27:
07:ed:73:0d:89:6e:1a:41:c6:fd:02:b5:eb:4c:ec:
9f:53:9f:5d:03:9b:de:59:81:aa:07:6b:69:b4:d1:
bf:48:d4:64:ef:bc:e1:a3:fc:1b:0a:75:12:b6:d5:
55:14:c5:f9:4c:bd:59:21:43:9f:ab:c7:ec:aa:bb:
3b:60:6f:b5:8f:20:5b:4e:c0:aa:de:62:f1:4e:ec:
43:f4:f5:d1:a6:81:6b:11:5c:88:26:94:10:98:df:
63:7c:30:6b:04:52:f7:13:cd:4e:f7:7c:b7:7e:8e:
c8:c9:32:9e:09:ef:f4:54:99:5e:2d:73:74:d1:31:
35:0c:17:8b:72:a0:5a:b1:a4:02:49:cb:28:04:00:
4e:8c:cd:40:59:c2:af:c3:fb:19:92:9f:ca:20:55:
4f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
7470
17468
17552
17556
18197
23717
23891
24042
24067
24128
24562
37977
38002
38081-38082
38543
38554
38599
45199-45200
45805-45807
55476
55498
55538
55549
55554
55646
55790
55844
55867-55868
58544
58692
58806
58924
131162
132009
132013
132063
132545
132605
133063
133113
133167
133376
133529
133761
133764
133791
133907
133956
134095
134438
134682
136182
136579
139295
151337
151808
151825
152130
sbgp-ipAddrBlock: critical
IPv4:
27.123.16.0/22
27.145.0.0/16
58.8.0.0/14
58.97.0.0/17
61.90.0.0/15
103.3.176.0/22
110.168.0.0/14
113.21.240.0/21
114.109.0.0/16
115.87.0.0/16
116.206.112.0/22
119.46.0.0/16
119.76.0.0/16
122.144.24.0/21
124.120.0.0-124.122.255.255
171.96.0.0/13
182.17.0.0/16
202.71.112.0/20
202.93.48.0/20
202.133.128.0/18
202.176.64.0-202.176.191.255
203.118.64.0/18
203.144.128.0/17
203.153.128.0/20
210.86.128.0-210.86.223.255
210.213.0.0/18
IPv6:
2001:fb0::/31
2405:4000::/32
Signature Algorithm: sha256WithRSAEncryption
5c:64:98:f8:4f:34:ad:9e:d0:53:ea:d5:04:62:71:82:12:a3:
69:9b:64:fb:69:2e:ac:5c:65:94:1b:74:9b:ca:3a:56:21:b4:
4d:54:62:bc:d9:e3:08:75:b3:41:64:7f:36:01:32:fd:9e:70:
1f:ff:23:99:eb:be:4a:95:07:f9:c5:f3:54:68:af:a1:88:d1:
6c:69:a5:f0:cf:8f:52:9a:ed:07:62:bc:c9:18:e8:ff:4b:38:
bb:87:7c:ee:00:a6:f9:a9:83:6d:94:91:99:c4:dc:61:89:3b:
cc:e4:35:24:ea:b6:d4:17:2a:55:00:8f:d2:9e:ed:c1:7e:44:
0d:31:c9:7a:b6:04:1f:35:60:aa:11:b2:f3:a1:4f:e1:bf:f0:
14:d9:47:cc:55:b5:fd:ce:95:32:8f:f0:eb:47:93:da:4e:c6:
79:ab:99:6c:f9:cf:1b:5b:1e:59:15:61:a1:0f:e6:b6:a6:60:
26:a9:5e:f7:a2:11:b4:79:33:47:e1:20:e2:26:da:98:dd:82:
27:74:7a:7c:17:24:79:cc:aa:34:d2:4f:7b:17:f1:eb:aa:39:
38:f9:28:2d:6a:72:7c:78:20:ea:24:6b:55:3e:ef:0a:32:86:
82:39:85:b9:29:0e:d3:00:5c:ad:cb:1c:8a:c3:a6:f6:e2:49:
fe:f2:ff:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 23 22:44:51 2024 by rpki-client on console-fra.rpki-client.org