Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bV1Q6IudZeiv2ijCzqYVAScDhgg.cer
File: bV1Q6IudZeiv2ijCzqYVAScDhgg.cer (raw, json)
Hash identifier: OeSmzGZt9l+3E6OMu6qAI96kbvz1IMzs3fcklzxlsqk=
Subject key identifier: 6D:5D:50:E8:8B:9D:65:E8:AF:DA:28:C2:CE:A6:15:01:27:03:86:08
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F74F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E91BC/AE44D24ADBE911EC95110515C4F9AE02/bV1Q6IudZeiv2ijCzqYVAScDhgg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E91BC/AE44D24ADBE911EC95110515C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 05 Jun 2024 01:41:28 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 151499
IP: 202.12.87.0 -- 202.12.90.255
IP: 203.0.12.0/23
IP: 203.3.124.0/22
IP: 203.4.226.0/24
IP: 203.11.114.0/24
IP: 203.12.236.0/22
IP: 203.14.152.0/21
IP: 203.27.126.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 03 Dec 2024 09:42:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128847 (0x1f74f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 5 01:41:28 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91E91BC/serialNumber=6D5D50E88B9D65E8AFDA28C2CEA6150127038608
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:b7:37:7e:e8:b9:14:75:68:05:98:27:5f:9f:
d7:22:c7:3d:a5:ae:6f:1d:10:0c:e0:6d:ee:25:cb:
b8:18:59:b2:87:7b:58:bf:41:7d:29:8d:1e:56:fa:
24:4a:ab:ea:c5:48:b7:df:98:99:80:03:a7:18:30:
79:99:52:d9:85:83:83:76:5e:06:cb:68:67:84:a6:
f0:c2:bb:83:d3:fc:53:2e:c2:75:3b:01:02:bb:b7:
f5:9f:55:e4:6d:18:6f:5a:32:69:80:f8:b3:87:77:
47:84:b7:00:00:4e:b8:1f:03:c5:14:08:32:af:25:
e7:ae:b6:0e:f1:d1:96:7b:d8:a8:26:a6:4d:97:a6:
b1:43:cd:2e:a6:58:e0:e9:00:a6:60:0b:5a:a0:b7:
f9:71:ec:99:71:c5:67:82:4c:b8:85:15:f9:5b:fe:
b7:20:6a:49:8f:71:95:17:ad:8d:ae:04:29:50:38:
9f:91:60:8b:de:98:13:a2:ab:22:0e:60:8a:0b:0a:
d5:19:88:bb:59:b4:99:f4:b0:c2:55:5c:fd:39:23:
37:5c:ca:b2:b3:a0:74:70:78:c1:7b:9b:0f:6a:5f:
2e:aa:75:74:63:f0:84:82:c8:a8:b6:28:a2:f7:20:
8e:f1:6d:07:3a:bf:0d:f9:85:62:c8:4b:5d:51:72:
8f:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:5D:50:E8:8B:9D:65:E8:AF:DA:28:C2:CE:A6:15:01:27:03:86:08
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E91BC/AE44D24ADBE911EC95110515C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E91BC/AE44D24ADBE911EC95110515C4F9AE02/bV1Q6IudZeiv2ijCzqYVAScDhgg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151499
sbgp-ipAddrBlock: critical
IPv4:
202.12.87.0-202.12.90.255
203.0.12.0/23
203.3.124.0/22
203.4.226.0/24
203.11.114.0/24
203.12.236.0/22
203.14.152.0/21
203.27.126.0/24
Signature Algorithm: sha256WithRSAEncryption
63:68:2d:99:f7:ff:89:ef:8b:d2:4c:7b:a1:a2:af:07:d0:06:
4f:a7:61:f2:cd:d1:6b:60:c5:90:5d:d1:30:ae:60:9b:eb:90:
40:5d:1d:22:96:a5:ad:fd:ae:11:30:50:38:bc:67:dd:6e:fa:
39:35:e5:72:3b:11:83:e8:8c:6b:ab:aa:a2:3d:cd:20:70:8e:
a0:7f:d0:0f:b6:a7:3d:68:01:1f:07:3a:1a:93:2e:21:23:ea:
10:00:38:fb:e9:55:60:e0:50:33:ba:d6:27:f7:35:1f:5a:55:
3c:e3:6a:48:87:c7:16:79:50:1e:fb:ff:64:a4:4c:5a:7d:4a:
0d:63:0d:94:68:9f:96:4e:89:1a:36:68:ed:28:15:0b:f0:18:
86:87:07:7b:58:02:35:39:b3:c7:7a:a4:47:e0:de:37:6c:fa:
43:ad:be:04:b1:0a:9e:21:1e:3c:6f:09:01:fa:0d:29:b5:15:
62:f6:84:b3:93:aa:b2:a6:f2:cc:2c:78:37:77:0b:fe:4e:e6:
c6:47:59:de:a8:4d:f8:b5:a8:1a:65:cd:26:1c:d8:04:f2:36:
73:5d:90:9a:ff:cf:ca:03:a9:ae:49:17:93:dd:69:5c:b5:30:
6a:38:fc:52:d5:bf:b6:be:08:88:cf:37:29:f6:b3:73:af:7a:
30:ff:96:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 11:51:44 2024 by rpki-client on console-ams.rpki-client.org