Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/foUuJJ2cR8tllecBfQfeJ8OUrwk.cer
File: foUuJJ2cR8tllecBfQfeJ8OUrwk.cer (raw, json)
Hash identifier: ZRuh5TEqfa3aTztr5Q+em/b2ktZLXSIl7QUNdyybk3M=
Subject key identifier: 7E:85:2E:24:9D:9C:47:CB:65:95:E7:01:7D:07:DE:27:C3:94:AF:09
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EC8D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/foUuJJ2cR8tllecBfQfeJ8OUrwk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 19 Apr 2024 21:48:49 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 3717
AS: 4538
AS: 4789
AS: 4839 -- 4840
AS: 4843
AS: 9401 -- 9407
AS: 9425
AS: 17735
AS: 18011
AS: 23910 -- 23912
AS: 24301 -- 24302
AS: 24310
AS: 24348 -- 24372
AS: 24489 -- 24490
AS: 24575
AS: 38027
AS: 38255
AS: 38272
AS: 38585
AS: 38587
AS: 45567
AS: 45576
AS: 45587
AS: 55826
AS: 59201
AS: 132551 -- 132553
AS: 132886
AS: 134169
AS: 135570
AS: 136446
AS: 138000
AS: 138011
AS: 138182
AS: 138369 -- 138371
AS: 138373 -- 138378
AS: 138381
AS: 138393
AS: 138438
AS: 138440 -- 138442
AS: 139205
AS: 139738
AS: 139774
AS: 141005
AS: 141168 -- 141170
AS: 142067 -- 142106
AS: 142650 -- 146745
AS: 151423 -- 151462
IP: 1.51.0.0/16
IP: 1.184.0.0/15
IP: 42.244.0.0/14
IP: 49.52.0.0/14
IP: 49.120.0.0/14
IP: 49.140.0.0/15
IP: 49.208.0.0/15
IP: 58.154.0.0/15
IP: 58.192.0.0/12
IP: 59.64.0.0/12
IP: 101.4.0.0/14
IP: 101.76.0.0/15
IP: 103.137.60.0/24
IP: 103.165.110.0/23
IP: 110.64.0.0/15
IP: 111.114.0.0 -- 111.117.255.255
IP: 111.186.0.0/15
IP: 113.54.0.0/15
IP: 114.212.0.0 -- 114.214.255.255
IP: 115.24.0.0/14
IP: 115.154.0.0 -- 115.158.255.255
IP: 116.13.0.0/16
IP: 116.56.0.0/15
IP: 118.202.0.0/15
IP: 118.228.0.0 -- 118.230.255.255
IP: 120.94.0.0/15
IP: 121.48.0.0/15
IP: 121.52.160.0/19
IP: 121.192.0.0/14
IP: 121.248.0.0/14
IP: 122.204.0.0/14
IP: 125.216.0.0/13
IP: 175.185.0.0 -- 175.187.255.255
IP: 180.84.0.0/15
IP: 180.201.0.0/16
IP: 180.208.0.0/15
IP: 183.168.0.0 -- 183.170.255.255
IP: 183.172.0.0/14
IP: 202.4.128.0/19
IP: 202.38.2.0/23
IP: 202.38.64.0/18
IP: 202.38.135.0/24
IP: 202.38.140.0/23
IP: 202.38.146.0/23
IP: 202.38.184.0 -- 202.38.255.255
IP: 202.112.0.0 -- 202.121.255.255
IP: 202.127.216.0 -- 202.127.255.255
IP: 202.179.240.0/20
IP: 202.192.0.0/12
IP: 203.91.120.0/21
IP: 210.25.0.0 -- 210.47.255.255
IP: 211.64.0.0/13
IP: 211.80.0.0/13
IP: 218.192.0.0/13
IP: 219.216.0.0 -- 219.231.255.255
IP: 219.242.0.0 -- 219.247.255.255
IP: 222.16.0.0/12
IP: 222.192.0.0/12
IP: 223.2.0.0/15
IP: 223.128.0.0/15
IP: 2001:250:: -- 2001:256:ffff:ffff:ffff:ffff:ffff:ffff
IP: 2001:da8:: -- 2001:daa:ffff:ffff:ffff:ffff:ffff:ffff
IP: 2001:dd9::/48
IP: 2400:6000::/32
IP: 2401:34a0::/30
IP: 2401:cc00::/32
IP: 2401:ec00::/32
IP: 2402:2000::/32
IP: 2402:4b80::/32
IP: 2402:e480::/32
IP: 2402:f000::/32
IP: 2403:3140::/32
IP: 2403:8c00::/32
IP: 2403:ac00::/32
IP: 2403:d400::/32
IP: 2406:280::/32
IP: 240a:a000::/20
IP: 240b:e000::/26
IP: 240c:c000::/20
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 00:57:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126093 (0x1ec8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 19 21:48:49 2024 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91E5D61/serialNumber=7E852E249D9C47CB6595E7017D07DE27C394AF09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:12:02:1e:29:0c:45:b0:bb:c3:e0:5f:ec:b4:
e4:f8:87:8b:99:cc:84:3a:3e:ae:62:1e:19:54:f5:
29:24:d3:e7:e0:cf:0a:7b:0a:0b:a6:05:4a:14:7f:
71:60:9d:5a:bb:61:82:4d:f6:6e:2e:44:7b:35:59:
bf:74:ff:af:6a:e0:7d:ae:29:64:61:79:70:4d:f1:
b8:82:d8:db:00:65:19:c4:8b:ae:94:4b:4e:e4:ef:
