Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer
File: fWXr4UwwRuc-OYaVcwKibggfGvg.cer (raw, json)
Hash identifier: BHcaLVy1EwzL7ZDntgSFWVfAywDaYV06ivbT/qAKe3w=
Subject key identifier: 7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02155A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 23 Oct 2024 05:08:59 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 7629
AS: 9256
AS: 9515
AS: 23930
AS: 24071
AS: 24094 -- 24095
AS: 24131
AS: 24221
AS: 24241
AS: 38491
AS: 38539
AS: 38575
AS: 38581
AS: 38867
AS: 45791
AS: 55347
AS: 56034
AS: 56222
AS: 56316
AS: 58435
AS: 58633
AS: 58756
AS: 58809
AS: 132103
AS: 132156
AS: 132206
AS: 132209
AS: 132212
AS: 132301
AS: 132495
AS: 132913
AS: 133039
AS: 133140
AS: 133369
AS: 133780
AS: 140708
AS: 141409
IP: 43.243.124.0/22
IP: 45.118.36.0/22
IP: 103.1.116.0/22
IP: 103.38.212.0/22
IP: 103.233.32.0/22
IP: 116.93.0.0/17
IP: 121.127.0.0/19
IP: 125.5.0.0/16
IP: 202.57.64.0/18
IP: 202.163.192.0/18
IP: 203.99.232.0/21
IP: 203.131.64.0 -- 203.131.191.255
IP: 203.172.0.0/19
IP: 203.208.24.0/21
IP: 222.126.0.0/17
IP: 2401:9800::/32
IP: 2404:d8::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136538 (0x2155a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 23 05:08:59 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:76:ff:f5:a4:45:07:f0:dd:78:da:0a:e0:68:
e0:71:7c:17:d6:fc:78:48:a7:cc:be:04:94:e0:38:
99:83:9a:23:02:b3:cf:a5:14:3a:cc:07:37:55:7b:
48:4d:8a:8e:c7:5c:b2:f7:00:ba:6d:0d:09:5f:0a:
30:0d:98:0e:f3:03:76:55:d7:24:c3:c9:4c:a9:3f:
cf:af:cb:8e:46:da:fb:d2:d2:3b:b6:c6:8a:8d:b9:
2f:f4:84:6c:2d:50:e3:7b:41:eb:a7:c9:9b:f5:52:
5d:74:a7:44:71:78:d6:cd:da:3a:a0:05:fc:4c:55:
57:18:18:27:3b:df:84:4e:89:b6:da:13:ee:58:f1:
d3:8b:73:a7:22:82:35:ab:b8:41:b3:41:9f:6f:68:
6c:6c:d7:a9:27:3d:88:2d:bc:a8:17:bd:fe:b4:79:
c4:6b:15:28:0e:5f:07:fd:59:b7:fa:2b:a5:ae:6a:
ad:d3:77:3c:cb:f5:b1:e5:3f:51:af:38:ed:b9:90:
a5:34:46:47:e6:01:b8:05:57:e2:97:2e:95:9e:12:
71:61:86:ea:14:21:66:d0:ea:6f:10:48:02:ff:f0:
fe:aa:a7:57:33:67:cb:4c:b9:92:bd:32:4d:51:b8:
a9:cc:23:6c:b2:7e:2a:50:26:de:cd:c9:f7:b5:b5:
a6:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
7629
9256
9515
23930
24071
24094-24095
24131
24221
24241
38491
38539
38575
38581
38867
45791
55347
56034
56222
56316
58435
58633
58756
58809
132103
132156
132206
132209
132212
132301
132495
132913
133039
133140
133369
133780
140708
141409
sbgp-ipAddrBlock: critical
IPv4:
43.243.124.0/22
45.118.36.0/22
103.1.116.0/22
103.38.212.0/22
103.233.32.0/22
116.93.0.0/17
121.127.0.0/19
125.5.0.0/16
202.57.64.0/18
202.163.192.0/18
203.99.232.0/21
203.131.64.0-203.131.191.255
203.172.0.0/19
203.208.24.0/21
222.126.0.0/17
IPv6:
2401:9800::/32
2404:d8::/32
Signature Algorithm: sha256WithRSAEncryption
