Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m8Zs_4CainEhIAXdnCcEerQYyKc.cer
File: m8Zs_4CainEhIAXdnCcEerQYyKc.cer (raw, json)
Hash identifier: TynLdUhNldEsgb8t2CYfeFxnSO6a6hwuokz1QxbgsOI=
Subject key identifier: 9B:C6:6C:FF:80:9A:8A:71:21:20:05:DD:9C:27:04:7A:B4:18:C8:A7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C9BE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9173780/8EB62DFA77ED11EAAA4CC422C4F9AE02/m8Zs_4CainEhIAXdnCcEerQYyKc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9173780/8EB62DFA77ED11EAAA4CC422C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 08 Nov 2023 16:42:48 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 24479
IP: 203.3.167.0/24
IP: 203.28.212.0/24
IP: 203.30.192.0/24
IP: 203.170.0.0/20
IP: 2402:4d40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117182 (0x1c9be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 8 16:42:48 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A9173780/serialNumber=9BC66CFF809A8A71212005DD9C27047AB418C8A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:71:b0:8b:ef:61:51:1d:74:48:63:05:07:64:
e5:ed:a1:84:3f:fa:4c:8a:3d:12:0c:39:19:95:d3:
8b:5d:4b:15:f4:67:11:31:63:32:99:c1:7a:c3:0a:
93:25:fb:17:79:2d:67:a3:ac:95:0c:66:6a:7e:c7:
34:f9:4b:3d:4e:cb:df:89:67:33:03:eb:50:db:1b:
0e:5e:ba:5e:b1:eb:0b:e7:11:c4:82:92:4f:56:9f:
85:cc:18:61:c3:8a:9b:b4:08:86:e5:a8:8e:35:45:
58:2e:86:f6:ef:0e:e0:94:25:b4:63:6c:de:bc:58:
88:3b:44:55:f1:bc:dd:b3:19:e0:c9:57:c6:19:1c:
69:f6:de:c6:11:97:39:1b:18:3a:e6:87:f2:cc:2b:
e1:21:67:13:9c:36:c7:c0:cd:08:52:e7:bd:2c:77:
62:ea:e4:1f:41:9f:77:36:c7:0c:ff:3f:a6:15:3f:
70:41:98:2e:95:da:aa:a6:e8:b3:b0:cb:01:2b:0b:
f1:f3:40:48:67:31:7b:3a:d3:60:6b:fe:98:89:7a:
86:f5:c6:a0:77:12:c2:03:75:09:82:3d:63:92:87:
04:6f:ae:5a:13:a1:0c:4c:35:9d:15:fa:65:50:a7:
6d:c4:a6:de:c3:24:d5:48:2a:17:ca:4e:2c:74:3f:
9b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:C6:6C:FF:80:9A:8A:71:21:20:05:DD:9C:27:04:7A:B4:18:C8:A7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9173780/8EB62DFA77ED11EAAA4CC422C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9173780/8EB62DFA77ED11EAAA4CC422C4F9AE02/m8Zs_4CainEhIAXdnCcEerQYyKc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24479
sbgp-ipAddrBlock: critical
IPv4:
203.3.167.0/24
203.28.212.0/24
203.30.192.0/24
203.170.0.0/20
IPv6:
2402:4d40::/32
Signature Algorithm: sha256WithRSAEncryption
89:a7:4c:d8:81:0e:d8:e9:0a:5f:70:fb:a2:0f:69:6f:b0:c3:
d9:20:1b:24:75:10:f4:34:b1:a2:44:8a:73:3a:ab:9e:2a:e9:
a3:ca:ca:0a:94:67:28:6f:ad:7a:a6:6e:ba:2c:70:7f:b6:d0:
c4:84:d3:0c:ea:75:93:b8:fc:ef:a0:c5:cb:86:30:c7:61:1b:
a6:6e:89:ef:f0:e5:0b:a7:62:cf:f3:78:91:11:71:81:f8:a4:
f5:79:ed:03:89:a5:cf:7c:eb:cf:b0:71:84:54:fd:39:db:19:
00:a2:0c:fb:d0:34:f9:89:66:3c:18:21:5b:97:39:c0:3d:1f:
e0:f8:49:88:38:1a:50:19:81:d7:ae:e9:a1:ae:7b:f5:9a:9d:
fc:b1:17:df:01:b4:67:bd:c6:5b:64:48:e1:0c:ac:6d:9e:3e:
d9:f5:ac:c1:9d:96:84:13:f0:0d:9c:07:6c:08:ef:72:4f:69:
07:6b:0a:ef:15:ba:c5:1a:a8:b5:c0:6a:24:a8:b3:54:d0:70:
fe:2c:c3:72:dc:42:c0:b8:29:cc:89:b3:f7:ef:8b:4b:47:6a:
7d:70:97:a2:49:e7:21:29:62:17:73:f8:82:4e:41:02:a0:b3:
52:4c:23:d7:2d:94:d1:cb:57:99:06:e5:6e:21:2d:b4:37:8b:
d3:b0:18:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:47 2024 by rpki-client on console-fra.rpki-client.org