Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ex0xxneDebryS2uQVqe7Mf0dzqg.cer
File: ex0xxneDebryS2uQVqe7Mf0dzqg.cer (raw, json)
Hash identifier: jlu2vLXIaS+cT+fCzy3JMsoEMI2bSBU2PdrJdUBnDVs=
Subject key identifier: 7B:1D:31:C6:77:83:79:BA:F2:4B:6B:90:56:A7:BB:31:FD:1D:CE:A8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0217DF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9138B0D/79B5229CBF5B11EB869C3D40C4F9AE02/ex0xxneDebryS2uQVqe7Mf0dzqg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9138B0D/79B5229CBF5B11EB869C3D40C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 01 Nov 2024 16:23:02 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 136970
AS: 138152
AS: 142403
IP: 39.109.104.0/24
IP: 39.109.112.0 -- 39.109.117.255
IP: 39.109.122.0/23
IP: 39.109.126.0/23
IP: 103.100.208.0/22
IP: 2001:df3:9100::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 11:16:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137183 (0x217df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 1 16:23:02 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A9138B0D/serialNumber=7B1D31C6778379BAF24B6B9056A7BB31FD1DCEA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:63:09:93:cc:8e:29:66:b0:74:24:f2:f2:5f:
55:16:36:c0:5f:ab:97:b3:f3:d6:6e:7a:d3:f7:87:
dd:57:38:46:53:e8:ec:f5:d1:5c:8b:6a:8a:1d:b3:
b4:26:6a:a7:a5:49:ee:ce:37:2c:f0:68:40:21:bf:
90:c3:49:01:bb:6d:6f:f8:5a:1e:20:e1:90:01:38:
ba:d7:af:94:57:34:00:8d:ad:6c:0e:82:3f:11:04:
96:f2:d4:36:11:80:97:f5:5f:8c:5c:9a:bd:8c:56:
d3:33:c0:5f:c0:b7:d9:7e:ca:1e:23:c1:3e:a8:76:
38:e9:08:27:c4:a2:20:3a:d6:16:09:06:44:d4:25:
ac:95:18:cb:ae:78:15:ce:fc:95:b3:a2:11:ed:a7:
a5:9e:53:6a:e6:91:13:6a:a1:7f:27:f9:1a:ae:28:
79:7e:ed:d8:96:14:71:3e:62:dc:d7:b3:b0:9b:19:
92:fc:06:dc:a7:26:96:f2:d3:0b:d5:1d:31:af:bc:
10:8b:f7:77:5d:2a:94:ee:00:af:11:38:19:b5:72:
9b:b1:88:d5:66:4f:f0:48:41:81:7c:7d:0e:99:7f:
dd:a9:4f:73:48:d8:45:35:6f:b7:9f:08:4e:8f:55:
e9:0c:13:f1:7a:b5:a1:2f:3e:7b:82:48:b3:1d:dc:
b6:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:1D:31:C6:77:83:79:BA:F2:4B:6B:90:56:A7:BB:31:FD:1D:CE:A8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9138B0D/79B5229CBF5B11EB869C3D40C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9138B0D/79B5229CBF5B11EB869C3D40C4F9AE02/ex0xxneDebryS2uQVqe7Mf0dzqg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136970
138152
142403
sbgp-ipAddrBlock: critical
IPv4:
39.109.104.0/24
39.109.112.0-39.109.117.255
39.109.122.0/23
39.109.126.0/23
103.100.208.0/22
IPv6:
2001:df3:9100::/48
Signature Algorithm: sha256WithRSAEncryption
9f:95:f3:65:2c:23:07:14:dc:31:b9:08:3b:40:c2:17:ce:f0:
75:cc:10:48:09:6a:bd:cb:82:aa:6e:cd:2e:82:f3:29:69:74:
38:9f:6c:2b:75:3c:47:10:ce:ef:df:6b:7e:3c:50:ab:c1:b4:
8f:ed:89:66:03:53:35:68:e4:b9:cf:c1:5e:51:7b:76:21:52:
f4:13:5a:2a:8c:cd:11:16:bf:33:1b:38:f9:0e:09:c9:cd:1f:
b3:0f:cb:a3:1c:50:52:75:cc:46:c7:1f:a4:33:d9:e2:dd:23:
8e:7f:31:f2:2a:45:39:df:8b:26:14:08:36:ad:9c:1a:a2:cc:
c2:8d:98:90:7e:8f:24:59:70:2b:d2:96:a7:b5:9d:11:ca:8b:
8e:1f:1a:c8:e2:46:fc:e3:50:0b:7a:9d:c4:cf:a3:21:c5:10:
c2:bb:85:58:df:3b:1c:35:5d:28:2d:4f:0a:86:cc:28:82:fd:
23:70:a6:08:8d:bc:72:90:83:40:34:d2:ba:7a:d7:dd:35:4b:
13:9e:64:b1:88:f0:0e:17:21:07:51:6e:5f:bf:4d:c3:16:e1:
79:59:db:1c:a8:83:fc:dd:8a:75:a6:25:4a:52:5c:0e:b2:0b:
9d:96:55:a1:99:5c:38:5c:98:3e:bc:1f:2d:a5:e1:36:86:40:
84:a6:0f:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:37:40 2024 by rpki-client on console-ams.rpki-client.org