Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b5wj5AN3j-Ace8lQiL_R5rMoqps.cer
File: b5wj5AN3j-Ace8lQiL_R5rMoqps.cer (raw, json)
Hash identifier: F6xK+IgIexcgwx5C9EtmuT+HuMU23URDwhoQw4OPPbk=
Subject key identifier: 6F:9C:23:E4:03:77:8F:E0:1C:7B:C9:50:88:BF:D1:E6:B3:28:AA:9B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0213F6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DB6FB/11CD1B6E68BC11EE920EDB4DC4F9AE02/b5wj5AN3j-Ace8lQiL_R5rMoqps.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DB6FB/11CD1B6E68BC11EE920EDB4DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 14 Oct 2024 19:53:03 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 138360
IP: 103.131.106.0/24
IP: 103.142.160.0/24
IP: 2001:df7:900::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136182 (0x213f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 14 19:53:03 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91DB6FB/serialNumber=6F9C23E403778FE01C7BC95088BFD1E6B328AA9B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4e:02:82:6d:42:aa:75:54:f0:57:11:71:0a:
c2:07:4b:af:2e:6a:b1:38:6d:a4:9c:67:b0:74:00:
b3:6e:55:27:7c:f3:9b:2c:8f:ce:43:26:55:7b:9e:
71:55:89:f0:6d:e2:cb:38:77:7b:d4:02:ce:80:67:
15:ba:a0:1f:85:cd:6d:95:b6:83:1e:72:c5:02:ad:
c5:38:08:4c:59:c7:06:8d:8f:d4:c0:81:43:41:f4:
c0:0e:2e:b1:03:62:0b:f5:61:1d:4b:18:d6:e8:9a:
03:b9:7e:49:95:3d:e6:50:a1:1b:f4:4e:47:b4:19:
80:fc:ea:7c:1c:ff:17:73:dc:57:06:5f:bd:3d:db:
8f:92:53:a9:d2:74:a6:22:c2:4a:e6:05:c0:ee:c0:
e3:46:c8:fa:8a:86:7f:03:63:c2:db:34:f6:8c:70:
14:b8:82:5b:37:20:2c:7c:7d:d7:5a:a3:e2:bc:cd:
11:f7:db:4d:50:39:11:84:08:cd:4d:6d:19:3f:77:
38:7c:9b:be:a5:c2:06:c6:a1:d9:cc:3c:e9:2d:1d:
b3:1f:2d:2a:d6:e3:f9:fa:23:65:c7:7e:f6:e0:f0:
6d:11:7e:c0:5d:49:ea:ce:db:eb:2c:4f:38:19:90:
8d:18:67:87:25:31:54:fe:04:8c:d5:41:bb:5c:78:
3e:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:9C:23:E4:03:77:8F:E0:1C:7B:C9:50:88:BF:D1:E6:B3:28:AA:9B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DB6FB/11CD1B6E68BC11EE920EDB4DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DB6FB/11CD1B6E68BC11EE920EDB4DC4F9AE02/b5wj5AN3j-Ace8lQiL_R5rMoqps.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138360
sbgp-ipAddrBlock: critical
IPv4:
103.131.106.0/24
103.142.160.0/24
IPv6:
2001:df7:900::/48
Signature Algorithm: sha256WithRSAEncryption
b8:cf:f8:22:82:93:f5:37:09:c0:14:75:01:f6:4a:3b:38:33:
b0:58:0a:e8:8f:bb:b0:e5:06:cc:84:79:ce:99:b0:8f:6c:1f:
14:c5:b1:81:ed:fa:07:f7:9d:19:e7:c4:d9:57:81:3f:d7:17:
da:94:76:c3:a2:48:88:e2:62:5f:cf:b1:1f:c2:1a:9a:17:06:
27:e6:e1:47:1f:49:93:24:12:bc:6c:ad:c1:c4:be:7f:e3:a6:
c8:d6:ce:47:c6:ff:43:7f:3e:0f:29:69:57:c6:9f:31:16:68:
74:62:53:c1:21:63:e7:ef:21:da:8d:0f:f9:83:ab:5a:45:9a:
9a:8d:d7:da:92:b3:e9:5f:d0:f5:56:d7:4c:59:9f:3f:e8:ea:
50:b7:22:61:d3:fb:e5:1f:32:25:d3:2b:ff:fd:d5:ca:56:8a:
2b:43:28:b0:5e:79:2f:5a:26:18:5d:35:e0:9c:8b:0a:7b:be:
01:e2:45:b0:06:2d:1a:9b:88:07:f9:80:98:a4:b6:ed:13:3d:
93:0c:7e:dc:58:98:b7:19:1d:4b:ed:ba:3f:b5:5a:e2:af:b0:
d2:9c:b0:e2:e3:78:f0:7e:e3:88:fe:24:39:e4:4b:ac:2c:0f:
05:7a:ed:f8:8e:8d:b2:0b:5f:85:e0:d0:60:01:61:4d:0d:56:
16:37:f4:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:38 2024 by rpki-client on console-fra.rpki-client.org