Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer
File: fWXr4UwwRuc-OYaVcwKibggfGvg.cer (raw, json)
Hash identifier: WXHJyZQXIwJjip8gtR5NwIMeV9YqbE8UgxrhMRKmjGo=
Subject key identifier: 7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B6F4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 15 Aug 2023 14:33:59 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 7629
AS: 9256
AS: 9515
AS: 24071
AS: 24094 -- 24095
AS: 24131
AS: 24221
AS: 24241
AS: 38575
AS: 38867
AS: 45791
AS: 55347
AS: 56034
AS: 56222
AS: 56316
AS: 58435
AS: 58633
AS: 58756
AS: 58809
AS: 132103
AS: 132156
AS: 132206
AS: 133039
AS: 133369
AS: 133780
AS: 141409
IP: 45.118.36.0/22
IP: 103.1.116.0/22
IP: 103.233.32.0/22
IP: 125.5.0.0/16
IP: 202.57.64.0/18
IP: 202.163.192.0/18
IP: 203.131.64.0 -- 203.131.191.255
IP: 203.172.0.0/19
IP: 222.126.0.0/17
IP: 2404:d8::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 06:50:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112372 (0x1b6f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 15 14:33:59 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:76:ff:f5:a4:45:07:f0:dd:78:da:0a:e0:68:
e0:71:7c:17:d6:fc:78:48:a7:cc:be:04:94:e0:38:
99:83:9a:23:02:b3:cf:a5:14:3a:cc:07:37:55:7b:
48:4d:8a:8e:c7:5c:b2:f7:00:ba:6d:0d:09:5f:0a:
30:0d:98:0e:f3:03:76:55:d7:24:c3:c9:4c:a9:3f:
cf:af:cb:8e:46:da:fb:d2:d2:3b:b6:c6:8a:8d:b9:
2f:f4:84:6c:2d:50:e3:7b:41:eb:a7:c9:9b:f5:52:
5d:74:a7:44:71:78:d6:cd:da:3a:a0:05:fc:4c:55:
57:18:18:27:3b:df:84:4e:89:b6:da:13:ee:58:f1:
d3:8b:73:a7:22:82:35:ab:b8:41:b3:41:9f:6f:68:
6c:6c:d7:a9:27:3d:88:2d:bc:a8:17:bd:fe:b4:79:
c4:6b:15:28:0e:5f:07:fd:59:b7:fa:2b:a5:ae:6a:
ad:d3:77:3c:cb:f5:b1:e5:3f:51:af:38:ed:b9:90:
a5:34:46:47:e6:01:b8:05:57:e2:97:2e:95:9e:12:
71:61:86:ea:14:21:66:d0:ea:6f:10:48:02:ff:f0:
fe:aa:a7:57:33:67:cb:4c:b9:92:bd:32:4d:51:b8:
a9:cc:23:6c:b2:7e:2a:50:26:de:cd:c9:f7:b5:b5:
a6:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
7629
9256
9515
24071
24094-24095
24131
24221
24241
38575
38867
45791
55347
56034
56222
56316
58435
58633
58756
58809
132103
132156
132206
133039
133369
133780
141409
sbgp-ipAddrBlock: critical
IPv4:
45.118.36.0/22
103.1.116.0/22
103.233.32.0/22
125.5.0.0/16
202.57.64.0/18
202.163.192.0/18
203.131.64.0-203.131.191.255
203.172.0.0/19
222.126.0.0/17
IPv6:
2404:d8::/32
Signature Algorithm: sha256WithRSAEncryption
ba:ea:17:7d:2a:c9:e5:d8:47:8f:9d:56:1b:a2:d2:32:7c:cf:
46:44:66:12:f3:fe:a5:43:46:5d:dc:39:a9:e7:a2:b2:68:5f:
da:44:d0:c2:81:50:7b:0e:55:a6:bc:84:07:08:67:80:1b:89:
5d:75:70:7c:3d:33:b4:c2:90:19:30:3d:70:27:5e:78:79:f6:
09:f6:8f:7c:f3:48:6d:6c:82:d9:33:49:8d:93:c4:75:24:d0:
fe:1e:45:73:b8:3c:a1:89:2d:86:9e:c7:13:8c:13:6d:2b:8e:
ff:a8:cd:24:39:a1:d4:f0:4e:7d:98:0c:91:cd:7c:36:f7:63:
5e:05:f2:90:33:71:4d:bb:58:a9:48:53:f3:99:60:98:df:51:
8c:47:51:50:2a:e3:eb:3e:35:dd:6f:56:a6:ae:22:a4:79:2e:
78:9d:ac:50:88:dd:68:75:1b:95:bc:17:2d:26:24:bb:d9:42:
17:52:e3:44:7c:94:12:b1:6d:1e:2c:42:6c:42:16:70:b6:1a:
e9:b3:78:b0:9b:2f:3c:32:fe:30:af:7a:c4:7f:e9:15:39:45:
9b:6a:c2:ad:d6:ea:bc:eb:61:38:ec:7a:09:60:f6:d2:af:df:
aa:26:e8:e4:61:8f:69:5f:87:e0:41:e6:74:7d:68:41:05:d9:
3c:8f:68:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 07:43:32 2024 by rpki-client on console-fra.rpki-client.org