Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0ZKhG930cTTZqMGuAaTn88qYBo.cer
File: d0ZKhG930cTTZqMGuAaTn88qYBo.cer (raw, json)
Hash identifier: r8PIEXoNp7/2h6UZVJ5opFP3MA50kmijoJ/V1Ogs79I=
Subject key identifier: 77:46:4A:84:6F:77:D1:C4:D3:66:A3:06:B8:06:93:9F:CF:2A:60:1A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020EB4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 20 Sep 2024 19:24:38 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 24298
AS: 136961
IP: 103.123.144.0/22
IP: 202.60.8.0/21
IP: 2401:ab40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134836 (0x20eb4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 20 19:24:38 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91B74D6/serialNumber=77464A846F77D1C4D366A306B806939FCF2A601A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:9e:9e:26:c6:ac:93:18:35:93:d0:6c:56:94:
8d:09:5d:f5:6c:40:59:b4:6c:11:ea:1b:c3:48:6d:
39:7b:60:1f:20:90:3f:9c:dc:83:97:26:b9:6d:0b:
3d:ee:d2:b8:4c:eb:b7:f0:1c:e6:62:63:22:2e:24:
aa:5e:79:c9:34:50:f2:91:a7:3c:2e:44:f5:2f:e5:
24:a8:22:42:4a:33:33:b7:92:a2:85:c0:3f:9d:56:
1c:9e:a1:55:2b:a5:74:cb:36:02:14:3c:fe:19:e2:
3d:06:e2:af:3e:7e:dc:e3:f2:b8:28:33:bf:1f:e4:
b9:86:16:94:d3:ca:85:4d:81:2e:a6:d6:d7:12:4b:
e8:f9:88:0e:f9:39:4c:8c:30:48:91:48:ac:85:21:
25:85:04:bf:63:3d:a1:56:cd:04:16:c2:43:3a:e0:
2d:fd:d4:a8:23:62:aa:29:c2:99:24:9b:e6:56:95:
28:76:22:53:0e:c0:ca:15:22:67:3a:e5:37:b8:b3:
5a:58:73:90:39:0d:f2:a5:41:e1:5a:b9:fe:68:95:
71:16:f9:4f:9b:4c:c1:a8:d4:1b:02:f6:3c:16:02:
f5:ae:fc:ac:04:2f:b6:75:8d:ee:8d:47:0f:04:7c:
30:37:8b:72:00:40:cc:10:df:99:ab:df:f4:c1:fd:
4f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:46:4A:84:6F:77:D1:C4:D3:66:A3:06:B8:06:93:9F:CF:2A:60:1A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24298
136961
sbgp-ipAddrBlock: critical
IPv4:
103.123.144.0/22
202.60.8.0/21
IPv6:
2401:ab40::/32
Signature Algorithm: sha256WithRSAEncryption
8b:a1:cd:7d:ce:25:bf:8d:89:a6:61:ed:28:42:ab:77:71:b6:
e1:1e:17:e7:e4:41:b6:4d:87:ed:9a:38:85:4b:27:38:7f:94:
e8:d1:5b:b7:4c:e9:f4:e2:73:13:32:ae:74:51:08:9c:0c:61:
b9:b9:7c:ef:e3:ef:a9:5a:b9:aa:a7:c8:aa:db:02:22:36:d5:
1b:dc:2c:f9:4d:33:0e:b9:0f:46:12:95:0a:f3:6d:dc:18:57:
9a:2d:66:29:e2:70:35:ce:a5:ef:44:45:ab:9f:96:bc:3b:66:
57:44:93:63:7d:ec:dd:12:b9:cf:28:16:0e:89:57:99:27:c8:
3a:f9:24:20:58:b4:79:43:42:0c:63:aa:fb:7a:4e:45:ab:a2:
ce:42:71:1b:33:96:ea:99:9b:dd:d2:0f:b2:f2:68:74:cd:3a:
1e:9b:1e:34:76:90:47:cb:ef:79:55:67:f7:4f:28:4c:0a:55:
f3:25:a8:b6:55:6d:34:13:c3:a1:1e:95:3a:26:6c:c0:0d:97:
69:87:d1:ae:19:49:67:32:4e:17:2b:e6:83:03:34:ec:e3:a0:
87:d2:a7:3b:9b:93:bc:66:12:de:63:d8:c3:27:22:0f:3f:2c:
82:3d:a9:17:31:4e:fd:36:46:c9:ca:75:b2:dd:f7:38:5b:8b:
7d:30:8d:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:54 2024 by rpki-client on console-ams.rpki-client.org