98:99:9f:e9:2f:2e:f9:d9:dd:cc:64:92:66:7d:09:ae:8a:eb:
56:1f:fe:f3:11:9e:ed:f8:a1:b4:3c:dc:12:b4:43:c5:05:da:
14:fd:c5:3e:23:8f:4a:5b:92:c7:d6:5d:ed:99:37:4e:fd:4f:
19:62:8a:d3:19:8d:1e:d9:c9:c6:20:18:85:7c:10:91:a0:d7:
0a:59:5c:15:18:05:f3:20:87:59:a4:75:c2:de:35:e5:36:a1:
ff:7f:50:23:9b:78:0b:d2:c5:c3:22:18:2d:d9:ae:ad:c8:18:
74:c7:6b:7f:3e:56:3b:b6:75:1d:f1:9b:bc:41:2e:af:ad:e0:
7b:c7:a7:10:3c:05:29:63:2d:23:3e:7a:57:68:43:b3:a0:ea:
9a:6f:b4:a8:55:8b:51:22:42:e5:69:48:39:5d:f7:b8:1d:17:
55:9f:48:b9:75:fe:6b:eb:bd:f2:0c:10:09:85:85:eb:2a:df:
0e:7e:24:b3:77:5d:20:62:cb:dd:5c:1e:f4:57:d8:a4:dd:28:
ba:17:f0:c1:27:47:7d:93:f2:3c:be:b2:d8:fa:90:db:db:92:
24:8d:7d:b0:84:36:ca:69:db:c1:4d:cc:3c:93:f7:3a:52:a2:
1e:c7:ee:f8:8d:bf:75:6a:23:e2:cd:02:e0:89:ea:bd:b5:4b:
9c:a8:7b:77
-----BEGIN CERTIFICATE-----
MIIHQzCCBiugAwIBAgIDAhVaMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTAyMzA1MDg1OVoXDTI1MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNDU0NDYxMTAvBgNVBAUTKDdENjVFQkUxNEMzMDQ2RTczRTM5ODY5
NTczMDJBMjZFMDgxRjFBRjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC9dv/1pEUH8N142grgaOBxfBfW/HhIp8y+BJTgOJmDmiMCs8+lFDrMBzdVe0hN
io7HXLL3ALptDQlfCjANmA7zA3ZV1yTDyUypP8+vy45G2vvS0ju2xoqNuS/0hGwt
UON7QeunyZv1Ul10p0RxeNbN2jqgBfxMVVcYGCc734ROibbaE+5Y8dOLc6cigjWr
uEGzQZ9vaGxs16knPYgtvKgXvf60ecRrFSgOXwf9Wbf6K6Wuaq3TdzzL9bHlP1Gv
OO25kKU0RkfmAbgFV+KXLpWeEnFhhuoUIWbQ6m8QSAL/8P6qp1czZ8tMuZK9Mk1R
uKnMI2yyfipQJt7Nyfe1taYvAgMBAAGjggQ4MIIENDAdBgNVHQ4EFgQUfWXr4Uww
Ruc+OYaVcwKibggfGvgwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTQ1NDQ2L0FDQTJFNzVDMUZDNTExRTVCNDUwREQ2MkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE0NTQ0Ni9BQ0EyRTc1QzFGQzUxMUU1QjQ1MERENjJDNEY5QUUwMi9mV1hyNFV3
d1J1Yy1PWWFWY3dLaWJnZ2ZHdmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgc8GCCsGAQUFBwEIAQH/BIG/
MIG8oIG5MIG2AgIdzQICJCgCAiUrAgJdegICXgcwCAICXh4CAl4fAgJeQwICXp0C
Al6xAgMAllsCAwCWiwIDAJavAgMAlrUCAwCX0wIDALLfAgMA2DMCAwDa4gIDANue
AgMA2/wCAwDkQwIDAOUJAgMA5YQCAwDluQIDAgQHAgMCBDwCAwIEbgIDAgRxAgMC
BHQCAwIEzQIDAgWPAgMCBzECAwIHrwIDAggUAgMCCPkCAwIKlAIDAiWkAgMCKGEw
gZEGCCsGAQUFBwEHAQH/BIGBMH8wZwQCAAEwYQMEAivzfAMEAi12JAMEAmcBdAME
Amcm1AMEAmfpIAMEB3RdAAMEBXl/AAMDAH0FAwQGyjlAAwQGyqPAAwQDy2PoMAwD
BAbLg0ADBAbLg4ADBAXLrAADBAPL0BgDBAfefgAwFAQCAAIwDgMFACQBmAADBQAk
BADYMA0GCSqGSIb3DQEBCwUAA4IBAQCYmZ/pLy752d3MZJJmfQmuiutWH/7zEZ7t
+KG0PNwStEPFBdoU/cU+I49KW5LH1l3tmTdO/U8ZYorTGY0e2cnGIBiFfBCRoNcK
WVwVGAXzIIdZpHXC3jXlNqH/f1Ajm3gL0sXDIhgt2a6tyBh0x2t/PlY7tnUd8Zu8
QS6vreB7x6cQPAUpYy0jPnpXaEOzoOqab7SoVYtRIkLlaUg5Xfe4HRdVn0i5df5r
673yDBAJhYXrKt8OfiSzd10gYsvdXB70V9ik3Si6F/DBJ0d9k/I8vrLY+pDb25Ik
jX2whDbKadvBTcw8k/c6UqIex+74jb91aiPizQLgieq9tUucqHt3
-----END CERTIFICATE-----
Generated at Fri Nov 22 22:15:40 2024 by rpki-client on console-ams.rpki-client.org