Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2vh1aJzD8In-vyJbRNDMkF4MXk.cer
File: f2vh1aJzD8In-vyJbRNDMkF4MXk.cer (raw, json)
Hash identifier: eBldSqduh9XU280jNvFdrmcE9sdCz+ueLA5M4AQacJE=
Subject key identifier: 7F:6B:E1:D5:A2:73:0F:C2:27:FA:FC:89:6D:13:43:32:41:78:31:79
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DD06
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/f2vh1aJzD8In-vyJbRNDMkF4MXk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 02 Feb 2024 06:46:38 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 9723
AS: 17899
AS: 18388
AS: 24473
AS: 38085
AS: 38309
AS: 38484
IP: 1.178.0.0/19
IP: 1.178.64.0 -- 1.178.111.255
IP: 1.178.144.0 -- 1.178.207.255
IP: 1.179.0.0 -- 1.179.39.255
IP: 1.179.48.0 -- 1.179.71.255
IP: 1.179.80.0/21
IP: 1.179.96.0/20
IP: 58.87.0.0/20
IP: 110.238.2.0 -- 110.238.31.255
IP: 110.238.128.0/19
IP: 110.238.224.0 -- 110.239.47.255
IP: 110.239.128.0/19
IP: 110.239.176.0/21
IP: 110.239.224.0/19
IP: 119.12.0.0/20
IP: 119.12.80.0 -- 119.12.103.255
IP: 119.12.112.0/20
IP: 119.12.144.0/21
IP: 119.13.0.0 -- 119.13.23.255
IP: 119.13.48.0/21
IP: 119.13.128.0 -- 119.13.151.255
IP: 119.13.176.0/21
IP: 119.13.240.0/21
IP: 121.91.16.0/20
IP: 121.91.96.0/21
IP: 121.91.112.0 -- 121.91.135.255
IP: 121.91.144.0/21
IP: 121.91.160.0/21
IP: 121.91.192.0/21
IP: 123.200.128.0 -- 123.200.231.255
IP: 123.200.240.0/21
IP: 202.83.64.0/19
IP: 202.183.96.0/19
IP: 210.56.64.0/20
IP: 220.157.64.0/19
IP: 2407:6800::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122118 (0x1dd06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 2 06:46:38 2024 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91DB4FE/serialNumber=7F6BE1D5A2730FC227FAFC896D13433241783179
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:d4:72:e5:1e:31:f8:4e:fd:eb:a1:08:8c:c5:
20:6f:6b:09:89:66:65:e8:a2:a3:13:db:43:31:e6:
f1:56:8a:74:50:5a:d6:38:85:2f:0a:ee:cf:cc:fc:
b0:a9:ca:51:50:22:e0:e0:dc:68:13:a7:c4:52:7a:
e0:50:f5:14:e7:84:23:21:c2:c5:f1:37:7a:e2:40:
1e:fa:85:6b:2f:4b:2c:5a:ee:e7:01:f8:06:01:c4:
27:39:4c:e0:d7:b4:e3:96:22:b1:7e:5d:96:d7:4b:
05:96:86:24:42:48:6b:65:1f:65:b8:da:e9:c8:8b:
ba:fc:c0:8a:6d:23:95:f3:fd:91:c7:71:02:db:79:
ad:e9:d3:fb:55:14:13:bf:57:f6:6a:48:b1:4e:bd:
9b:d7:0d:03:9c:43:15:44:81:bc:e4:a3:fb:20:a4:
49:1f:04:07:0b:e2:b3:06:0b:0b:ac:8a:a3:1c:17:
62:cc:09:e1:4b:3c:1d:94:52:0f:04:c5:2f:d2:80:
64:9d:67:55:37:07:cc:7a:6b:9c:00:42:66:78:69:
db:ba:cf:84:f3:19:5c:68:44:0a:55:3d:55:c9:3f:
e1:54:1e:65:7e:47:d2:8f:92:04:d4:d5:a3:9e:53:
c2:46:6e:91:8a:a2:c2:38:94:5d:38:f9:e1:22:95:
d3:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:6B:E1:D5:A2:73:0F:C2:27:FA:FC:89:6D:13:43:32:41:78:31:79
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DB4FE/CF4A10EA85E111EBAFB51E84C4F9AE02/f2vh1aJzD8In-vyJbRNDMkF4MXk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9723
17899
18388
24473
38085
38309
38484
sbgp-ipAddrBlock: critical
IPv4:
1.178.0.0/19
1.178.64.0-1.178.111.255
1.178.144.0-1.178.207.255
1.179.0.0-1.179.39.255
1.179.48.0-1.179.71.255
1.179.80.0/21
1.179.96.0/20
58.87.0.0/20
110.238.2.0-110.238.31.255
110.238.128.0/19
110.238.224.0-110.239.47.255
110.239.128.0/19
110.239.176.0/21
110.239.224.0/19
119.12.0.0/20
119.12.80.0-119.12.103.255
119.12.112.0/20
119.12.144.0/21
119.13.0.0-119.13.23.255
119.13.48.0/21
119.13.128.0-119.13.151.255
119.13.176.0/21
119.13.240.0/21
121.91.16.0/20
121.91.96.0/21
121.91.112.0-121.91.135.255
121.91.144.0/21
121.91.160.0/21
121.91.192.0/21
123.200.128.0-123.200.231.255
123.200.240.0/21
202.83.64.0/19
202.183.96.0/19
210.56.64.0/20
220.157.64.0/19
IPv6:
2407:6800::/32
Signature Algorithm: sha256WithRSAEncryption
6a:fd:24:97:8e:56:9b:cd:a8:c3:98:e3:74:70:0d:a1:13:50:
12:82:2f:6f:6c:39:7c:0f:bd:a9:d4:db:0a:99:12:0b:ec:3c:
bf:0d:4d:fd:de:ab:b2:43:71:62:e5:c5:c4:0b:c7:d9:d2:3a:
e2:5b:27:07:66:29:23:0f:03:5f:37:12:f5:8a:16:6f:13:95:
5c:a7:35:39:f9:6f:95:4e:72:ff:cb:8e:05:f8:9d:25:56:ec:
d6:cb:bd:6e:28:aa:31:24:cc:16:b7:32:98:48:de:f5:9b:13:
aa:39:fe:d1:79:af:0a:e4:72:d1:b1:34:b8:90:c2:4a:eb:2c:
e0:74:49:ca:7a:d8:58:e6:f5:76:3f:76:13:ca:11:4f:93:a8:
63:21:a1:7a:6d:19:a8:5f:e4:51:bc:0c:61:7b:55:7e:f1:45:
2e:70:93:9a:4a:b0:29:00:66:69:b2:44:33:3e:38:a9:ac:39:
71:61:28:0f:b7:36:59:6a:96:2f:cd:5c:c7:fe:6c:9b:bf:cc:
bd:34:42:40:01:d8:ea:2a:92:35:e9:c9:99:24:ce:c8:9c:b3:
43:1c:47:5c:fa:dc:fd:3f:a5:2f:67:0a:87:ee:8f:16:de:db:
08:14:26:27:29:84:56:16:1e:7d:82:34:36:06:dc:54:a5:30:
11:eb:ec:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:15:40 2024 by rpki-client on console-ams.rpki-client.org