Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bUron6l6cWotkmYf8s9b08zcKfw.cer
File: bUron6l6cWotkmYf8s9b08zcKfw.cer (raw, json)
Hash identifier: C6LLSUoFxjirYah1GBAa5I0p4KhlrjWIcb1fnjzkJXY=
Subject key identifier: 6D:4A:E8:9F:A9:7A:71:6A:2D:92:66:1F:F2:CF:5B:D3:CC:DC:29:FC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02128C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91778C2/ED2BBC70F88711E7921F8668C4F9AE02/bUron6l6cWotkmYf8s9b08zcKfw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91778C2/ED2BBC70F88711E7921F8668C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 07 Oct 2024 15:48:06 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 132817
IP: 43.242.0.0/22
IP: 45.249.104.0/22
IP: 45.252.56.0/22
IP: 59.152.84.0/22
IP: 103.66.64.0/22
IP: 103.69.156.0/22
IP: 103.73.52.0/22
IP: 103.74.132.0/22
IP: 103.74.176.0/22
IP: 103.75.220.0/22
IP: 103.76.236.0/22
IP: 103.211.144.0/22
IP: 103.214.92.0/22
IP: 103.221.56.0/22
IP: 103.228.224.0/22
IP: 116.206.48.0/22
IP: 119.42.36.0/22
IP: 144.48.96.0/22
IP: 160.238.16.0/22
IP: 192.144.88.0/22
IP: 2402:54c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135820 (0x2128c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 7 15:48:06 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91778C2/serialNumber=6D4AE89FA97A716A2D92661FF2CF5BD3CCDC29FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:6c:d0:46:77:3a:5c:59:1d:8c:8e:6b:09:8f:
06:bb:31:b9:93:f0:c3:23:b0:c5:b1:f7:72:40:2b:
97:bd:3a:08:1c:48:a8:b1:ec:05:dc:1d:73:a2:cc:
78:5c:f2:47:e3:a8:d8:89:33:3c:81:7a:93:8d:08:
ba:2b:2b:94:31:58:25:49:68:8a:07:0b:bf:80:3b:
45:12:f0:85:d2:bb:16:64:65:03:de:1c:97:66:7c:
61:c1:e1:66:43:ab:4b:1f:87:f2:72:c1:2e:2c:bb:
71:56:33:3f:47:51:e1:eb:9a:94:7c:3f:a0:2c:c6:
87:bb:ed:94:17:cd:eb:3c:8c:3c:95:37:2b:fb:cd:
be:62:c9:5d:a1:ea:7a:a2:8e:30:8a:04:04:4a:9c:
7c:12:33:12:e0:91:3c:b2:fd:18:e0:7f:97:61:71:
ad:cc:61:c7:3e:08:7a:f0:ff:21:60:73:30:6e:10:
22:87:b2:28:1f:15:fb:11:d4:6f:b5:cf:f9:98:79:
c7:22:4a:4b:18:70:1a:37:9f:3d:68:47:73:c3:78:
f8:45:a4:4c:97:b5:05:15:d3:c7:b2:22:3b:ec:d0:
a2:94:aa:a9:29:3e:a6:4c:0b:f2:5b:d5:65:7e:42:
b1:13:de:02:0b:d5:fd:14:a0:9e:70:6c:a2:22:7a:
84:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:4A:E8:9F:A9:7A:71:6A:2D:92:66:1F:F2:CF:5B:D3:CC:DC:29:FC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91778C2/ED2BBC70F88711E7921F8668C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91778C2/ED2BBC70F88711E7921F8668C4F9AE02/bUron6l6cWotkmYf8s9b08zcKfw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132817
sbgp-ipAddrBlock: critical
IPv4:
43.242.0.0/22
45.249.104.0/22
45.252.56.0/22
59.152.84.0/22
103.66.64.0/22
103.69.156.0/22
103.73.52.0/22
103.74.132.0/22
103.74.176.0/22
103.75.220.0/22
103.76.236.0/22
103.211.144.0/22
103.214.92.0/22
103.221.56.0/22
103.228.224.0/22
116.206.48.0/22
119.42.36.0/22
144.48.96.0/22
160.238.16.0/22
192.144.88.0/22
IPv6:
2402:54c0::/32
Signature Algorithm: sha256WithRSAEncryption
97:e1:2b:18:c3:36:68:a4:5e:c7:58:ad:e6:6b:dc:6e:79:bb:
dc:d0:52:26:05:c6:ef:39:58:92:31:bc:57:76:1c:5d:3d:50:
c0:fd:99:f1:fb:b7:14:b5:1d:eb:36:d5:70:b7:d3:dc:cc:77:
a3:4b:50:db:14:f1:11:87:d1:0c:10:c8:b7:02:29:19:dc:f2:
e0:c3:2c:18:cb:73:26:a4:fb:c7:70:de:93:1d:88:37:c6:a3:
4b:f7:46:47:5a:a9:ae:83:cd:9b:84:22:ab:b3:27:9d:6c:6d:
2c:6c:4b:eb:5b:a9:38:e1:bb:54:c7:ed:63:f2:2f:d8:2d:69:
38:b6:76:17:61:bb:4f:25:b2:fa:d0:00:d3:5d:5a:bd:94:04:
77:c0:07:77:c4:fb:b8:a1:39:b7:7d:9e:e8:c3:6b:3b:fb:fa:
38:f8:db:37:a8:94:88:30:42:cd:74:63:af:17:36:79:10:4f:
ce:1d:97:eb:26:24:f3:ff:b4:47:7b:fe:89:fb:fd:42:42:a3:
f1:8a:86:f6:bc:18:f2:37:b2:e3:34:a1:d2:df:b0:20:fb:b8:
6d:c8:9e:05:ae:e7:80:94:bc:c2:e6:00:40:43:e9:cc:ff:ac:
59:a8:6d:25:68:8d:e1:46:56:bd:35:15:6e:d3:f7:ed:bf:6e:
14:72:6a:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 04:03:46 2024 by rpki-client on console-fra.rpki-client.org