Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l42uLBCnLtBPlBKP_F6Mt9EC6so.cer
File: l42uLBCnLtBPlBKP_F6Mt9EC6so.cer (raw, json)
Hash identifier: BsOjjRQnqYQ46b6H1uUCkdkeD6DASYO2Wv300cLQ7kw=
Subject key identifier: 97:8D:AE:2C:10:A7:2E:D0:4F:94:12:8F:FC:5E:8C:B7:D1:02:EA:CA
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FE82
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91555EA/7C60B9F63B6E11EAAE5F166BC4F9AE02/l42uLBCnLtBPlBKP_F6Mt9EC6so.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91555EA/7C60B9F63B6E11EAAE5F166BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 05 Jul 2024 15:40:30 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 45273
AS: 55425
AS: 58781
AS: 63967
IP: 103.9.185.0/24
IP: 103.9.187.0/24
IP: 103.244.162.0/24
IP: 117.104.184.0/22
IP: 202.52.138.0/23
IP: 202.90.200.0/22
IP: 2404:b780::/31
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130690 (0x1fe82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 5 15:40:30 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91555EA/serialNumber=978DAE2C10A72ED04F94128FFC5E8CB7D102EACA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:25:bc:bd:3c:5f:54:de:ae:e6:cb:0e:9b:21:
17:68:2e:39:31:8a:7c:ff:94:3e:c9:ae:4d:3d:ec:
98:bf:24:15:a8:79:f2:e9:c3:b4:c8:75:a7:15:ba:
a6:d0:af:c2:b4:03:08:f2:e8:a5:4a:a6:5b:8b:f9:
80:6a:89:71:44:51:88:eb:5b:cb:5c:4d:c8:9e:e8:
9c:4d:9a:a2:16:8f:64:05:61:b1:67:57:b3:d7:e5:
df:ac:4f:a4:a9:56:e1:f8:cf:01:55:11:62:32:3d:
b8:36:af:cf:9f:f5:11:a9:3b:d6:06:c8:03:ca:95:
6b:e7:e1:ad:a5:98:a4:76:73:a9:9f:4e:76:2a:6c:
46:b5:6f:99:f2:9e:5e:25:96:5b:8d:34:f8:81:f7:
27:2c:87:4e:fd:b1:43:69:29:1b:f9:23:43:c9:2c:
3c:b1:61:02:81:ab:53:f7:82:3a:0e:d3:60:9e:e2:
fa:de:8d:a2:11:fc:8e:9c:86:11:b8:09:d0:12:71:
ca:36:2e:96:20:63:ca:cd:78:64:30:a8:e6:81:5e:
21:30:3a:1b:cb:5e:0b:18:77:ac:fc:4f:0a:d5:b5:
31:90:ea:55:04:90:0f:1e:b4:d0:32:85:5c:6a:b7:
7e:e2:8a:e5:b2:69:11:6e:4b:df:46:6a:9d:8e:91:
49:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:8D:AE:2C:10:A7:2E:D0:4F:94:12:8F:FC:5E:8C:B7:D1:02:EA:CA
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91555EA/7C60B9F63B6E11EAAE5F166BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91555EA/7C60B9F63B6E11EAAE5F166BC4F9AE02/l42uLBCnLtBPlBKP_F6Mt9EC6so.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
45273
55425
58781
63967
sbgp-ipAddrBlock: critical
IPv4:
103.9.185.0/24
103.9.187.0/24
103.244.162.0/24
117.104.184.0/22
202.52.138.0/23
202.90.200.0/22
IPv6:
2404:b780::/31
Signature Algorithm: sha256WithRSAEncryption
d9:32:67:f4:ee:71:69:a2:4b:98:9a:86:03:81:c9:c5:2a:4e:
fb:ed:18:c5:b2:bb:b0:41:55:d3:8f:b5:f8:3c:f9:07:c7:09:
60:00:87:f6:92:b3:af:1f:5c:ae:bd:f4:3e:8b:8b:10:d7:81:
2f:12:bd:7f:93:03:42:06:d9:9b:7b:b5:99:f8:ac:fe:65:50:
97:4c:bd:cb:15:37:bc:ab:7a:ef:e1:1d:6c:a1:c0:96:73:fc:
95:64:5e:c4:36:cc:c0:ef:35:fe:4e:05:1b:97:1d:10:d0:c4:
0a:d1:43:eb:4b:a2:1b:ea:d1:59:7c:26:18:0d:d1:17:7c:7a:
52:99:f2:24:8f:ce:75:ae:82:74:42:f0:7a:d7:46:68:50:56:
51:d3:fc:81:cf:c8:72:8e:cb:af:3e:a5:9d:c0:9f:bd:05:29:
80:9f:40:c4:aa:4c:ef:dc:ef:d6:43:5b:7d:fe:bd:88:8d:1f:
40:17:ac:f1:29:d9:f8:be:f7:ce:25:cc:6c:9d:82:3f:d9:35:
54:4f:d2:75:07:ab:4c:8a:07:68:f4:3f:41:18:4e:66:e1:73:
e6:f0:33:d2:39:fa:94:c3:9d:94:25:30:26:70:da:b9:3a:e8:
ef:35:46:60:a7:7a:f5:d8:3d:1b:2f:57:aa:19:6b:10:2e:46:
d8:a3:b9:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:00:00 2024 by rpki-client on console-ams.rpki-client.org