Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/foUuJJ2cR8tllecBfQfeJ8OUrwk.cer
File: foUuJJ2cR8tllecBfQfeJ8OUrwk.cer (raw, json)
Hash identifier: 4WnfaQvpQpGIu5rKEFVzbINNXIyo1Wm7X+CYWCwhRVE=
Subject key identifier: 7E:85:2E:24:9D:9C:47:CB:65:95:E7:01:7D:07:DE:27:C3:94:AF:09
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02017E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/foUuJJ2cR8tllecBfQfeJ8OUrwk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 19 Jul 2024 20:22:15 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 3717
AS: 4538
AS: 4789
AS: 4839 -- 4840
AS: 4843
AS: 9401 -- 9407
AS: 9425
AS: 17735
AS: 18011
AS: 23910 -- 23912
AS: 24301 -- 24302
AS: 24310
AS: 24348 -- 24372
AS: 24489 -- 24490
AS: 24575
AS: 38027
AS: 38255
AS: 38272
AS: 38585
AS: 38587
AS: 45567
AS: 45576
AS: 45587
AS: 55826
AS: 59201
AS: 132551 -- 132553
AS: 132886
AS: 134169
AS: 135570
AS: 136446
AS: 138000
AS: 138011
AS: 138182
AS: 138369 -- 138371
AS: 138373 -- 138378
AS: 138381
AS: 138393
AS: 138438
AS: 138440 -- 138442
AS: 139205
AS: 139738
AS: 139774
AS: 141005
AS: 141168 -- 141170
AS: 142067 -- 142106
AS: 142650 -- 146745
AS: 151423 -- 151462
IP: 1.51.0.0/16
IP: 1.184.0.0/15
IP: 42.244.0.0/14
IP: 49.52.0.0/14
IP: 49.120.0.0/14
IP: 49.140.0.0/15
IP: 49.208.0.0/15
IP: 58.154.0.0/15
IP: 58.192.0.0/12
IP: 59.64.0.0/12
IP: 101.4.0.0/14
IP: 101.76.0.0/15
IP: 103.137.60.0/24
IP: 103.165.110.0/23
IP: 110.64.0.0/15
IP: 111.114.0.0 -- 111.117.255.255
IP: 111.186.0.0/15
IP: 113.54.0.0/15
IP: 114.212.0.0 -- 114.214.255.255
IP: 115.24.0.0/14
IP: 115.154.0.0 -- 115.158.255.255
IP: 116.13.0.0/16
IP: 116.56.0.0/15
IP: 118.202.0.0/15
IP: 118.228.0.0 -- 118.230.255.255
IP: 120.94.0.0/15
IP: 121.48.0.0/15
IP: 121.52.160.0/19
IP: 121.192.0.0/14
IP: 121.248.0.0/14
IP: 122.204.0.0/14
IP: 125.216.0.0/13
IP: 175.185.0.0 -- 175.187.255.255
IP: 180.84.0.0/15
IP: 180.201.0.0/16
IP: 180.208.0.0/15
IP: 183.168.0.0 -- 183.170.255.255
IP: 183.172.0.0/14
IP: 202.4.128.0/19
IP: 202.38.2.0/23
IP: 202.38.64.0/18
IP: 202.38.135.0/24
IP: 202.38.140.0/23
IP: 202.38.146.0/23
IP: 202.38.184.0 -- 202.38.255.255
IP: 202.112.0.0 -- 202.121.255.255
IP: 202.127.216.0 -- 202.127.255.255
IP: 202.179.240.0/20
IP: 202.192.0.0/12
IP: 203.91.120.0/21
IP: 210.25.0.0 -- 210.47.255.255
IP: 211.64.0.0/13
IP: 211.80.0.0/13
IP: 218.192.0.0/13
IP: 219.216.0.0 -- 219.231.255.255
IP: 219.242.0.0 -- 219.247.255.255
IP: 222.16.0.0/12
IP: 222.192.0.0/12
IP: 223.2.0.0/15
IP: 223.128.0.0/15
IP: 2001:250:: -- 2001:256:ffff:ffff:ffff:ffff:ffff:ffff
IP: 2001:da8:: -- 2001:daa:ffff:ffff:ffff:ffff:ffff:ffff
IP: 2001:dd9::/48
IP: 2400:6000::/32
IP: 2401:34a0::/31
IP: 2401:9b20::/31
IP: 2401:cc00::/32
IP: 2401:ec00::/32
IP: 2402:2000::/32
IP: 2402:4b80::/32
IP: 2402:e480::/32
IP: 2402:f000::/32
IP: 2403:3140::/32
IP: 2403:8c00::/32
IP: 2403:ac00::/32
IP: 2403:d400::/32
IP: 2406:280::/32
IP: 240a:a000::/20
IP: 240b:e000::/26
IP: 240c:c000::/20
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131454 (0x2017e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 19 20:22:15 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91E5D61/serialNumber=7E852E249D9C47CB6595E7017D07DE27C394AF09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:12:02:1e:29:0c:45:b0:bb:c3:e0:5f:ec:b4:
e4:f8:87:8b:99:cc:84:3a:3e:ae:62:1e:19:54:f5:
29:24:d3:e7:e0:cf:0a:7b:0a:0b:a6:05:4a:14:7f:
71:60:9d:5a:bb:61:82:4d:f6:6e:2e:44:7b:35:59:
bf:74:ff:af:6a:e0:7d:ae:29:64:61:79:70:4d:f1:
b8:82:d8:db:00:65:19:c4:8b:ae:94:4b:4e:e4:ef:
