Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eQFKXwcxnwRg_NBPxKqrzOCe00Q.cer
File: eQFKXwcxnwRg_NBPxKqrzOCe00Q.cer (raw, json)
Hash identifier: 4zJJVNJoSnFVAtJ/TkYANQlpalTUqtV/03PY5KDtjXs=
Subject key identifier: 79:01:4A:5F:07:31:9F:04:60:FC:D0:4F:C4:AA:AB:CC:E0:9E:D3:44
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02100A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9128992/FADBC56C87A111E5AEB47F4DC4F9AE02/eQFKXwcxnwRg_NBPxKqrzOCe00Q.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9128992/FADBC56C87A111E5AEB47F4DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Sep 2024 13:19:06 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 45282
IP: 123.176.56.0/23
IP: 123.176.59.0/24
IP: 202.129.192.0/22
IP: 2405:8200::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 01:13:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135178 (0x2100a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 27 13:19:06 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A9128992/serialNumber=79014A5F07319F0460FCD04FC4AAABCCE09ED344
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a0:39:ec:4c:d8:20:ba:47:18:52:aa:06:d1:
2a:88:2f:d0:fc:ce:0d:25:9e:d8:58:48:0d:d5:2f:
e7:b1:24:59:9b:d4:0e:eb:6f:61:61:2a:76:41:d8:
7d:71:4d:b1:2b:7e:07:8d:52:70:26:cb:a1:c3:ed:
9c:f0:6d:2f:66:4f:76:e8:1e:bf:5b:fa:3e:7a:39:
6f:97:db:02:02:26:80:4a:d2:f8:eb:78:bc:a6:60:
0c:5a:bd:57:ca:86:09:bc:33:70:c9:40:02:1b:b3:
61:04:49:16:2b:12:b2:34:db:19:03:bb:51:a7:d9:
b5:9d:1e:bb:c8:63:f3:a7:a1:2f:c9:62:cf:98:d3:
f6:f1:74:6f:01:54:e8:da:50:01:cb:72:0a:b1:27:
2d:9c:33:a4:ef:99:58:64:66:aa:a8:93:0a:a2:44:
d0:3a:05:a6:ad:a1:5b:16:21:04:03:4c:8f:6a:c4:
8a:c9:a3:f3:f3:45:89:ad:6f:8a:e4:69:a3:af:1e:
9e:8d:38:7e:bd:b4:c2:9e:90:49:89:6d:99:46:5c:
8d:d3:d1:2a:45:a9:47:84:0a:7c:a6:fc:a7:ad:83:
8c:63:a6:9f:80:10:7d:51:38:ed:7a:ca:9a:0a:5f:
7a:28:d5:c1:d0:01:ca:50:66:f5:3b:40:c5:37:43:
60:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:01:4A:5F:07:31:9F:04:60:FC:D0:4F:C4:AA:AB:CC:E0:9E:D3:44
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9128992/FADBC56C87A111E5AEB47F4DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9128992/FADBC56C87A111E5AEB47F4DC4F9AE02/eQFKXwcxnwRg_NBPxKqrzOCe00Q.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
45282
sbgp-ipAddrBlock: critical
IPv4:
123.176.56.0/23
123.176.59.0/24
202.129.192.0/22
IPv6:
2405:8200::/32
Signature Algorithm: sha256WithRSAEncryption
7d:f1:f0:41:3d:e4:97:eb:61:c5:e5:18:c5:57:d7:19:e0:b3:
6f:81:eb:97:50:e0:e0:c7:b9:a5:12:e5:05:ec:a4:d8:c5:51:
82:11:10:83:81:0c:10:53:a5:e4:2b:5f:96:61:9b:59:ab:61:
68:27:44:d4:28:ea:3f:93:a1:ae:9c:39:98:78:50:1a:17:43:
99:fd:bb:7c:6e:fd:d2:f0:02:49:02:1b:bc:13:d1:dc:d7:08:
11:71:b7:01:c6:a2:bc:78:fb:d7:05:3e:ad:8f:34:d0:f4:fc:
66:a3:17:d3:76:5d:80:40:ea:a1:bb:68:66:f5:c0:3e:08:f2:
67:d6:97:90:ac:fb:00:6f:02:ba:4a:2b:18:6d:04:d9:dc:f2:
79:c9:73:8f:64:c0:a3:a2:73:12:a8:61:25:fc:3a:48:9a:bb:
8a:1f:81:2e:3d:88:32:96:ab:c1:a3:fa:38:5c:1b:b7:ba:6d:
9c:55:37:73:a6:b3:a9:d4:e7:25:07:09:b5:c1:93:91:2e:fa:
26:1c:f6:28:23:a2:d1:52:44:7d:a4:c2:2e:84:54:4f:2d:30:
1c:4f:4f:d0:e2:c8:9e:cd:91:e5:0f:30:0d:44:15:20:93:e2:
60:56:02:b1:81:9b:b6:48:6d:77:d0:6d:2e:7e:f5:3b:af:be:
f8:ea:b7:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:05:19 2024 by rpki-client on console-ams.rpki-client.org