Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n84okUxQ3Jl1XxCKtDNPdyy-oOI.cer
File: n84okUxQ3Jl1XxCKtDNPdyy-oOI.cer (raw, json)
Hash identifier: kggx3g/W95hpLUQ0WC76UpO/+dSQmDH3OoPJYNz0Hv4=
Subject key identifier: 9F:CE:28:91:4C:50:DC:99:75:5F:10:8A:B4:33:4F:77:2C:BE:A0:E2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BE56
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 19 Sep 2023 13:28:22 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 58619
AS: 58621
AS: 132271
IP: 43.245.96.0/22
IP: 43.245.108.0/22
IP: 43.245.252.0/22
IP: 101.100.192.0/18
IP: 103.9.100.0/22
IP: 103.11.188.0/22
IP: 103.15.232.0/22
IP: 103.104.196.0/24
IP: 103.245.92.0/22
IP: 111.235.136.0/22
IP: 119.31.232.0/21
IP: 2001:df0:454::/48
IP: 2001:df3:4f00::/48
IP: 2403:cb00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114262 (0x1be56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 19 13:28:22 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A9136EC5/serialNumber=9FCE28914C50DC99755F108AB4334F772CBEA0E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e6:d2:ae:6c:41:22:43:f3:12:f9:d2:db:6f:
72:aa:4e:8c:bf:f4:4c:4c:6c:b9:e7:6f:e6:2d:8f:
e8:b9:ab:79:6f:5d:49:7d:c5:5f:ae:41:61:10:12:
6f:1e:e6:8f:bd:4b:10:7f:bd:4b:ee:17:0d:92:b5:
cc:a0:ef:25:c2:e7:9e:ef:ea:1b:c3:e2:7a:49:ff:
98:61:b2:4c:13:93:e3:cd:f3:30:64:f4:70:37:8c:
10:86:0c:2d:de:01:3e:4c:2c:a6:20:b5:f6:81:a1:
66:f3:af:33:82:9d:c9:fe:4b:f6:63:16:ce:3f:b2:
9d:b9:9a:07:ef:a7:d0:08:2e:74:90:d1:80:b2:e1:
37:88:61:ea:20:31:b2:05:c0:18:54:78:dd:94:5b:
1e:fc:79:0f:e2:47:25:59:ca:09:ad:0b:f9:c1:e7:
fe:d6:5d:4f:08:4a:fd:7f:bc:a5:ce:8d:e7:43:9d:
2e:48:2a:a8:91:64:7a:be:e7:68:4d:d7:5f:b1:63:
b2:ae:d8:d3:cb:c8:4a:90:c9:e1:69:ec:04:68:64:
77:ad:62:df:3f:6e:fb:0c:38:05:c1:aa:c9:0d:26:
5d:89:14:65:a1:3f:8c:d1:e8:d2:41:73:61:5b:f4:
96:d5:2d:23:8e:f7:89:79:53:49:33:d9:1b:07:45:
5e:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:CE:28:91:4C:50:DC:99:75:5F:10:8A:B4:33:4F:77:2C:BE:A0:E2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58619
58621
132271
sbgp-ipAddrBlock: critical
IPv4:
43.245.96.0/22
43.245.108.0/22
43.245.252.0/22
101.100.192.0/18
103.9.100.0/22
103.11.188.0/22
103.15.232.0/22
103.104.196.0/24
103.245.92.0/22
111.235.136.0/22
119.31.232.0/21
IPv6:
2001:df0:454::/48
2001:df3:4f00::/48
2403:cb00::/32
Signature Algorithm: sha256WithRSAEncryption
4d:49:5d:99:1b:04:9e:d2:c0:a2:17:ef:1f:ba:ef:4b:42:8d:
02:4e:13:25:8e:f2:28:f5:13:56:22:0c:2c:13:b9:3a:2e:e7:
79:b8:9e:9f:9a:a2:c2:7d:a7:ea:e8:b3:74:ae:6e:a1:3c:ca:
10:92:a3:15:53:92:09:4f:d4:f2:21:f0:77:6b:ac:09:20:11:
f8:63:61:58:c2:e8:44:c8:59:db:0a:0a:39:03:38:c8:ff:cf:
5a:28:93:d9:65:cc:8a:0d:9a:93:2a:2a:67:0d:11:b8:a8:e0:
c0:57:d4:85:92:ac:a8:c8:d1:fb:5d:f9:b7:e2:80:e5:c4:ad:
03:ae:f2:2f:d2:d9:8d:dd:de:93:d7:0f:85:a7:3b:f3:0b:fe:
b2:c4:4e:6e:fb:b2:9d:bd:df:e2:bf:f1:23:f5:a0:35:96:30:
c7:c4:54:90:8f:5a:bb:cf:7b:ce:68:d5:bc:3e:5e:34:28:d4:
65:7e:94:04:bd:e1:04:bd:4a:f0:d8:c8:16:d0:6d:3a:07:d0:
95:f1:79:56:20:09:48:90:3b:67:51:8e:8c:5f:10:e1:5e:bd:
8a:75:33:f3:fa:8e:53:fd:af:e1:00:cd:09:85:88:ad:4f:cf:
56:ea:45:dd:89:17:6a:77:6a:fc:59:44:c5:2b:fe:4d:92:d2:
84:c8:2a:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 03:58:03 2024 by rpki-client on console-fra.rpki-client.org