Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hsI8F7xNIO4W8JLTWiz2VU_scRk.cer
File: hsI8F7xNIO4W8JLTWiz2VU_scRk.cer (raw, json)
Hash identifier: HaXUYJ5JKw5XV/3EXLNBAsqp0QP3+fMqCdXfgGq0Mqk=
Subject key identifier: 86:C2:3C:17:BC:4D:20:EE:16:F0:92:D3:5A:2C:F6:55:4F:EC:71:19
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F77E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 05 Jun 2024 22:32:14 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 9221
AS: 17786
IP: 27.110.72.0/21
IP: 203.112.80.0/20
IP: 2406:dc0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 01:13:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128894 (0x1f77e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 5 22:32:14 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91E1D77/serialNumber=86C23C17BC4D20EE16F092D35A2CF6554FEC7119
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a8:f2:91:0a:72:e5:cb:0f:dc:97:c8:d3:de:
ee:5e:13:65:18:7e:c1:60:ae:b1:ae:bd:02:e1:37:
7f:2e:04:b7:c0:1b:da:6b:ff:c5:9a:cf:03:9f:ae:
89:42:63:9b:91:17:d1:7e:9b:29:fe:8f:97:29:8a:
0f:8c:51:c3:b8:1e:ee:db:ae:cf:00:c6:bc:a2:a7:
2d:b3:dc:85:63:ac:41:fb:e6:09:f7:66:e1:c5:a9:
f3:63:fc:ad:58:85:62:3d:6d:70:9a:dd:bf:2b:cd:
a6:b2:b6:76:2e:a3:02:9c:48:22:80:b4:88:4d:9a:
38:af:82:20:25:fb:12:1b:9f:7e:fb:0f:f9:a2:ef:
1d:35:3e:6e:15:44:6d:f7:f1:79:a4:d3:04:c8:43:
a1:62:7e:c5:d1:9d:46:d5:bf:68:ad:1c:4f:dc:39:
cb:be:1a:eb:77:a2:3d:09:43:51:f4:00:8c:f4:13:
c6:80:60:95:d8:20:ce:a3:da:e1:65:cc:5c:b1:f6:
58:96:80:ea:de:be:1d:01:20:40:71:8b:37:aa:7d:
32:ea:2c:ff:fa:fe:52:b4:1b:9e:da:fb:be:52:da:
9a:be:56:c6:cd:0d:bc:c2:5a:80:eb:74:b3:6a:29:
49:eb:ab:c1:8a:65:01:fa:9a:7b:a4:23:77:88:91:
51:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:C2:3C:17:BC:4D:20:EE:16:F0:92:D3:5A:2C:F6:55:4F:EC:71:19
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E1D77/4B6427E2ABF911EA88AAE32CC4F9AE02/hsI8F7xNIO4W8JLTWiz2VU_scRk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9221
17786
sbgp-ipAddrBlock: critical
IPv4:
27.110.72.0/21
203.112.80.0/20
IPv6:
2406:dc0::/32
Signature Algorithm: sha256WithRSAEncryption
8f:6e:23:ec:c4:69:2a:71:08:82:71:51:5d:f3:4a:c0:7a:2a:
cc:6b:af:f9:bc:f8:29:75:5a:8d:00:89:53:db:28:3c:2f:2e:
f3:12:84:20:54:a1:35:60:f4:84:38:bf:c6:fe:37:da:73:51:
24:6c:5d:6e:5c:d5:81:1d:80:ef:2d:a3:82:cc:c1:97:d6:1a:
9e:c0:66:4c:bb:a5:2c:e1:97:8e:55:a9:f2:bd:a5:b9:1f:52:
f2:2f:b3:07:bb:21:57:13:19:2c:89:db:39:0e:d4:6d:dd:bf:
80:79:16:09:8d:00:f9:7c:94:b5:3f:8f:c5:7e:d2:18:41:87:
75:6c:c9:7d:7e:a9:47:37:50:68:c1:b5:1c:e9:1d:c3:6a:7d:
e4:f1:8a:9d:40:a8:be:f6:f8:c5:92:c9:9d:93:4b:82:18:22:
44:7d:90:fb:fa:11:72:d8:3e:42:24:c8:ae:52:36:3a:6e:78:
4f:e7:56:5f:ea:f6:ad:36:95:68:7c:d4:c9:c9:13:f7:f0:03:
ef:fb:27:eb:51:77:21:2f:8e:e5:14:03:4a:b6:4e:0e:81:6c:
1d:0c:23:77:9e:db:81:4e:23:d0:f8:4b:52:bd:92:b5:d3:e7:
2a:13:2c:2a:d5:50:96:cb:5f:29:54:a2:0b:47:15:b0:94:84:
15:50:f0:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:22:02 2024 by rpki-client on console-fra.rpki-client.org