Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h57Jr836J6POe11DeHoviQOFWG4.cer
File: h57Jr836J6POe11DeHoviQOFWG4.cer (raw, json)
Hash identifier: essPxHWcCmVSIO6Sm9p/X+aqYhmq00wFhY6LlJnSlxQ=
Subject key identifier: 87:9E:C9:AF:CD:FA:27:A3:CE:7B:5D:43:78:7A:2F:89:03:85:58:6E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E957
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914E556/2EAAFECA0C3711EBA8AA8222C4F9AE02/h57Jr836J6POe11DeHoviQOFWG4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914E556/2EAAFECA0C3711EBA8AA8222C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 03 Apr 2024 15:32:31 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 24572
IP: 45.117.16.0/22
IP: 103.2.72.0/22
IP: 114.110.48.0/20
IP: 114.111.64.0/18
IP: 124.83.128.0/17
IP: 183.79.0.0/16
IP: 2001:df0:15::/48
IP: 2400:7e00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 06:50:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125271 (0x1e957)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 3 15:32:31 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A914E556/serialNumber=879EC9AFCDFA27A3CE7B5D43787A2F890385586E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:2f:3e:18:4c:b4:2f:e0:b2:ff:20:98:39:cc:
90:7f:92:64:28:83:9b:e3:92:ce:a3:53:ff:e7:79:
29:df:93:e7:42:3f:05:2d:cd:72:1b:70:62:72:20:
15:51:2b:a5:13:3c:f6:fe:16:f4:be:a6:a9:c6:76:
b0:af:4a:90:56:19:65:36:c2:95:50:54:0e:a7:6a:
c5:a7:41:05:7a:a6:5d:aa:46:ec:bd:e0:78:45:43:
95:ee:75:a5:44:bb:75:db:99:2b:c0:f4:52:c4:78:
16:a5:ba:7f:29:b9:83:5f:eb:96:00:3f:7c:99:08:
56:c7:d0:c8:cc:b1:6b:58:5a:b3:2e:dc:00:4c:5c:
87:30:53:8c:f8:e4:1a:fb:ab:f0:ea:23:65:e5:ad:
2e:c9:ca:7d:ce:84:8d:e6:d7:bf:a4:4f:03:3c:1f:
8a:49:96:93:17:c2:c2:47:e9:a2:a7:8a:9d:5e:5c:
a1:b9:68:7f:41:bf:7f:ac:86:8e:22:b7:dc:c3:c0:
6b:92:e8:c8:bd:43:2d:6b:a3:7c:08:e3:7a:ba:96:
07:82:a9:93:d1:dd:54:6a:5a:8a:fc:24:69:01:da:
b8:a9:51:8a:3c:31:e3:f7:81:29:a8:78:e1:91:e3:
a6:2d:46:d2:42:8e:16:9a:bc:26:07:55:67:57:b8:
b3:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:9E:C9:AF:CD:FA:27:A3:CE:7B:5D:43:78:7A:2F:89:03:85:58:6E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914E556/2EAAFECA0C3711EBA8AA8222C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914E556/2EAAFECA0C3711EBA8AA8222C4F9AE02/h57Jr836J6POe11DeHoviQOFWG4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24572
sbgp-ipAddrBlock: critical
IPv4:
45.117.16.0/22
103.2.72.0/22
114.110.48.0/20
114.111.64.0/18
124.83.128.0/17
183.79.0.0/16
IPv6:
2001:df0:15::/48
2400:7e00::/32
Signature Algorithm: sha256WithRSAEncryption
38:fe:54:d7:be:04:c2:0e:34:d4:83:5d:7f:aa:97:0e:11:77:
a4:49:53:23:0f:08:74:5a:97:5d:fa:1d:22:e7:e0:b2:20:7c:
89:8e:d2:50:e4:ce:b8:7a:a4:07:62:ad:57:d7:85:47:48:60:
b7:66:a1:bb:d6:22:9e:c0:80:2f:e9:1b:dc:b1:09:da:3e:82:
c9:36:e8:63:50:b5:29:f8:06:89:50:e9:da:13:c5:fb:71:10:
19:c0:8c:3f:30:07:5f:bf:a0:00:91:40:86:d5:84:f0:8a:77:
68:00:e6:6d:cd:18:e5:56:9f:28:5d:57:d4:50:f7:03:73:b2:
28:93:66:5f:6a:a7:14:0f:f1:8a:c0:b9:c5:4c:1f:b7:bf:4a:
24:ff:6a:e6:9e:cf:78:f1:f8:d8:57:20:13:86:71:7a:8d:d6:
23:62:b3:d1:03:72:52:95:9e:98:04:72:5d:26:09:dc:a6:77:
96:c7:0d:6f:50:3d:30:ef:36:e7:2b:ed:72:42:d2:78:bb:f1:
21:f7:23:e6:76:9c:9d:37:71:5e:8d:fe:e4:37:bc:e4:60:07:
74:e5:34:5e:51:55:dc:e7:cc:d5:ae:f9:06:5d:c6:1b:50:11:
c7:81:71:aa:f0:ae:8f:6d:d8:dd:95:81:f9:5f:95:4d:ec:e3:
a6:50:f7:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 07:43:33 2024 by rpki-client on console-fra.rpki-client.org