0d:d7:00:49:21:0c:90:01:97:9d:98:de:a4:19:97:
57:32:c7:68:2b:b2:c9:db:26:03:0c:3d:9d:19:55:
48:8d:d3:3f:82:01:a4:f5:eb:78:bf:1a:c8:88:92:
5d:2f:75:b3:42:c6:0f:ed:09:96:22:2f:25:50:9b:
13:00:3f:0b:4f:39:66:81:2c:e7:b8:69:08:96:7d:
9a:26:14:56:23:cb:bf:53:04:7e:29:ec:d6:dc:6e:
c3:7b:66:43:06:68:cf:7d:61:64:67:f7:3d:1b:82:
08:88:51:85:e5:87:63:37:d5:82:86:dc:c1:05:4a:
b1:17:51:cc:53:f9:dd:64:f7:ec:dd:60:60:d3:b0:
50:0b:8e:61:26:86:ea:f6:a3:f8:0e:ef:82:11:1d:
6d:19:aa:8e:23:37:63:f8:ed:63:e5:c6:0c:1c:fd:
7d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:85:2E:24:9D:9C:47:CB:65:95:E7:01:7D:07:DE:27:C3:94:AF:09
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/foUuJJ2cR8tllecBfQfeJ8OUrwk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
3717
4538
4789
4839-4840
4843
9401-9407
9425
17735
18011
23910-23912
24301-24302
24310
24348-24372
24489-24490
24575
38027
38255
38272
38585
38587
45567
45576
45587
55826
59201
132551-132553
132886
134169
135570
136446
138000
138011
138182
138369-138371
138373-138378
138381
138393
138438
138440-138442
139205
139738
139774
141005
141168-141170
142067-142106
142650-146745
151423-151462
sbgp-ipAddrBlock: critical
IPv4:
1.51.0.0/16
1.184.0.0/15
42.244.0.0/14
49.52.0.0/14
49.120.0.0/14
49.140.0.0/15
49.208.0.0/15
58.154.0.0/15
58.192.0.0/12
59.64.0.0/12
101.4.0.0/14
101.76.0.0/15
103.137.60.0/24
103.165.110.0/23
110.64.0.0/15
111.114.0.0-111.117.255.255
111.186.0.0/15
113.54.0.0/15
114.212.0.0-114.214.255.255
115.24.0.0/14
115.154.0.0-115.158.255.255
116.13.0.0/16
116.56.0.0/15
118.202.0.0/15
118.228.0.0-118.230.255.255
120.94.0.0/15
121.48.0.0/15
121.52.160.0/19
121.192.0.0/14
121.248.0.0/14
122.204.0.0/14
125.216.0.0/13
175.185.0.0-175.187.255.255
180.84.0.0/15
180.201.0.0/16
180.208.0.0/15
183.168.0.0-183.170.255.255
183.172.0.0/14
202.4.128.0/19
202.38.2.0/23
202.38.64.0/18
202.38.135.0/24
202.38.140.0/23
202.38.146.0/23
202.38.184.0-202.38.255.255
202.112.0.0-202.121.255.255
202.127.216.0-202.127.255.255
202.179.240.0/20
202.192.0.0/12
203.91.120.0/21
210.25.0.0-210.47.255.255
211.64.0.0/13
211.80.0.0/13
218.192.0.0/13
219.216.0.0-219.231.255.255
219.242.0.0-219.247.255.255
222.16.0.0/12
222.192.0.0/12
223.2.0.0/15
223.128.0.0/15
IPv6:
2001:250::-2001:256:ffff:ffff:ffff:ffff:ffff:ffff
2001:da8::-2001:daa:ffff:ffff:ffff:ffff:ffff:ffff
2001:dd9::/48
2400:6000::/32
2401:34a0::/31
2401:9b20::/31
2401:cc00::/32
2401:ec00::/32
2402:2000::/32
2402:4b80::/32
2402:e480::/32
2402:f000::/32
2403:3140::/32
2403:8c00::/32
2403:ac00::/32
2403:d400::/32
2406:280::/32
240a:a000::/20
240b:e000::/26
240c:c000::/20
Signature Algorithm: sha256WithRSAEncryption
4f:60:d0:22:3c:45:26:31:05:a5:cc:7a:46:2c:ee:33:10:9b:
a1:f8:4c:09:75:32:51:69:cd:23:d4:c3:7e:d4:f3:ef:d1:03:
8a:cc:6b:1f:40:f9:b2:64:33:47:46:24:19:9e:77:ae:3e:d2:
2f:fd:0d:d0:3d:08:06:c2:b9:2f:d1:4e:b4:e8:a1:ae:01:93:
9c:9a:31:d3:c9:e9:4f:cb:77:c5:62:71:98:22:c9:38:ae:9f:
7e:59:da:bd:bc:1f:08:a0:68:00:63:c3:50:87:83:d8:b5:c0:
d2:cf:0d:87:cc:65:c9:3d:57:92:5a:20:cb:bf:5a:cb:c7:8c:
bc:bb:18:e4:6c:b3:17:c6:7e:6e:8b:d9:39:80:71:af:83:31:
c7:c5:fe:fd:b5:3a:6b:43:5a:67:f4:c1:ee:23:21:fd:2c:8b:
5a:6a:8d:82:44:5c:a1:23:ee:21:ef:07:9d:91:7e:24:99:2b:
9e:a3:05:af:9d:70:f4:c3:5f:54:38:26:f3:71:10:1d:09:09:
6b:ef:19:48:eb:ae:4c:6c:7c:47:c0:b7:9b:23:f4:e2:50:2d:
60:bd:42:e9:76:b7:cf:e2:5f:f6:7a:ce:52:39:90:b7:1f:8b:
f8:49:2a:f3:e3:84:2e:79:bf:b6:b0:4c:6c:76:14:97:7c:da:
7f:71:03:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:24:55 2024 by rpki-client on console-fra.rpki-client.org