Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_qS5bzmD92nHM5dFbBK5D2QkbHw.cer
File: _qS5bzmD92nHM5dFbBK5D2QkbHw.cer (raw, json)
Hash identifier: zWrHNgM8hwf+fxPi7He9eyzeH6zrGMdDpHl/FJCvn/8=
Subject key identifier: FE:A4:B9:6F:39:83:F7:69:C7:33:97:45:6C:12:B9:0F:64:24:6C:7C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B4D7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/_qS5bzmD92nHM5dFbBK5D2QkbHw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 03 Aug 2023 15:49:53 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 17929
AS: 38481
AS: 38551
AS: 38910
IP: 103.246.196.0/22
IP: 202.40.32.0 -- 202.40.127.255
IP: 203.2.96.0/20
IP: 2407:e500::/31
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 30 Apr 2024 17:07:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111831 (0x1b4d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 3 15:49:53 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A916D36A/serialNumber=FEA4B96F3983F769C73397456C12B90F64246C7C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:bb:f9:cb:18:fb:e0:a7:d7:97:f7:e6:96:1d:
91:fd:7d:c3:c8:23:14:6b:eb:41:6e:c4:9d:07:7d:
4f:10:9c:d9:e4:46:7f:a7:7d:9a:65:c0:fb:fa:1d:
80:c7:84:d7:19:d0:be:0c:91:81:30:c4:b1:7d:1f:
01:8c:cc:06:45:89:27:65:17:64:bf:d7:f3:9a:e1:
98:60:58:62:4a:ae:3c:88:fc:94:6a:fc:b9:50:86:
fb:b1:41:2d:e3:67:5f:70:de:f8:c4:56:7c:90:17:
df:99:c2:87:a8:51:49:3e:5a:b5:e6:9c:14:80:76:
5c:b0:94:35:3a:44:6b:f6:5e:80:7a:da:a7:e1:1f:
39:bc:9e:c7:91:f4:75:3a:04:23:c2:6a:00:ae:6a:
a0:58:11:4b:79:27:ed:7a:1e:c1:2b:c0:5e:dd:ec:
13:f6:d0:d7:2b:5f:b9:56:a9:64:34:e5:9b:4d:1d:
e2:63:91:27:ae:d3:42:3a:17:28:c6:a4:8b:35:cb:
b4:86:05:37:f5:72:51:98:e6:ef:5c:75:94:a8:d8:
f5:86:cc:29:ae:65:e2:b7:22:77:3b:2c:44:ac:3f:
23:17:00:8e:9a:96:45:0c:ac:7f:09:19:af:2a:5b:
e2:d5:67:47:76:60:85:42:df:60:f1:9d:63:b2:64:
ea:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:A4:B9:6F:39:83:F7:69:C7:33:97:45:6C:12:B9:0F:64:24:6C:7C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/_qS5bzmD92nHM5dFbBK5D2QkbHw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17929
38481
38551
38910
sbgp-ipAddrBlock: critical
IPv4:
103.246.196.0/22
202.40.32.0-202.40.127.255
203.2.96.0/20
IPv6:
2407:e500::/31
Signature Algorithm: sha256WithRSAEncryption
0a:87:1b:73:79:54:32:ef:24:10:78:24:da:ee:a9:1a:de:fc:
17:55:9a:6d:e5:12:f6:74:14:47:60:20:44:c5:22:a2:79:c2:
65:40:63:e0:41:aa:d0:9c:40:94:2b:87:68:2b:52:c8:d5:12:
4a:2c:25:23:be:e7:47:c2:f5:78:ec:19:e3:ce:14:94:ed:da:
c3:55:b2:b1:d5:cd:4b:fa:07:00:dc:02:cf:55:00:b4:05:a0:
4c:8a:49:ee:48:57:66:1a:bd:f7:70:54:3d:a6:97:99:28:a5:
f8:66:09:31:8a:fe:e6:b1:9b:19:c6:8f:ae:3d:2d:1c:70:3f:
0e:83:e8:d1:0b:d5:3d:3d:76:f4:34:91:99:7e:aa:82:a8:03:
4a:ab:9a:b2:b1:b8:57:a2:0b:7a:86:75:ea:e3:68:9d:57:b7:
b2:7d:92:09:39:36:22:4b:5e:0f:d5:50:17:b8:c2:e8:5e:89:
c7:01:53:20:de:da:1e:d2:86:cb:88:cf:3a:22:1a:33:cc:d6:
39:03:0b:17:02:a1:5b:cd:95:d4:a5:f6:92:1e:c0:84:b5:36:
fd:a4:20:c0:b5:6c:82:fa:2b:b7:2a:30:dd:7c:c6:de:79:1c:
2c:84:b7:8c:8e:f0:54:14:8d:78:58:c8:02:4e:e8:9e:21:b1:
7d:44:37:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 23 18:45:43 2024 by rpki-client on console-ams.rpki-client.org