0d:d7:00:49:21:0c:90:01:97:9d:98:de:a4:19:97:
57:32:c7:68:2b:b2:c9:db:26:03:0c:3d:9d:19:55:
48:8d:d3:3f:82:01:a4:f5:eb:78:bf:1a:c8:88:92:
5d:2f:75:b3:42:c6:0f:ed:09:96:22:2f:25:50:9b:
13:00:3f:0b:4f:39:66:81:2c:e7:b8:69:08:96:7d:
9a:26:14:56:23:cb:bf:53:04:7e:29:ec:d6:dc:6e:
c3:7b:66:43:06:68:cf:7d:61:64:67:f7:3d:1b:82:
08:88:51:85:e5:87:63:37:d5:82:86:dc:c1:05:4a:
b1:17:51:cc:53:f9:dd:64:f7:ec:dd:60:60:d3:b0:
50:0b:8e:61:26:86:ea:f6:a3:f8:0e:ef:82:11:1d:
6d:19:aa:8e:23:37:63:f8:ed:63:e5:c6:0c:1c:fd:
7d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:85:2E:24:9D:9C:47:CB:65:95:E7:01:7D:07:DE:27:C3:94:AF:09
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/foUuJJ2cR8tllecBfQfeJ8OUrwk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
3717
4538
4789
4839-4840
4843
9401-9407
9425
17735
18011
23910-23912
24301-24302
24310
24348-24372
24489-24490
24575
38027
38255
38272
38585
38587
45567
45576
45587
55826
59201
132551-132553
132886
134169
135570
136446
138000
138011
138182
138369-138371
138373-138378
138381
138393
138438
138440-138442
139205
139738
139774
141005
141168-141170
142067-142106
142650-146745
151423-151462
sbgp-ipAddrBlock: critical
IPv4:
1.51.0.0/16
1.184.0.0/15
42.244.0.0/14
49.52.0.0/14
49.120.0.0/14
49.140.0.0/15
49.208.0.0/15
58.154.0.0/15
58.192.0.0/12
59.64.0.0/12
101.4.0.0/14
101.76.0.0/15
103.137.60.0/24
103.165.110.0/23
110.64.0.0/15
111.114.0.0-111.117.255.255
111.186.0.0/15
113.54.0.0/15
114.212.0.0-114.214.255.255
115.24.0.0/14
115.154.0.0-115.158.255.255
116.13.0.0/16
116.56.0.0/15
118.202.0.0/15
118.228.0.0-118.230.255.255
120.94.0.0/15
121.48.0.0/15
121.52.160.0/19
121.192.0.0/14
121.248.0.0/14
122.204.0.0/14
125.216.0.0/13
175.185.0.0-175.187.255.255
180.84.0.0/15
180.201.0.0/16
180.208.0.0/15
183.168.0.0-183.170.255.255
183.172.0.0/14
202.4.128.0/19
202.38.2.0/23
202.38.64.0/18
202.38.135.0/24
202.38.140.0/23
202.38.146.0/23
202.38.184.0-202.38.255.255
202.112.0.0-202.121.255.255
202.127.216.0-202.127.255.255
202.179.240.0/20
202.192.0.0/12
203.91.120.0/21
210.25.0.0-210.47.255.255
211.64.0.0/13
211.80.0.0/13
218.192.0.0/13
219.216.0.0-219.231.255.255
219.242.0.0-219.247.255.255
222.16.0.0/12
222.192.0.0/12
223.2.0.0/15
223.128.0.0/15
IPv6:
2001:250::-2001:256:ffff:ffff:ffff:ffff:ffff:ffff
2001:da8::-2001:daa:ffff:ffff:ffff:ffff:ffff:ffff
2001:dd9::/48
2400:6000::/32
2401:34a0::/30
2401:cc00::/32
2401:ec00::/32
2402:2000::/32
2402:4b80::/32
2402:e480::/32
2402:f000::/32
2403:3140::/32
2403:8c00::/32
2403:ac00::/32
2403:d400::/32
2406:280::/32
240a:a000::/20
240b:e000::/26
240c:c000::/20
Signature Algorithm: sha256WithRSAEncryption
ba:d9:d8:49:3a:61:13:4b:ec:60:31:ba:bc:16:45:f0:3c:5e:
34:94:19:1b:68:a2:c0:00:7b:d7:0e:3a:7d:57:bb:99:8c:5d:
02:a5:a8:67:9b:a8:22:06:bc:5f:10:af:3b:73:d5:79:74:6e:
24:b8:f3:7a:d3:23:73:7e:b3:8f:a1:b0:c4:b4:60:7c:3e:47:
70:a4:bd:02:6b:a6:1a:13:1b:f5:36:30:e3:32:25:78:dd:28:
e4:dc:c0:52:f9:b1:15:31:8f:b9:3a:63:df:79:ad:48:30:a8:
db:5d:8f:29:c5:2d:9f:54:3b:81:e9:bc:b0:e3:8b:8d:df:29:
ca:cd:10:06:65:d0:b2:4d:b9:15:20:5d:a4:6d:63:d4:2f:8f:
e9:c2:04:0c:8f:d3:77:49:6c:58:91:a7:d0:7c:33:59:f7:27:
aa:a9:b7:85:24:67:de:68:41:d4:e6:ac:29:ef:25:f1:3f:18:
77:b1:75:89:9e:e4:ed:f9:23:cf:a6:1e:40:b6:73:46:cc:07:
9e:e5:49:06:4b:9b:7b:ee:15:31:31:83:3b:30:fb:f3:8d:5e:
47:2d:fe:16:5a:05:1f:7e:23:e5:5d:14:05:3c:2e:5b:a4:a0:
19:81:58:c4:d8:22:4f:b3:27:b0:6c:ca:cd:8b:49:25:17:f9:
83:57:e6:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 02:49:14 2024 by rpki-client on console-ams.rpki-client.org