Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fVVGmSbR-TTzrylkXrbBC7YGm8k.cer
File: fVVGmSbR-TTzrylkXrbBC7YGm8k.cer (raw, json)
Hash identifier: XMza2K4aWrQ+a84ILgLjktalM0RQcCYRyY7ivcSaQ3g=
Subject key identifier: 7D:55:46:99:26:D1:F9:34:F3:AF:29:64:5E:B6:C1:0B:B6:06:9B:C9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020179
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B7770/E6810410C0AE11EAB95AB572C4F9AE02/fVVGmSbR-TTzrylkXrbBC7YGm8k.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B7770/E6810410C0AE11EAB95AB572C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 19 Jul 2024 18:16:47 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 38074
AS: 38222
AS: 140868
IP: 103.152.178.0/24
IP: 103.160.48.0/24
IP: 2001:df4:1780::/47
IP: 2406:7ec0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131449 (0x20179)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 19 18:16:47 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91B7770/serialNumber=7D55469926D1F934F3AF29645EB6C10BB6069BC9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:52:54:fd:a3:37:74:67:25:a3:bd:cb:35:76:
25:97:aa:84:53:ac:ce:18:cd:97:a3:5e:b0:c2:77:
de:4a:b7:a5:69:5d:b3:54:7c:3b:34:c9:6e:b8:3e:
0e:72:81:ad:9f:fe:f6:d9:51:43:45:d3:24:31:12:
da:1c:31:ed:72:76:ed:a2:e9:41:14:23:54:3a:14:
f0:3f:50:8f:3c:f9:91:32:c8:0f:a1:d4:72:cf:34:
19:5b:0d:20:de:6b:c6:3b:90:6b:cb:f5:ec:9a:ae:
5f:51:38:6f:9d:38:9a:b4:e5:f9:2a:cf:00:00:eb:
eb:e3:94:a4:6d:2b:f9:5b:3b:b7:1d:fe:7d:37:fe:
59:ca:32:05:03:43:b8:b7:23:43:bd:00:54:60:80:
93:3c:d6:52:15:00:37:9d:60:e2:e8:d2:72:23:ee:
39:67:6c:e6:70:74:3d:5c:05:71:27:51:aa:33:11:
31:7c:31:fb:9d:19:a7:9f:53:9c:8b:6a:8b:2d:bb:
bf:60:7d:9d:ad:8a:35:5a:b6:ce:83:80:70:95:f9:
02:75:2b:7f:ad:94:f1:49:b1:20:78:9d:98:96:a1:
7b:ee:e2:f4:aa:cc:84:00:bc:52:10:35:3c:08:dc:
12:b3:eb:ba:0c:b6:22:18:ad:53:83:97:3b:2f:b8:
bd:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:55:46:99:26:D1:F9:34:F3:AF:29:64:5E:B6:C1:0B:B6:06:9B:C9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B7770/E6810410C0AE11EAB95AB572C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B7770/E6810410C0AE11EAB95AB572C4F9AE02/fVVGmSbR-TTzrylkXrbBC7YGm8k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38074
38222
140868
sbgp-ipAddrBlock: critical
IPv4:
103.152.178.0/24
103.160.48.0/24
IPv6:
2001:df4:1780::/47
2406:7ec0::/32
Signature Algorithm: sha256WithRSAEncryption
46:38:4b:67:d5:02:27:7a:0e:46:72:b8:84:d9:b8:e1:9e:96:
cb:bf:fc:f9:bb:0f:d0:73:5f:a2:21:fa:89:8f:e9:b6:91:2d:
68:8c:12:d9:db:fb:c5:df:23:8a:66:dd:a6:6b:7a:d8:25:2d:
9d:37:a3:8c:88:a2:f9:84:dd:e1:e4:29:68:30:d6:68:03:53:
f9:57:d5:b3:d0:ba:af:9f:96:45:67:98:04:aa:09:80:18:25:
a4:af:87:2c:e8:6d:48:72:35:de:58:b8:f8:b5:b0:e7:33:c9:
a5:bd:06:b2:70:1e:1f:71:0b:12:41:26:50:11:cb:7a:3d:ca:
28:27:7a:3c:91:2a:12:45:13:eb:4e:9e:56:cf:29:22:8f:9a:
d9:27:64:b1:a3:0a:60:2e:7d:49:3f:5e:69:9a:3d:cd:39:b3:
24:d5:56:d9:a0:43:22:f9:6c:67:e8:c6:a6:31:22:12:66:6d:
0c:0b:90:82:31:3f:9a:3f:f1:a4:63:c7:41:b4:bf:c4:e4:a2:
a1:00:eb:5b:bb:28:d7:e9:92:de:49:72:cf:ea:03:62:0f:a2:
ab:02:4b:83:91:e1:bc:5d:70:68:28:75:4e:a4:19:94:97:4d:
2b:02:4a:85:91:0b:d4:77:e5:68:00:42:a4:c8:94:a7:aa:ae:
e1:ef:93:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:56 2024 by rpki-client on console-ams.rpki-client.org