Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKFbyZFsWyyhjjWQUVAeVGQsCNM.cer
File: lKFbyZFsWyyhjjWQUVAeVGQsCNM.cer (raw, json)
Hash identifier: AmISZd+pAFk26vl6RkLKo4W2E6m/CSn38CEYS5a/fDM=
Subject key identifier: 94:A1:5B:C9:91:6C:5B:2C:A1:8E:35:90:51:50:1E:54:64:2C:08:D3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CE0E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/lKFbyZFsWyyhjjWQUVAeVGQsCNM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 30 Nov 2023 16:05:51 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 55785
AS: 55948
IP: 43.252.68.0/22
IP: 103.247.152.0/22
IP: 2403:4d00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 05:04:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118286 (0x1ce0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 30 16:05:51 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A916B0A3/serialNumber=94A15BC9916C5B2CA18E359051501E54642C08D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:8e:b6:c7:77:51:76:dd:22:09:b4:a1:73:bd:
c4:2d:d1:2c:12:a8:ea:42:51:82:9e:3c:7b:e8:c9:
48:8b:10:4f:45:29:64:01:60:29:5b:55:16:e0:0c:
cd:70:29:30:7a:35:4a:bb:58:d8:2c:7e:e7:74:17:
ea:49:bd:5b:82:6e:fb:b1:26:41:6e:21:79:0d:72:
06:98:81:9c:ab:35:fa:94:bc:32:9c:21:80:f4:dd:
ac:19:7c:96:da:f1:00:59:d5:27:10:a6:7a:c3:b5:
d2:96:68:63:5e:5e:c0:57:f9:fd:55:46:da:d0:1f:
01:3f:08:b2:b7:94:03:93:3c:c6:95:ad:a8:d7:05:
b3:17:68:11:4c:8b:cc:9a:95:61:b5:0d:fe:28:94:
01:6f:03:df:94:ff:1f:7c:fc:d7:ad:13:16:cc:b7:
cb:c8:eb:b5:fd:c8:e4:3e:4b:0e:89:9f:ed:ae:cf:
34:40:31:9b:a4:eb:5a:47:c7:6b:c5:ef:68:19:4a:
b8:4b:f4:76:44:0a:14:91:e9:67:bb:28:70:23:56:
d1:a0:18:35:b1:d8:9c:37:17:ed:11:cd:2b:df:78:
6a:73:35:fd:67:d0:72:03:93:3f:bb:79:68:f4:42:
27:d4:17:36:ce:a2:af:a3:c6:8d:2e:02:39:92:f2:
57:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:A1:5B:C9:91:6C:5B:2C:A1:8E:35:90:51:50:1E:54:64:2C:08:D3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/lKFbyZFsWyyhjjWQUVAeVGQsCNM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55785
55948
sbgp-ipAddrBlock: critical
IPv4:
43.252.68.0/22
103.247.152.0/22
IPv6:
2403:4d00::/32
Signature Algorithm: sha256WithRSAEncryption
80:a4:2d:0f:37:fb:52:df:93:bf:2d:3d:44:b4:a9:cc:6b:71:
31:28:05:d2:16:5d:3c:e2:79:89:5c:e7:69:2a:fd:fa:64:09:
84:59:0b:c1:41:37:76:9d:99:e6:f7:6e:ea:58:ee:7e:09:ab:
00:81:72:82:cd:88:97:b3:e1:47:d4:a8:b1:65:87:b8:72:17:
4e:41:5f:b1:c8:20:f5:b9:68:05:c8:f8:36:6d:6d:ff:38:56:
60:e5:df:aa:d9:c8:91:08:fc:0a:99:45:b0:77:2a:f0:36:35:
d3:ae:81:30:d5:a5:4b:14:4f:9b:f6:eb:4a:65:8a:47:97:d2:
a3:45:eb:83:55:28:de:e5:bd:10:a4:6d:b9:a9:4a:9f:57:cd:
27:81:33:b4:24:9d:9a:ad:89:d7:df:02:15:cf:9b:a2:37:c9:
7a:25:e1:78:16:0e:cb:22:90:09:c4:5b:af:6d:93:93:bc:a2:
24:9e:b7:37:fd:94:09:3b:21:f2:73:18:89:0f:4a:84:4e:74:
9c:66:af:7d:b2:5b:e4:9e:76:1f:3c:9d:cb:c7:b5:d6:cd:14:
43:4f:5b:67:10:27:f8:7d:ef:d4:59:d9:48:af:ad:89:98:d4:
85:9f:2e:11:af:9d:91:85:83:02:e7:68:f7:12:78:6b:10:bf:
28:99:7d:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 05:37:42 2024 by rpki-client on console-fra.rpki-client.org