Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.cer
File: ZH0JJ9s7F44vZUoyaFV_5bXWcpw.cer (raw, json)
Hash identifier: 6rj48QsH7gRnxvm1S4s7DYHOPenh2kZZRGXnP1MEJrs=
Subject key identifier: 64:7D:09:27:DB:3B:17:8E:2F:65:4A:32:68:55:7F:E5:B5:D6:72:9C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020F53
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 24 Sep 2024 19:21:51 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 134835
AS: 135309
AS: 139859
IP: 45.120.156.0/22
IP: 45.125.164.0/22
IP: 103.56.216.0/22
IP: 103.194.40.0/22
IP: 103.200.96.0/22
IP: 103.204.172.0/22
IP: 122.128.96.0/22
IP: 202.168.152.0/22
IP: 2403:ad80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 06:14:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134995 (0x20f53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 24 19:21:51 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A919A777/serialNumber=647D0927DB3B178E2F654A3268557FE5B5D6729C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:1f:ef:47:b4:39:27:d7:e4:df:cf:15:67:7e:
27:82:1b:47:a0:c1:b6:86:e7:c4:38:45:a4:71:cf:
3d:d6:18:9f:15:db:6c:59:b4:a2:52:18:ce:28:1b:
53:52:58:7c:b0:46:fc:bc:df:76:d7:5c:33:4d:8f:
6e:94:f9:15:59:31:c4:86:fa:c7:77:d3:46:56:2b:
16:f2:73:aa:b8:5d:06:f7:b1:4d:6d:5c:bf:5a:b0:
88:af:ed:db:f3:19:77:1b:57:50:8d:82:97:35:1f:
06:c5:ef:75:bf:36:14:b3:b7:43:a9:4e:b4:52:f8:
7c:0f:5c:6b:d2:cc:c0:33:98:2c:8d:2c:89:04:30:
e6:18:e3:d6:88:e3:25:43:ec:4e:0f:71:54:73:88:
f6:0d:d1:b2:93:46:ff:bd:50:35:c9:7c:80:e3:23:
c3:f0:65:49:17:27:1b:05:eb:45:c9:71:5e:f7:f9:
54:b3:fd:b0:60:3f:cd:81:85:2c:86:a3:2e:80:94:
e9:a1:e6:2b:c2:2f:9a:ba:a9:c8:d4:0c:c3:52:b5:
b7:75:89:2d:39:6a:4c:85:fd:ff:00:e8:5e:da:c1:
85:8d:40:57:51:f9:a5:c0:13:f3:4d:f4:8a:10:10:
8c:a2:e0:c6:27:e8:3f:30:87:03:46:0b:ec:bd:65:
35:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:7D:09:27:DB:3B:17:8E:2F:65:4A:32:68:55:7F:E5:B5:D6:72:9C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134835
135309
139859
sbgp-ipAddrBlock: critical
IPv4:
45.120.156.0/22
45.125.164.0/22
103.56.216.0/22
103.194.40.0/22
103.200.96.0/22
103.204.172.0/22
122.128.96.0/22
202.168.152.0/22
IPv6:
2403:ad80::/32
Signature Algorithm: sha256WithRSAEncryption
9a:a9:30:bf:e0:65:25:16:6c:8e:1d:1b:d2:d7:ae:7b:1d:16:
fe:b8:fb:df:64:70:43:c4:0d:1c:1d:f8:c8:39:0e:48:d8:2e:
74:2c:2a:91:26:d2:ee:60:60:e3:bc:a0:48:69:65:f7:1b:c3:
2e:d9:c8:f4:1c:5e:fa:d5:43:94:e1:15:5c:c2:29:0d:58:21:
8f:9f:47:ef:22:6c:5b:11:48:8d:59:cc:e4:23:04:b4:3e:9b:
e6:17:63:f4:8f:97:99:68:eb:ff:a2:9a:0e:2e:24:a7:82:5b:
b7:9f:7c:00:f0:89:85:2a:8c:fe:9e:23:82:6c:df:f3:39:95:
da:bc:e8:50:37:e6:fc:63:6a:b6:37:73:05:3e:fb:9d:c5:31:
42:22:c5:72:7f:52:b0:c5:89:e0:16:c3:2b:75:68:0d:5f:45:
35:ad:1f:1e:8c:a0:97:f1:87:70:d6:fa:60:82:92:7c:29:1b:
77:96:43:79:8e:c2:6f:58:f2:89:7d:1b:a8:a6:fc:5d:fc:57:
6d:42:19:64:be:d9:1e:5f:78:ab:96:b6:d7:1a:31:e6:06:28:
3b:89:b6:9e:b8:c5:22:0f:75:0a:55:4c:90:0a:1c:27:36:ab:
6b:6e:64:cc:2a:79:0e:ab:76:84:ab:4f:c4:29:25:91:ba:e0:
cf:ff:90:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:02:58 2024 by rpki-client on console-ams.rpki-client.org