Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j1nI_VoLWpmrBABkQjq_TbC04IY.cer
File: j1nI_VoLWpmrBABkQjq_TbC04IY.cer (raw, json)
Hash identifier: HBsUjs6/I0LSHq4+Unp1xU5e2zNAjd/yR11jNSiKa74=
Subject key identifier: 8F:59:C8:FD:5A:0B:5A:99:AB:04:00:64:42:3A:BF:4D:B0:B4:E0:86
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0212BF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E647A/7948EA1C1DA911E2BA1484A408B02CD2/j1nI_VoLWpmrBABkQjq_TbC04IY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E647A/7948EA1C1DA911E2BA1484A408B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 08 Oct 2024 15:17:46 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 58445
IP: 103.11.136.0/22
IP: 116.206.132.0/22
IP: 2001:df0:29f::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135871 (0x212bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 8 15:17:46 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91E647A/serialNumber=8F59C8FD5A0B5A99AB040064423ABF4DB0B4E086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d1:3c:7d:c9:24:b1:45:23:e6:34:32:55:10:
62:37:a8:f9:42:0d:89:68:1e:58:27:00:c6:fa:46:
02:15:70:ef:0a:67:0b:d8:00:fc:8a:be:3b:1a:4f:
5f:d0:ba:81:4e:f4:d0:37:7f:32:ee:f2:3c:95:6b:
1e:dd:ff:d1:f8:12:88:b1:26:7b:a1:96:92:c7:31:
41:b3:66:a9:2b:f6:ec:b9:7d:ad:7d:f3:8a:62:e4:
39:2f:08:a4:6f:6a:ee:8f:85:ad:4f:03:e2:e7:52:
28:bb:6a:9a:1d:89:fd:a3:1a:5f:ff:78:65:ee:2e:
b1:43:ee:f5:02:9d:f9:09:84:dc:05:f7:28:2e:03:
97:d9:79:d5:b2:43:50:ac:64:0e:4b:8d:d9:5f:52:
43:59:20:21:e9:a8:a9:78:e5:66:1e:38:a2:fa:e3:
31:d7:a7:58:86:aa:f6:0b:aa:6d:71:cb:ae:90:73:
43:ce:d0:9b:68:8f:53:8e:69:9a:d7:dd:7d:19:c8:
02:36:1d:9e:e9:dc:96:f1:ec:9a:70:39:10:43:1e:
71:14:a4:3a:5e:35:de:9e:04:d2:9d:ba:a8:b8:d7:
46:4d:80:3b:5f:d7:2b:77:8e:65:cf:ad:34:de:fa:
41:b4:02:48:29:26:4b:07:77:f6:40:c8:9e:c2:b5:
54:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:59:C8:FD:5A:0B:5A:99:AB:04:00:64:42:3A:BF:4D:B0:B4:E0:86
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E647A/7948EA1C1DA911E2BA1484A408B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E647A/7948EA1C1DA911E2BA1484A408B02CD2/j1nI_VoLWpmrBABkQjq_TbC04IY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58445
sbgp-ipAddrBlock: critical
IPv4:
103.11.136.0/22
116.206.132.0/22
IPv6:
2001:df0:29f::/48
Signature Algorithm: sha256WithRSAEncryption
13:fd:b9:2d:82:be:21:55:ff:3f:cf:97:c0:63:a3:98:dc:e6:
3a:eb:6a:92:e1:8a:f9:e4:ba:46:0c:3b:b0:ba:60:db:08:88:
b4:8e:e6:2e:55:c2:f0:0f:cd:7a:7d:57:e7:15:56:63:89:00:
57:c8:57:a7:7e:63:5b:c2:2b:84:54:5f:8b:09:02:a9:ef:c6:
08:ee:46:33:9b:d5:8d:53:72:38:bf:52:5c:b5:4d:61:40:e5:
fd:1b:32:fa:1b:1f:fe:38:d7:05:d0:48:58:a4:6c:73:0d:d7:
29:c8:c4:44:c7:a6:0a:cb:40:69:ac:a1:fa:9d:bb:a4:7f:bd:
00:fb:3d:b0:f8:20:00:71:56:a9:7c:4a:2c:6f:9b:5a:63:7d:
72:b9:ab:7d:61:94:59:d3:69:71:c5:8a:96:53:c2:21:bd:38:
a1:54:86:b9:02:e2:04:55:00:00:ed:a8:dd:7b:8d:51:4b:c9:
4b:37:37:98:e3:ee:bd:f3:ea:a9:d2:12:46:05:a9:e2:29:e9:
af:65:be:d0:b1:db:74:bc:1c:8b:54:41:d2:e6:4f:b3:61:cc:
5d:c1:60:7d:03:3f:e8:8b:3c:68:54:fb:78:ed:05:bb:31:61:
1f:5b:28:04:13:94:2a:7d:68:9b:6a:ee:6c:fa:76:3b:a6:85:
10:9e:7c:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:44 2024 by rpki-client on console-fra.rpki-client.org