Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZgJZdrdfXCn0LB2Az0iI99RgWNc.cer
File: ZgJZdrdfXCn0LB2Az0iI99RgWNc.cer (raw, json)
Hash identifier: woMvHmz5qmGWbeY0/cpNehXDLllgDesJl6Q+PRLCk9U=
Subject key identifier: 66:02:59:76:B7:5F:5C:29:F4:2C:1D:80:CF:48:88:F7:D4:60:58:D7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CF01
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F6FC3/FC9078021D9211E2B3BC2CF608B02CD2/ZgJZdrdfXCn0LB2Az0iI99RgWNc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F6FC3/FC9078021D9211E2B3BC2CF608B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 02 Dec 2023 02:47:40 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 9301
AS: 10083
AS: 18405
AS: 38276
AS: 55519
IP: 122.200.160.0/20
IP: 203.4.162.0/24
IP: 203.5.127.0/24
IP: 203.31.57.0/24
IP: 203.31.101.0/24
IP: 203.33.71.0/24
IP: 203.55.18.0/24
IP: 203.57.78.0/23
IP: 2402:5600::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Apr 2024 15:38:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118529 (0x1cf01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 2 02:47:40 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91F6FC3/serialNumber=66025976B75F5C29F42C1D80CF4888F7D46058D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9b:9b:97:43:ed:7c:69:ed:89:05:19:39:5a:
84:4a:1f:ef:59:42:79:93:c3:93:93:05:43:5a:45:
25:f7:cc:55:f3:a9:96:02:8e:f1:80:a9:ab:60:0c:
48:80:9c:63:83:08:da:72:93:d3:39:7b:78:f5:26:
f7:6f:2e:80:f1:65:9d:ff:18:91:9e:37:84:0f:ce:
45:53:df:75:f2:27:56:7f:45:66:62:33:ad:d4:ac:
9c:b2:be:55:4c:72:77:52:b4:06:08:79:8c:97:36:
3d:a9:21:ad:2e:83:2c:0b:cc:14:b2:6e:45:09:de:
a2:68:fe:b0:b0:73:0d:4a:d8:70:19:84:c5:b1:27:
72:86:0b:81:23:e3:21:9d:35:3e:05:18:75:cb:d7:
12:71:13:79:0b:a1:a3:2e:44:cd:eb:0b:2f:8c:20:
92:7f:8a:1d:96:10:67:4e:67:24:75:38:7a:a1:57:
3f:00:75:f3:08:86:4b:72:99:4c:11:71:dc:63:ee:
ea:79:bd:bb:c9:71:cb:15:99:32:83:1f:a7:12:1a:
d0:2c:91:8e:03:03:ea:a2:2c:54:7f:3e:c8:a3:08:
5a:79:0c:bf:8a:7a:30:b7:6e:41:47:df:cc:9b:5d:
31:97:05:89:58:fd:84:c1:29:30:92:80:ba:94:d2:
fe:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:02:59:76:B7:5F:5C:29:F4:2C:1D:80:CF:48:88:F7:D4:60:58:D7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F6FC3/FC9078021D9211E2B3BC2CF608B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F6FC3/FC9078021D9211E2B3BC2CF608B02CD2/ZgJZdrdfXCn0LB2Az0iI99RgWNc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9301
10083
18405
38276
55519
sbgp-ipAddrBlock: critical
IPv4:
122.200.160.0/20
203.4.162.0/24
203.5.127.0/24
203.31.57.0/24
203.31.101.0/24
203.33.71.0/24
203.55.18.0/24
203.57.78.0/23
IPv6:
2402:5600::/32
Signature Algorithm: sha256WithRSAEncryption
98:ce:a4:e4:a9:ce:6c:da:bc:f7:af:d9:2a:8f:b4:e3:e5:73:
50:30:c8:26:a0:11:3f:12:07:4b:e2:99:c9:45:9b:8f:e6:4f:
41:95:fb:09:51:92:cb:de:40:c7:f7:61:f2:36:fc:33:19:ae:
09:2a:ae:d5:41:54:3e:d4:49:37:16:80:4e:34:5a:a9:89:46:
66:b0:81:0e:97:f2:6b:e2:fe:c7:c2:bc:9d:5f:dc:11:c3:04:
3c:49:59:45:c6:65:a3:92:b7:1e:75:3e:31:71:04:15:d1:54:
c5:85:77:8b:72:0a:6f:16:14:f5:51:de:f7:f1:e7:14:8b:eb:
11:fe:e2:a2:eb:b7:4d:74:95:4e:3b:dd:ff:80:64:26:03:19:
3f:c8:3f:9b:79:ef:00:8e:54:6a:61:31:ef:ea:9d:88:84:ff:
80:82:73:62:b0:b6:98:5d:9c:32:b6:5c:24:3a:63:cd:27:45:
41:89:1e:74:55:3e:76:23:fb:78:98:14:6b:f1:9e:2f:46:1a:
71:d3:9e:95:3d:94:3c:87:eb:90:22:19:12:a1:2a:fa:07:20:
3c:7c:d8:94:cb:42:1a:07:d7:96:05:bf:eb:3d:67:2e:32:90:
f5:65:a1:29:e7:f6:2a:34:58:20:3a:7d:d3:fb:79:8d:1d:9f:
13:ff:c0:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 16:11:41 2024 by rpki-client on console-fra.rpki-client.org