Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZRFLF0P9YN13KN7h6FtJ7qG_Da0.cer
File: ZRFLF0P9YN13KN7h6FtJ7qG_Da0.cer (raw, json)
Hash identifier: 4v73DMM6QIh++i4OvLm0MaHhVdDr0ZNCbu2GL+yqdp4=
Subject key identifier: 65:11:4B:17:43:FD:60:DD:77:28:DE:E1:E8:5B:49:EE:A1:BF:0D:AD
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02072D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E77F3/94EFCC0C5B9C11EF8CEA3145C4F9AE02/ZRFLF0P9YN13KN7h6FtJ7qG_Da0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E77F3/94EFCC0C5B9C11EF8CEA3145C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 16 Aug 2024 06:56:00 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 134992
IP: 103.204.252.0/22
IP: 203.76.232.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Sep 2024 22:32:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132909 (0x2072d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 16 06:56:00 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91E77F3/serialNumber=65114B1743FD60DD7728DEE1E85B49EEA1BF0DAD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:69:59:b2:ce:6d:48:67:69:3f:4a:ca:5a:93:
1f:95:50:12:a6:22:54:5a:c3:99:f7:6a:cb:26:6f:
c7:44:35:82:be:05:fa:8c:3c:d2:db:31:5e:c5:dd:
da:db:dc:d3:49:82:25:05:6c:ac:d3:3e:f6:b5:31:
fe:3a:a4:63:7f:4c:cb:8b:80:aa:e4:fb:c3:5c:3d:
0f:9d:66:1d:0c:38:08:db:0c:6f:24:87:7e:a6:04:
fa:3c:8d:8e:1b:5c:e8:1f:50:67:b3:82:e2:9c:c9:
07:3f:7f:ca:b5:d3:36:66:1a:d6:07:00:45:32:0f:
84:31:08:29:25:28:08:f8:8f:1e:2e:ad:34:68:55:
fa:0c:47:6b:42:e7:30:c1:a7:e8:df:a1:4e:33:7a:
24:06:88:6a:30:6d:f2:60:c7:45:0f:ba:20:6a:fd:
bd:d2:01:df:a5:80:de:1e:11:f2:b0:75:58:80:85:
e6:d3:32:e8:4c:4d:bb:02:a8:42:d2:fb:e4:b6:c4:
a0:6c:63:7c:d1:62:bc:42:83:f3:48:5c:19:df:a7:
ef:48:27:47:6c:26:79:da:fe:d4:9e:f8:6d:3f:17:
d1:c2:10:7c:9e:97:c2:9d:4f:26:23:b1:f7:ed:7c:
11:2a:d3:a8:fe:c5:40:2b:e5:8e:ba:5a:6d:a1:32:
18:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:11:4B:17:43:FD:60:DD:77:28:DE:E1:E8:5B:49:EE:A1:BF:0D:AD
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E77F3/94EFCC0C5B9C11EF8CEA3145C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E77F3/94EFCC0C5B9C11EF8CEA3145C4F9AE02/ZRFLF0P9YN13KN7h6FtJ7qG_Da0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134992
sbgp-ipAddrBlock: critical
IPv4:
103.204.252.0/22
203.76.232.0/22
Signature Algorithm: sha256WithRSAEncryption
12:57:57:ba:2b:ff:9a:6c:07:b8:89:45:32:ee:67:39:48:25:
00:28:63:2c:bf:84:4a:9a:d3:b9:8b:f6:71:88:66:93:21:ab:
5c:ae:1c:61:50:7e:01:02:a7:90:65:8c:6b:e5:27:37:4a:6a:
de:6e:27:51:b0:a3:fd:7f:bb:4a:8e:49:e2:73:7e:ea:55:d3:
8e:d1:0f:65:3a:c9:c9:73:78:6c:c0:4e:02:fc:0d:f6:8e:d8:
d6:22:c6:10:80:d8:ec:8c:fb:aa:29:18:a3:35:6f:0d:88:29:
46:3c:b6:4f:a3:57:17:a3:c6:4e:87:e1:82:99:d7:f1:9d:0e:
58:c6:fe:23:54:19:77:93:fb:a3:42:8f:37:7a:a1:34:b9:ab:
66:58:2c:46:5a:02:f1:0a:dc:12:bd:07:42:f1:ee:d1:60:3f:
b9:d9:28:a3:e1:ad:e4:64:7d:54:e3:dc:a0:14:ac:b6:3d:b3:
0b:cb:d5:9b:b1:b9:37:e0:7a:b3:29:30:33:93:cc:fe:d4:06:
0f:3c:47:d8:fa:70:3f:c2:92:f4:f3:5e:9a:c0:de:58:a3:45:
87:96:da:37:d5:43:ea:f7:ef:7c:34:81:c2:92:96:72:39:0c:
b6:90:17:c3:92:63:11:61:e3:17:17:1a:5e:98:52:8c:af:c3:
c5:fc:5e:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 20 00:19:00 2024 by rpki-client on console-fra.rpki-client.org