Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer
File: ewHKzBcP5qYbIDBBheholG33KFo.cer (raw, json)
Hash identifier: LnAZfNiX9J2oIOcWmU0laFmxBzWozBQvvC56YT/BNls=
Subject key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E174
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 29 Feb 2024 17:42:48 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 18210
AS: 38796
AS: 58620
AS: 134384 -- 134399
IP: 103.208.92.0/23
IP: 119.161.48.0/20
IP: 120.29.248.0/21
IP: 202.65.12.0/22
IP: 203.17.72.0/24
IP: 203.18.56.0/24
IP: 203.119.14.0/24
IP: 2001:dcd::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 06:14:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123252 (0x1e174)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 29 17:42:48 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:6d:1f:9d:fe:7d:e9:52:99:74:2e:a4:99:8a:
dc:3f:3c:2c:28:f8:e4:46:00:4e:a4:2c:f5:81:8b:
ac:bc:71:d5:25:86:36:2d:c9:2b:66:5b:47:49:48:
90:49:72:2b:62:5f:c6:09:7b:77:e4:be:92:5d:76:
27:7c:45:b0:b4:0d:2f:f3:95:c5:31:59:55:37:36:
cc:7c:3c:4b:18:33:57:a2:ec:d5:94:3b:65:42:a3:
d7:06:a1:6b:e5:13:95:da:5a:9a:97:1e:26:86:4b:
84:ab:8a:6b:b5:cd:67:08:0e:cc:95:8a:f4:bd:2c:
13:ba:9b:86:01:ba:d9:9b:53:db:2d:06:2b:49:a3:
c5:66:18:d0:4a:a7:45:a9:c1:f7:b7:7f:9c:ec:6b:
e7:57:5c:4f:d5:97:e4:6c:96:de:09:de:a5:56:a0:
09:33:53:f1:04:f6:5b:c6:44:6f:70:ea:d8:39:69:
43:63:18:ae:1e:c2:39:fb:de:13:6a:62:e8:5f:07:
b8:82:9a:9c:8c:0c:77:b6:97:89:a6:65:e9:6f:ac:
dd:c2:cb:b3:a5:1e:95:a1:e4:48:73:4d:1d:4a:e2:
58:51:a6:b7:15:cc:19:5e:2d:06:db:f8:94:68:e5:
0a:ec:05:88:73:0b:f4:27:3f:0a:8d:7f:5d:c9:11:
9c:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
18210
38796
58620
134384-134399
sbgp-ipAddrBlock: critical
IPv4:
103.208.92.0/23
119.161.48.0/20
120.29.248.0/21
202.65.12.0/22
203.17.72.0/24
203.18.56.0/24
203.119.14.0/24
IPv6:
2001:dcd::/32
Signature Algorithm: sha256WithRSAEncryption
a8:83:50:1d:86:e4:e4:7a:8f:ce:40:41:8b:a5:fa:23:67:e6:
7e:03:75:0c:9d:8d:b0:3f:71:f3:d4:c7:6e:b7:c8:f0:dd:92:
86:b5:16:bf:26:ab:11:97:dd:8e:75:79:c3:6e:97:7c:c8:b7:
91:7b:b7:44:cb:65:76:29:f5:bf:03:e8:41:3f:3d:71:1f:bd:
84:18:c1:f8:2d:ac:cd:08:42:0c:2f:0f:5b:3e:05:e3:2d:4d:
3b:e8:05:cd:2c:53:7f:8b:ce:61:80:0a:1f:ad:9a:79:9e:d1:
6b:72:2a:6e:fa:7c:a8:7b:d1:7d:8c:1d:ab:e6:3e:24:a0:7e:
e0:a7:2d:b8:a5:4c:95:41:35:fb:6d:24:db:df:86:bf:4a:75:
26:3f:90:28:be:85:31:be:8f:94:2c:6c:c4:f5:69:69:bb:40:
3b:69:b7:d2:80:51:8d:aa:ec:48:cf:b1:4d:8b:70:43:7e:4a:
76:72:33:20:65:73:c8:08:a4:01:9d:24:46:cb:0b:af:9b:b1:
63:9d:fc:b4:24:64:64:91:21:46:9e:16:16:35:74:98:4e:60:
e1:74:30:bb:d3:85:38:bd:5a:db:56:91:97:25:e6:78:a1:da:
c6:77:33:41:dc:49:64:c0:d2:86:2d:8d:42:36:e8:54:20:ff:
14:ea:e4:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 06:58:58 2024 by rpki-client on console-fra.rpki-client.org