Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_qS5bzmD92nHM5dFbBK5D2QkbHw.cer
File: _qS5bzmD92nHM5dFbBK5D2QkbHw.cer (raw, json)
Hash identifier: KmmQyDg14z91GclMvIZGsVegKBxYk67Pkao2nnhyrNk=
Subject key identifier: FE:A4:B9:6F:39:83:F7:69:C7:33:97:45:6C:12:B9:0F:64:24:6C:7C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02050E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/_qS5bzmD92nHM5dFbBK5D2QkbHw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 05 Aug 2024 16:52:04 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 17929
AS: 38481
AS: 38551
AS: 38910
IP: 103.246.196.0/22
IP: 202.40.32.0 -- 202.40.127.255
IP: 203.2.96.0/20
IP: 2407:e500::/31
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132366 (0x2050e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 5 16:52:04 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A916D36A/serialNumber=FEA4B96F3983F769C73397456C12B90F64246C7C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:bb:f9:cb:18:fb:e0:a7:d7:97:f7:e6:96:1d:
91:fd:7d:c3:c8:23:14:6b:eb:41:6e:c4:9d:07:7d:
4f:10:9c:d9:e4:46:7f:a7:7d:9a:65:c0:fb:fa:1d:
80:c7:84:d7:19:d0:be:0c:91:81:30:c4:b1:7d:1f:
01:8c:cc:06:45:89:27:65:17:64:bf:d7:f3:9a:e1:
98:60:58:62:4a:ae:3c:88:fc:94:6a:fc:b9:50:86:
fb:b1:41:2d:e3:67:5f:70:de:f8:c4:56:7c:90:17:
df:99:c2:87:a8:51:49:3e:5a:b5:e6:9c:14:80:76:
5c:b0:94:35:3a:44:6b:f6:5e:80:7a:da:a7:e1:1f:
39:bc:9e:c7:91:f4:75:3a:04:23:c2:6a:00:ae:6a:
a0:58:11:4b:79:27:ed:7a:1e:c1:2b:c0:5e:dd:ec:
13:f6:d0:d7:2b:5f:b9:56:a9:64:34:e5:9b:4d:1d:
e2:63:91:27:ae:d3:42:3a:17:28:c6:a4:8b:35:cb:
b4:86:05:37:f5:72:51:98:e6:ef:5c:75:94:a8:d8:
f5:86:cc:29:ae:65:e2:b7:22:77:3b:2c:44:ac:3f:
23:17:00:8e:9a:96:45:0c:ac:7f:09:19:af:2a:5b:
e2:d5:67:47:76:60:85:42:df:60:f1:9d:63:b2:64:
ea:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:A4:B9:6F:39:83:F7:69:C7:33:97:45:6C:12:B9:0F:64:24:6C:7C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916D36A/37ABD708AA9A11E7BAC41252C4F9AE02/_qS5bzmD92nHM5dFbBK5D2QkbHw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17929
38481
38551
38910
sbgp-ipAddrBlock: critical
IPv4:
103.246.196.0/22
202.40.32.0-202.40.127.255
203.2.96.0/20
IPv6:
2407:e500::/31
Signature Algorithm: sha256WithRSAEncryption
0e:f5:2c:ab:79:16:a0:c3:fc:02:0d:55:83:a3:3f:56:23:a9:
e2:a6:6d:1e:18:c8:54:80:77:56:5c:61:7a:c8:05:46:a9:cd:
05:da:67:c9:0c:3d:9c:ff:3e:9e:b6:60:f4:0e:54:15:1f:49:
07:5a:d7:78:dc:b7:6a:6c:ba:bc:89:bb:b1:c2:74:28:5c:47:
84:00:fd:de:14:4d:5f:3b:ad:43:d0:cc:ab:3b:1c:73:e7:1e:
78:3b:14:5a:f1:89:df:a3:46:ec:0b:f0:ed:8c:e7:6c:5c:dd:
bd:8d:f2:6a:f9:64:e3:4c:4d:39:ad:d0:7d:04:78:9e:46:b4:
01:4f:a7:f3:c0:75:13:6f:2c:76:df:77:45:6e:d1:f1:c0:9b:
78:55:89:b2:6f:57:15:ed:41:e6:0e:96:d1:bb:bb:a1:de:c3:
f8:11:d0:8e:0a:d0:ee:87:bb:00:f7:f6:ed:e8:cf:f3:8a:89:
32:d9:7c:4d:d1:97:34:3c:26:d0:a3:00:93:53:c3:84:97:38:
ef:a3:6e:55:74:78:6f:3a:09:cf:05:5b:cf:8b:f4:cf:12:eb:
8d:8d:7d:12:33:e0:23:b6:dd:8a:1b:99:22:26:28:bb:32:20:
89:46:08:29:e7:46:df:63:b7:3c:a2:7f:91:96:4c:53:16:b4:
4c:1c:ec:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:24:49 2024 by rpki-client on console-fra.rpki-client.org