Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZpGr7BpG_bzSYHxN8XpUzjM0whI.cer
File: ZpGr7BpG_bzSYHxN8XpUzjM0whI.cer (raw, json)
Hash identifier: 9ZcABK6MX9sGrUNThcWbALvq/Z46xToCnxaOBck0K2U=
Subject key identifier: 66:91:AB:EC:1A:46:FD:BC:D2:60:7C:4D:F1:7A:54:CE:33:34:C2:12
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E863
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9199E3F/D8C51ACA5CF311E992FD622AC4F9AE02/ZpGr7BpG_bzSYHxN8XpUzjM0whI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9199E3F/D8C51ACA5CF311E992FD622AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 01 Apr 2024 22:02:36 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 131259
AS: 132910
IP: 36.255.124.0/22
IP: 43.249.12.0/22
IP: 103.23.76.0/22
IP: 103.209.120.0/22
IP: 103.250.64.0/22
IP: 2407:1a80::/32
IP: 2407:8500::/32
IP: 2407:eb00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 23:35:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125027 (0x1e863)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 1 22:02:36 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A9199E3F/serialNumber=6691ABEC1A46FDBCD2607C4DF17A54CE3334C212
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b9:b9:06:15:8a:ef:ed:3e:15:90:25:47:d3:
fe:4d:38:96:cf:41:06:04:02:80:e1:e1:70:0f:9b:
35:a6:9e:99:f1:c4:6f:9d:f8:29:ef:85:a8:b0:3f:
f5:8b:85:e7:36:42:e4:1f:00:c9:21:43:b7:32:df:
91:a0:5c:53:3a:ac:b8:e8:26:32:84:21:5b:c2:b1:
5a:cd:a8:74:bf:32:ca:d8:0c:d0:10:14:9c:37:ce:
a0:8e:12:c4:12:b7:9c:24:5f:60:d0:d0:2c:97:45:
83:4c:93:62:40:75:49:b9:c9:fb:a8:1a:43:5e:c4:
c3:01:c3:a2:92:55:66:8d:6e:4c:b1:43:30:bf:0f:
19:63:e2:09:2c:6a:06:8a:d1:28:24:93:1c:18:84:
f2:a8:77:ac:6c:dd:89:9b:eb:7a:80:3b:1b:75:92:
ef:5d:58:a0:b8:1f:fd:e5:3a:19:43:28:8d:d1:38:
f4:15:b2:32:1f:0b:a7:67:da:39:70:b7:b2:38:dd:
32:54:0a:f9:8c:96:f1:7c:f0:7e:a9:07:0a:fc:d4:
d8:2a:0f:23:7b:00:99:0b:9c:cc:ad:6e:08:2a:12:
67:af:aa:1f:1c:d0:27:93:bd:b7:c8:fc:49:69:08:
de:28:8b:d1:6c:15:58:87:08:b8:b0:58:90:b8:ad:
1c:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:91:AB:EC:1A:46:FD:BC:D2:60:7C:4D:F1:7A:54:CE:33:34:C2:12
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9199E3F/D8C51ACA5CF311E992FD622AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9199E3F/D8C51ACA5CF311E992FD622AC4F9AE02/ZpGr7BpG_bzSYHxN8XpUzjM0whI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
131259
132910
sbgp-ipAddrBlock: critical
IPv4:
36.255.124.0/22
43.249.12.0/22
103.23.76.0/22
103.209.120.0/22
103.250.64.0/22
IPv6:
2407:1a80::/32
2407:8500::/32
2407:eb00::/32
Signature Algorithm: sha256WithRSAEncryption
83:cb:6c:bb:e0:a1:9e:e9:7c:44:71:61:10:b8:9c:19:84:d1:
40:0b:02:97:ad:af:14:63:75:59:52:e8:83:4d:a7:cd:9d:54:
8f:37:08:bd:72:3d:63:b0:47:4d:5f:b4:52:1d:a8:ec:9d:cd:
bf:40:78:fa:6c:26:0f:5a:17:59:83:c0:26:3b:d4:58:81:de:
12:a8:fa:40:e2:ec:4c:64:bf:cb:5a:e5:77:e9:57:2c:68:90:
22:6e:ba:21:c3:e6:b6:b3:ed:da:65:2a:80:b8:e5:71:ad:ab:
c5:fa:ab:ab:a0:64:21:e3:f6:23:c9:09:03:46:b2:54:57:ce:
ff:d4:27:96:2e:5d:8e:d6:dc:36:9b:ac:0d:55:9b:23:6e:d5:
48:a4:85:2d:64:0a:a7:48:a7:b1:35:62:cc:55:4e:1d:c7:96:
e6:c7:2f:d5:4c:61:be:f8:72:d2:3b:dc:c5:ed:88:19:98:a7:
89:8a:ed:ec:29:b6:22:e0:b9:63:5a:2c:3d:3a:e9:38:dd:a9:
41:88:cf:78:37:ef:80:12:08:9f:8f:7c:44:7b:88:0e:ba:2d:
22:9a:83:b8:89:1f:62:44:db:76:7b:66:98:43:fe:0b:b6:13:
81:54:7b:69:c0:56:46:1a:23:4e:45:ea:76:77:38:05:32:de:
69:86:90:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 01:03:02 2024 by rpki-client on console-fra.rpki-client.org