Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.cer
File: mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.cer (raw, json)
Hash identifier: jelnHzhY4I16pWxocGcfBxWEU5u/2SKx25ApokmQHZY=
Subject key identifier: 99:1B:3F:17:08:4F:76:F1:2F:9F:05:09:D5:97:F0:FF:EC:A0:4B:4A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C674
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Oct 2023 14:57:37 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 38059
AS: 38187
AS: 45761
AS: 55576
IP: 103.70.52.0/22
IP: 112.121.64.0/18
IP: 182.54.136.0/22
IP: 202.80.104.0/21
IP: 2402:b600::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 14:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116340 (0x1c674)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 27 14:57:37 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A9167B50/serialNumber=991B3F17084F76F12F9F0509D597F0FFECA04B4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d0:c7:94:58:40:cc:47:08:b5:64:d6:6c:47:
46:d5:03:3c:e0:5f:b5:e8:9a:76:09:7b:93:50:c5:
f5:dd:f3:ab:c0:3c:84:08:06:61:fa:ee:88:d4:87:
4a:5c:6d:a3:dd:91:87:cb:9d:f4:c5:c4:a9:34:c0:
34:33:67:bb:e3:4f:c5:8a:d1:84:9e:98:73:3a:bd:
c1:12:e2:1f:fa:6e:39:11:e4:9f:b7:c6:85:13:d3:
72:e0:7c:bb:29:37:6c:16:05:78:59:9a:aa:23:4c:
90:ba:6d:f1:35:0d:4c:1a:63:c7:68:bb:66:a1:f4:
a8:18:55:78:48:78:c4:5a:17:71:f1:44:b3:09:e1:
87:2b:ad:ea:c8:68:2f:58:15:b1:c0:7c:a4:a3:78:
b3:89:dd:23:16:2c:23:5e:60:ab:a8:77:87:06:98:
c4:e8:05:c8:d3:49:d2:23:58:c8:90:38:7b:56:fb:
98:e0:bb:7a:d8:d0:09:17:bf:9a:88:c2:7e:37:86:
09:b3:5d:d8:69:49:06:01:2d:a7:72:fa:05:b0:83:
0c:32:61:48:fb:47:11:af:bf:c5:5c:d2:5c:39:52:
e5:7d:b4:2f:24:f5:f9:93:56:cb:ef:41:06:e0:73:
8d:0b:02:ba:12:f3:bf:6d:c5:ab:99:cb:45:b3:18:
f5:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:1B:3F:17:08:4F:76:F1:2F:9F:05:09:D5:97:F0:FF:EC:A0:4B:4A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38059
38187
45761
55576
sbgp-ipAddrBlock: critical
IPv4:
103.70.52.0/22
112.121.64.0/18
182.54.136.0/22
202.80.104.0/21
IPv6:
2402:b600::/32
Signature Algorithm: sha256WithRSAEncryption
0d:3a:e9:e9:37:e7:75:10:77:3a:f3:06:79:4d:da:cf:58:2a:
77:79:95:cf:f3:b8:8e:60:05:82:1b:2c:3a:2f:01:86:80:08:
7a:84:f6:a0:55:96:a2:97:b4:20:04:19:3a:ab:45:f8:d0:69:
af:93:3d:89:cf:6e:90:dc:8f:b7:a6:b2:4b:af:9c:58:c2:38:
b6:d3:63:00:fb:ba:e4:80:0b:86:a7:f5:31:c3:84:57:7b:8b:
bd:ed:ab:74:f0:aa:8e:a8:76:95:02:47:68:da:c6:bb:96:9c:
96:a2:e7:4a:ff:a4:7e:7a:12:11:c1:73:38:ff:78:b5:bf:15:
b3:bf:44:d6:34:3c:83:7a:1c:42:f5:4e:70:b1:de:f7:ce:b7:
6c:83:87:fc:57:0b:93:2e:14:bf:9b:b5:b9:19:57:70:84:29:
55:f6:6d:a4:94:3d:7d:89:2a:1b:ea:31:3d:c1:69:22:0c:85:
4b:d6:a8:25:eb:8a:ff:29:3c:77:ef:34:72:be:e0:6b:4e:e4:
d3:43:57:45:d5:07:10:1e:87:e5:93:e5:40:b7:d1:f9:80:b4:
29:ba:87:03:76:6c:28:4d:37:bb:7d:44:3a:a9:f3:18:c9:5b:
78:66:08:54:e3:d4:97:b8:9c:7d:06:44:da:4d:1a:25:65:c5:
fb:fc:fc:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 16:13:28 2024 by rpki-client on console-ams.rpki-client.org