Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d4fx5T6beBMt6aeHEQiDFt1gVbM.cer
File: d4fx5T6beBMt6aeHEQiDFt1gVbM.cer (raw, json)
Hash identifier: 1ACRqpPvFlgbCnJQBI9lsse2J9Kmy2UZuqh+xKL9HOo=
Subject key identifier: 77:87:F1:E5:3E:9B:78:13:2D:E9:A7:87:11:08:83:16:DD:60:55:B3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CD45
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A60A9/6BA8061A1D8411E2B3A54FDA08B02CD2/d4fx5T6beBMt6aeHEQiDFt1gVbM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A60A9/6BA8061A1D8411E2B3A54FDA08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 28 Nov 2023 14:25:14 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 7649
AS: 7655 -- 7656
AS: 7708 -- 7711
IP: 210.208.0.0 -- 210.208.95.255
IP: 210.208.128.0/18
IP: 210.209.0.0/18
IP: 2407:680::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118085 (0x1cd45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 28 14:25:14 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91A60A9/serialNumber=7787F1E53E9B78132DE9A78711088316DD6055B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b7:8d:2f:8d:f5:ba:df:1b:e8:6d:a7:af:21:
4d:9b:5e:2a:11:cc:4f:97:7b:f4:80:38:8f:a8:74:
77:5e:d0:ea:ff:40:b1:3a:92:dc:6f:28:df:fd:ab:
7d:c9:04:2c:26:e2:41:45:90:b9:19:cc:a0:4b:67:
81:e9:55:4a:b7:01:0e:ef:29:ec:a9:19:4e:a9:9b:
9d:55:23:38:e4:58:15:59:94:5d:e6:00:b1:fa:46:
f4:18:1f:33:b8:3f:04:12:eb:01:ef:6a:a5:12:7d:
c6:8c:db:82:85:08:c9:43:4e:af:e4:96:26:c3:fe:
35:b8:3a:61:1e:24:dc:08:3a:33:ce:4c:90:fb:4c:
fd:f6:ed:e5:bb:91:64:8e:1b:ca:5d:df:b7:46:51:
ab:29:65:b7:2f:4b:8f:c6:26:19:4f:e1:a4:44:47:
29:83:89:81:73:f2:db:b8:b8:77:1c:19:0c:65:e6:
fc:38:1a:dc:ac:f1:c3:dc:7b:05:a3:1c:cc:2d:d4:
ca:a2:bf:43:6d:7c:2b:d5:bd:6a:41:41:af:29:7b:
4d:7a:fb:50:2e:fd:07:43:fd:33:e4:de:66:ed:77:
21:fa:0e:fe:0a:16:5a:94:ae:ab:05:b7:57:17:57:
fd:68:cf:cd:3b:e9:7f:03:48:95:33:44:c5:87:0c:
2c:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:87:F1:E5:3E:9B:78:13:2D:E9:A7:87:11:08:83:16:DD:60:55:B3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A60A9/6BA8061A1D8411E2B3A54FDA08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A60A9/6BA8061A1D8411E2B3A54FDA08B02CD2/d4fx5T6beBMt6aeHEQiDFt1gVbM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
7649
7655-7656
7708-7711
sbgp-ipAddrBlock: critical
IPv4:
210.208.0.0-210.208.95.255
210.208.128.0/18
210.209.0.0/18
IPv6:
2407:680::/32
Signature Algorithm: sha256WithRSAEncryption
ac:03:b6:ef:d3:06:9f:57:13:f4:fd:c0:45:65:2c:4c:e0:af:
3f:63:7b:05:00:cb:ed:d3:55:3b:24:cd:2d:09:11:18:5d:a6:
d4:52:1a:60:b7:46:bb:83:cf:8b:c2:00:dd:d1:6c:45:50:78:
7c:93:03:ff:e4:e5:a2:3f:78:97:be:cd:d4:f8:0e:13:dd:3e:
5c:17:6d:62:49:6f:90:8c:ce:e7:f3:98:71:d5:ca:02:ad:c2:
f1:3b:75:26:1a:b7:56:24:f4:9c:48:a2:ea:0e:78:88:e0:22:
c3:7c:81:ed:65:dd:6f:70:16:87:dd:ea:65:d1:d2:ec:77:ce:
79:49:ba:b0:fe:bc:52:0d:ee:b5:c3:54:33:3a:ca:24:f3:f7:
7b:8f:8f:06:18:37:eb:c8:bf:ce:3e:0f:72:08:c4:39:c2:be:
d6:80:cb:35:7c:a3:6a:aa:50:6d:9f:98:77:43:6c:3a:7f:41:
84:66:0f:b9:03:85:86:27:42:3b:f7:dc:c3:4b:cb:0c:16:bd:
05:85:41:74:1a:2a:88:3f:fc:0d:60:26:65:34:d9:b0:01:80:
8d:8b:e6:08:9b:09:3f:ce:19:99:47:34:a5:ba:19:b2:f4:a3:
df:00:d4:9a:5b:17:1e:e9:20:da:27:27:13:01:d7:30:1d:fc:
73:29:97:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:24:52 2024 by rpki-client on console-fra.rpki-client.org