Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cRYXAC2fDJ62W07dYfehyR_NuD4.cer
File: cRYXAC2fDJ62W07dYfehyR_NuD4.cer (raw, json)
Hash identifier: /WB1zW9+PHHm94vH7uzkGKkHrwi66wIjin3xHozhd4U=
Subject key identifier: 71:16:17:00:2D:9F:0C:9E:B6:5B:4E:DD:61:F7:A1:C9:1F:CD:B8:3E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020786
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/cRYXAC2fDJ62W07dYfehyR_NuD4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 19 Aug 2024 03:48:33 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 134350
IP: 45.120.204.0/22
IP: 103.61.20.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Sep 2024 21:06:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132998 (0x20786)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 19 03:48:33 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A919C6E7/serialNumber=711617002D9F0C9EB65B4EDD61F7A1C91FCDB83E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:13:a8:aa:14:54:f9:4f:96:48:42:fc:7a:6a:
4b:08:da:51:6e:4f:34:99:03:2e:3b:68:64:f3:0f:
d0:a3:39:f3:86:81:ef:a9:55:a1:7e:87:b7:07:a7:
a7:b8:ff:3b:0a:ef:ca:5b:67:79:af:9b:74:e6:70:
05:9e:68:ea:54:52:d8:af:f2:24:c1:3d:bc:0a:1b:
6d:ad:99:fc:fc:08:8c:70:32:b4:d2:ac:b5:8a:7a:
dc:49:4d:ef:36:3e:40:14:fd:30:15:4d:dc:c6:2a:
64:02:8a:19:a3:11:a2:a6:6d:3a:08:c5:96:3d:88:
83:76:46:d2:52:88:98:63:cd:ae:8b:a3:75:4d:43:
ed:5a:1b:ad:85:3b:dd:d1:36:9e:78:fb:c6:30:87:
61:e7:03:b3:46:48:46:8a:dd:54:fa:17:d1:c7:9f:
a3:be:12:8a:73:b2:97:e2:be:21:7a:fc:29:74:ee:
43:f4:17:62:2d:0b:b5:57:5c:bd:5b:62:9e:34:1b:
f2:07:7b:d2:7e:de:f5:ec:a3:59:b9:3d:58:fd:1d:
0d:1c:83:42:ea:4e:94:d1:c4:69:5a:2e:90:a3:eb:
6a:7f:c8:49:bb:66:7b:e0:41:5f:f8:0b:cc:c5:b3:
5c:c2:5a:17:3d:c9:c5:d6:41:c1:c6:34:80:c4:2b:
2b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:16:17:00:2D:9F:0C:9E:B6:5B:4E:DD:61:F7:A1:C9:1F:CD:B8:3E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/cRYXAC2fDJ62W07dYfehyR_NuD4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134350
sbgp-ipAddrBlock: critical
IPv4:
45.120.204.0/22
103.61.20.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:1d:ed:c4:99:99:56:32:80:b4:a6:ad:53:66:65:b3:9b:27:
c6:5b:28:0b:54:2d:86:b2:ad:d0:71:51:ea:cc:23:f7:38:e6:
c0:5f:01:98:30:b8:7e:43:09:b3:35:75:5a:8a:d2:35:8d:e4:
c0:0e:dd:e8:df:63:97:fd:ab:a9:ff:b1:a2:35:7e:9f:c7:38:
26:6b:3e:58:35:2b:ef:0a:04:88:71:16:d1:9a:c9:d9:fc:7e:
5f:03:f7:ab:e7:67:c4:b8:8a:74:b4:9b:44:d5:45:86:83:16:
e6:16:9e:c1:d5:0f:5b:4d:58:04:47:91:5a:55:91:f8:4b:3e:
ea:7f:b1:27:2d:85:b8:55:9d:e1:2e:de:95:ab:10:07:5f:4f:
e1:55:88:6b:9c:bf:f3:78:fc:15:92:81:5b:ce:02:89:c7:b5:
b6:f5:bc:74:69:85:80:ed:f7:ab:e7:e6:28:78:c4:f3:4c:cb:
f9:1b:f5:2f:e8:d7:42:c7:2b:9a:59:1d:31:30:58:f4:11:fd:
a2:d4:c7:e3:b8:ad:96:6a:8c:45:ec:ab:36:a3:e0:01:d9:01:
a4:fa:6d:ee:ee:46:10:98:45:ee:2b:56:52:4d:d6:82:5d:4d:
37:e3:b7:80:cc:ff:d0:83:fc:eb:dc:43:81:73:4a:15:56:c8:
32:a7:9d:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 19 22:41:51 2024 by rpki-client on console-fra.rpki-client.org