Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxFBrwp5OqMW733dLxsF-JHFZrI.cer
File: cxFBrwp5OqMW733dLxsF-JHFZrI.cer (raw, json)
Hash identifier: D6y3IQfSuTYyqHTKwPcu1JP2CMi3zjK6i93tRWJVJAk=
Subject key identifier: 73:11:41:AF:0A:79:3A:A3:16:EF:7D:DD:2F:1B:05:F8:91:C5:66:B2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020345
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/cxFBrwp5OqMW733dLxsF-JHFZrI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 30 Jul 2024 17:04:27 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 4647
IP: 103.246.28.0/22
IP: 203.30.140.0/24
IP: 2404:fc80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 16:30:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131909 (0x20345)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 30 17:04:27 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91CDE0E/serialNumber=731141AF0A793AA316EF7DDD2F1B05F891C566B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9d:e9:a2:30:c6:2a:c6:b1:b4:15:74:1b:28:
9c:3d:d1:8d:8f:97:a5:32:4d:0c:a3:af:23:2e:a1:
8c:da:a0:54:d1:0f:fb:4d:b8:8e:4d:7b:d5:f9:d0:
84:7d:ea:83:79:dc:d4:41:1d:23:a9:6d:4b:f7:ed:
55:33:53:8d:e8:c1:a9:47:85:f7:e6:e4:cd:cf:81:
e9:87:3d:08:44:cf:ac:4b:f8:f6:31:57:6e:7e:c4:
e7:96:2e:d4:a7:5d:29:1b:f7:ce:41:24:70:67:b0:
ec:f0:eb:58:f2:07:fd:f0:b4:5c:4c:07:1e:d0:bd:
79:f2:df:ad:ae:46:d0:af:1c:5f:0f:34:a3:6e:3b:
69:39:a0:a0:9a:6d:ae:ea:c6:6b:39:3d:72:d5:a8:
3e:f9:70:d2:68:7c:eb:4b:ce:4d:07:ba:a6:b5:e7:
c6:4c:c2:b3:61:6d:ab:af:69:99:f3:2e:23:87:b6:
a7:96:20:6b:77:7c:46:51:99:c9:a8:94:8a:ce:ac:
d5:cd:de:61:96:b7:9c:2d:ac:85:24:2c:aa:73:a1:
8a:49:ac:6e:94:46:70:ce:c6:06:cb:97:68:e3:aa:
0b:16:7f:d0:b4:1e:45:3e:0d:85:f6:0b:84:0d:92:
81:8a:2c:67:21:a3:23:13:85:a5:9b:39:e4:21:49:
94:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:11:41:AF:0A:79:3A:A3:16:EF:7D:DD:2F:1B:05:F8:91:C5:66:B2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CDE0E/6E1E7DE4057C11E882FE8E28C4F9AE02/cxFBrwp5OqMW733dLxsF-JHFZrI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
4647
sbgp-ipAddrBlock: critical
IPv4:
103.246.28.0/22
203.30.140.0/24
IPv6:
2404:fc80::/32
Signature Algorithm: sha256WithRSAEncryption
3b:93:1c:21:8b:37:cb:28:00:7d:0b:57:0b:54:c5:42:6e:65:
ab:dd:d1:49:bd:12:8a:84:aa:4f:30:f0:3b:39:ab:c3:82:61:
6a:b1:ad:e8:cc:b2:47:27:8a:5e:ec:31:82:6b:78:22:bb:2a:
5b:80:0b:67:94:78:af:a8:6e:6f:a8:c2:e4:9d:f0:b9:15:2a:
9f:e1:1d:e3:10:19:c9:e9:9b:00:dc:9b:25:82:d9:76:58:c4:
e8:34:7e:6a:e3:e3:7f:1d:56:5e:ab:d8:cb:ef:c2:fa:cc:75:
67:d5:39:0d:26:36:c2:0c:87:14:06:a8:4a:4d:f2:d8:fb:6c:
74:84:0b:29:3d:8f:21:05:22:04:1f:92:08:a8:b2:6c:d3:09:
a5:aa:fb:6d:ed:f6:33:34:f3:c5:db:8c:67:68:1b:54:1e:13:
ba:32:b7:d7:28:c7:c1:b9:1f:71:f5:ec:59:60:2d:8b:66:81:
16:26:8d:09:ea:fa:57:39:b3:da:00:a0:8d:df:22:2c:c3:a9:
45:e5:78:8e:34:bc:c5:2b:33:72:22:7e:d3:69:f7:a4:9c:c9:
29:8c:b6:ee:5b:b1:22:ce:e3:e5:37:fe:23:90:10:9b:03:de:
8e:d7:81:57:c8:6a:85:fd:03:92:3d:18:ac:ae:73:e4:f4:98:
b4:7f:e7:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 17:56:58 2024 by rpki-client on console-fra.rpki-client.org