Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer
File: m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer (raw, json)
Hash identifier: ME4vheKGw+sx0kujlgrV7xPYv4hEJK9pugKE1+v4QdE=
Subject key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020C94
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 09 Sep 2024 08:12:21 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 4621
AS: 9546
AS: 10227
AS: 17479
AS: 17827
AS: 23687
AS: 24328
AS: 24344
AS: 24475
AS: 37932
AS: 38265
AS: 38589
AS: 38601
AS: 45575
AS: 45847
AS: 55488
AS: 55545
AS: 56277
AS: 131221
AS: 131246
AS: 131257
AS: 132250
AS: 132482
AS: 132493
AS: 132514
AS: 132701
AS: 132866
AS: 132879
AS: 133042
AS: 133919
AS: 134064
AS: 134690
AS: 135129
AS: 135141
AS: 135528
AS: 135588
AS: 135616
AS: 136051
AS: 136624
AS: 136737
AS: 137241
AS: 137277
AS: 137546
AS: 137850
AS: 138003
AS: 138547
AS: 139198
AS: 139657
AS: 139753
AS: 140075
AS: 140618
AS: 141428
AS: 141714
AS: 147312
AS: 149503
AS: 149800
AS: 150107
AS: 150410
IP: 103.1.160.0/22
IP: 202.28.0.0/15
IP: 202.44.138.0/23
IP: 203.159.128.0/17
IP: 2001:3c8::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 03 Dec 2024 06:05:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134292 (0x20c94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 9 08:12:21 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:24:85:29:db:d5:c5:74:a4:2c:05:b3:2b:e9:
bd:6b:fe:e6:75:20:66:61:e3:93:c4:e2:95:c1:fa:
41:42:8d:01:98:4c:21:93:92:62:7f:f8:08:a4:15:
a7:a2:8e:f4:e3:71:26:ad:d6:de:bb:9a:62:47:00:
a7:cd:50:e9:f7:19:94:c0:e9:ba:3d:19:35:d8:83:
24:07:a9:67:a7:50:eb:75:47:12:3d:9c:3d:a5:cb:
da:a0:f7:da:5d:26:e7:00:4a:c3:2f:a0:5f:43:54:
b0:62:45:75:4d:a9:c4:cb:83:d7:f8:a0:1c:7e:ca:
23:c5:89:a5:51:68:06:31:c6:3c:02:56:95:20:ec:
f2:82:fe:00:0e:ec:2b:00:e8:5f:e0:c9:4e:1e:a0:
02:bb:fc:65:2a:16:68:09:f9:15:92:37:bd:00:0a:
ea:04:24:ce:82:26:8f:72:0a:c2:20:e4:4a:a9:6d:
72:5e:24:4d:92:0c:19:64:36:30:69:e7:3d:92:01:
fe:fb:e5:a1:f8:ac:61:02:8b:35:99:ad:b4:c1:fb:
60:5f:d6:70:3b:ec:9c:a4:70:1c:c2:53:d0:a2:e0:
aa:91:2c:1b:e9:c4:0e:79:2d:47:7d:98:31:1f:da:
63:f8:cf:2a:22:d1:55:b5:7b:88:2c:25:b8:3f:70:
96:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
4621
9546
10227
17479
17827
23687
24328
24344
24475
37932
38265
38589
38601
45575
45847
55488
55545
56277
131221
131246
131257
132250
132482
132493
132514
132701
132866
132879
133042
133919
134064
134690
135129
135141
135528
135588
135616
136051
136624
136737
137241
137277
137546
137850
138003
138547
139198
139657
139753
140075
140618
141428
141714
147312
149503
149800
150107
150410
sbgp-ipAddrBlock: critical
IPv4:
103.1.160.0/22
202.28.0.0/15
202.44.138.0/23
203.159.128.0/17
IPv6:
2001:3c8::/32
Signature Algorithm: sha256WithRSAEncryption
d9:6c:88:57:18:ea:4a:e3:cd:71:c1:0e:f5:07:8d:0f:3f:b2:
44:3e:3e:f0:76:67:64:5e:e5:71:78:98:8c:4f:8b:10:1f:7d:
59:fc:0f:c4:0a:41:e4:27:dd:b8:82:43:79:07:6d:3e:27:0c:
23:4b:4c:9d:39:28:8d:cf:ff:a4:c6:37:84:0c:d1:dd:33:2a:
b4:07:8f:97:aa:9f:e0:5c:d0:f4:70:10:9c:77:74:eb:1b:4a:
1d:5e:17:9e:19:ff:d5:b1:21:92:ae:6b:2e:67:ac:06:ae:a0:
e3:c9:bc:c7:69:7d:36:10:56:44:72:aa:4d:fc:a9:2b:ab:d4:
8c:15:7b:1b:3c:01:60:a4:3f:73:47:cc:a4:f8:6b:3e:ff:e1:
83:cd:72:a6:aa:cf:ce:4e:3e:c9:af:9f:78:c9:eb:77:e9:46:
e7:83:40:88:a6:fb:3b:b5:bd:79:83:6c:7a:b7:e2:69:d5:4b:
d7:8c:db:be:79:db:26:0e:bc:8b:a2:a6:b3:c5:3f:de:09:d5:
56:7b:7e:38:35:01:4c:a1:25:e8:5a:9c:e8:f9:d0:a4:64:16:
3e:b9:f0:f9:02:5e:f6:d4:d2:e2:13:f7:4e:ab:77:c2:2d:69:
02:f5:07:e7:7c:22:c8:ea:a0:96:fb:02:62:07:db:0b:81:33:
14:9c:98:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 07:04:44 2024 by rpki-client on console-ams.rpki-client.org