Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer
File: d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer (raw, json)
Hash identifier: C+clCJDTMzyTNydxgI4TL174Gtny5ApvAM9utndQHlM=
Subject key identifier: 77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D31C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 20 Dec 2023 05:48:33 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 4750
AS: 4827
AS: 7568
AS: 7613
AS: 9339
AS: 9741
AS: 9891
AS: 10151
AS: 17475
AS: 17489
AS: 17499
AS: 17634
AS: 17980
AS: 18215
AS: 18408
AS: 23602
AS: 23873
AS: 24097
AS: 24214
AS: 24217
AS: 24237
AS: 24455
AS: 24472
AS: 37983
AS: 38034
AS: 38231
AS: 38239
AS: 38326
AS: 38448
AS: 38718
AS: 38815
AS: 38820
AS: 38899
AS: 45173
AS: 45255
AS: 45265
AS: 45520
AS: 45958 -- 45959
AS: 46013
AS: 55339
AS: 55634
AS: 55642
AS: 55864
AS: 55916
AS: 56112
AS: 56130
AS: 56223
AS: 131249
AS: 134681
AS: 134776
AS: 135511
AS: 135586
AS: 135620
AS: 136158
AS: 136457
AS: 136504
AS: 136581
AS: 136605
AS: 137392
AS: 137545
AS: 137919
AS: 137977
AS: 138344
AS: 138422
AS: 149640
AS: 152190
IP: 27.254.0.0/16
IP: 58.137.0.0/16
IP: 202.183.128.0/17
IP: 203.146.0.0/16
IP: 203.170.128.0/17
IP: 203.172.32.0 -- 203.172.127.255
IP: 210.1.0.0/18
IP: 2404:b0::/31
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 09:10:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119580 (0x1d31c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 20 05:48:33 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91262CA/serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:5f:8c:95:b0:c9:83:d3:d0:8c:ce:98:ae:ce:
9f:01:f3:49:69:e5:63:7a:ca:08:a4:74:8d:91:82:
82:ea:e7:47:70:83:5d:b9:32:cb:52:e7:85:12:01:
73:46:17:56:85:99:7b:4c:b3:11:60:93:d7:46:80:
cb:4f:19:f3:87:c9:1c:16:8d:3e:96:f9:a6:56:a4:
4f:db:2d:7f:2a:b7:01:f9:6d:87:3f:f8:cb:47:8c:
57:b9:5e:74:ff:fb:2f:e7:69:98:ce:80:6f:4c:2f:
44:d7:a1:14:12:e8:82:ac:fc:5e:f7:95:48:8a:85:
75:59:2f:63:7d:f8:5b:67:38:e5:f4:45:b1:d1:8a:
74:8d:39:b5:f3:9c:81:e9:af:c9:33:62:72:00:49:
3c:3e:7a:c3:e6:f4:fe:07:13:34:98:5e:c2:40:95:
ea:b2:0e:f3:5f:32:e1:7a:69:e2:bb:52:30:a1:2a:
cb:a9:63:d1:f0:b9:bc:d9:14:0f:28:b3:22:7a:a6:
83:46:84:11:47:a0:bd:6b:c0:a6:23:25:33:dc:ec:
27:30:59:df:6a:bb:ec:b8:57:f6:f2:51:eb:48:29:
6d:42:8b:19:40:00:b6:c1:eb:0b:51:2a:78:1b:8d:
ce:eb:11:06:6d:5d:70:83:57:9a:e4:71:2f:c7:22:
47:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
4750
4827
7568
7613
9339
9741
9891
10151
17475
17489
17499
17634
17980
18215
18408
23602
23873
24097
24214
24217
24237
24455
24472
37983
38034
38231
38239
38326
38448
38718
38815
38820
38899
45173
45255
45265
45520
45958-45959
46013
55339
55634
55642
55864
55916
56112
56130
56223
131249
134681
134776
135511
135586
135620
136158
136457
136504
136581
136605
137392
137545
137919
137977
138344
138422
149640
152190
sbgp-ipAddrBlock: critical
IPv4:
27.254.0.0/16
58.137.0.0/16
202.183.128.0/17
203.146.0.0/16
203.170.128.0/17
203.172.32.0-203.172.127.255
210.1.0.0/18
IPv6:
2404:b0::/31
Signature Algorithm: sha256WithRSAEncryption
76:6a:b3:0e:e0:54:f9:f6:2a:7b:87:21:96:60:42:18:89:a8:
20:52:89:88:75:b3:9a:3d:43:fc:d6:e3:11:dc:0b:6f:59:4c:
25:8f:c4:7e:3f:83:97:a8:27:68:1a:57:f2:28:1c:d7:0a:fd:
09:8d:3c:6a:f9:a3:03:c6:a2:78:93:ef:0b:49:4a:c6:f3:32:
ac:c0:7e:c5:19:0b:d0:4a:97:6a:7a:cc:0b:2a:0d:62:ad:32:
eb:31:17:12:e0:d5:4f:e0:bf:2c:ad:94:b7:67:9e:7d:f4:97:
bc:be:7b:af:d1:01:e1:0d:10:dc:b6:22:9c:3e:99:23:c0:86:
de:f6:9c:d5:3b:7b:8b:32:16:57:6a:77:3a:17:30:93:86:64:
86:bd:67:e4:d0:69:ae:33:c3:13:ea:02:36:da:59:2a:79:5e:
96:cc:a8:43:aa:30:73:bf:5d:43:f1:36:9f:49:28:f8:1c:5e:
68:23:ba:37:e4:24:cb:7a:83:8a:b4:05:18:8e:e6:65:61:f0:
1b:eb:13:cb:f4:19:e9:fe:2e:d1:c5:92:2d:96:1d:f8:0d:02:
8b:55:72:0a:ed:22:cb:82:08:37:b9:6f:d0:f5:ef:c4:33:0c:
5a:91:77:5a:1c:86:18:98:94:bd:43:a0:de:8e:68:d3:57:e1:
54:05:ca:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 10:31:54 2024 by rpki-client on console-fra.rpki-client.org