Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nPcUeL9ZsAixtUL6k6fBDvt_TWI.cer
File: nPcUeL9ZsAixtUL6k6fBDvt_TWI.cer (raw, json)
Hash identifier: GgWn4THKXrfYlNiviNXI/hC/2aiM7pfqse7bLKM/sQg=
Subject key identifier: 9C:F7:14:78:BF:59:B0:08:B1:B5:42:FA:93:A7:C1:0E:FB:7F:4D:62
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021B69
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9154840/342F80D09FC411EF9631F836C4F9AE02/nPcUeL9ZsAixtUL6k6fBDvt_TWI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9154840/342F80D09FC411EF9631F836C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 14 Nov 2024 15:14:50 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 63842
IP: 43.250.24.0/22
IP: 103.41.156.0/22
IP: 203.22.100.0/22
IP: 2402:10c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 01:13:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138089 (0x21b69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 14 15:14:50 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A9154840/serialNumber=9CF71478BF59B008B1B542FA93A7C10EFB7F4D62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:3d:d3:4e:9f:b9:e2:55:06:f1:1d:0c:67:1e:
e9:21:28:b6:06:f2:08:9e:a9:e9:90:9f:ab:c4:27:
c0:eb:d4:f8:11:47:67:4a:89:e4:b4:17:53:0e:32:
a5:b5:65:79:2c:60:fd:79:bd:c7:d1:58:7e:05:9f:
a1:13:35:61:8c:d4:11:65:08:e9:8e:91:7d:54:35:
f1:31:b8:14:67:97:c4:e9:16:e1:39:51:f8:1a:ba:
f1:d4:1e:65:e4:a2:73:66:9d:e3:66:d2:dd:a3:82:
9b:67:36:b9:3a:20:1f:1e:b2:4b:da:41:c8:fe:fe:
67:5b:07:88:6e:b7:03:2b:f6:44:f3:dc:4b:2b:4a:
dd:67:f6:65:fd:97:3a:22:f4:c5:b9:1f:52:ce:dc:
eb:41:d8:39:25:a5:4a:4b:11:84:9e:f7:98:fc:bd:
bc:bb:d3:e2:8b:37:df:57:e9:40:68:2c:12:03:a7:
87:f8:5d:6e:5b:28:12:c1:f7:99:e9:b3:2e:66:d2:
cf:e8:99:50:90:c5:29:41:1b:83:79:91:49:40:b1:
f5:93:74:e2:cc:41:08:4b:2a:c0:7b:3e:0e:c6:5d:
cd:62:37:37:8b:eb:a4:3a:c9:68:c7:f8:cf:21:88:
e8:f4:ec:20:e2:fa:f4:d3:37:ed:fb:8b:dc:73:01:
5e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:F7:14:78:BF:59:B0:08:B1:B5:42:FA:93:A7:C1:0E:FB:7F:4D:62
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9154840/342F80D09FC411EF9631F836C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9154840/342F80D09FC411EF9631F836C4F9AE02/nPcUeL9ZsAixtUL6k6fBDvt_TWI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
63842
sbgp-ipAddrBlock: critical
IPv4:
43.250.24.0/22
103.41.156.0/22
203.22.100.0/22
IPv6:
2402:10c0::/32
Signature Algorithm: sha256WithRSAEncryption
0a:44:24:cc:19:72:e4:be:64:35:18:65:67:12:8b:26:af:2f:
8c:a3:ab:cc:6e:35:2d:fc:5d:c5:96:ba:ae:67:ff:78:e1:77:
f8:7c:f0:d3:29:a7:d3:40:4f:cb:03:52:c6:7e:82:79:c5:b7:
e2:b3:76:a7:b8:82:44:61:dd:03:23:a8:53:4c:25:0e:20:43:
ae:b2:73:f5:fd:70:4b:88:4e:81:4b:bd:e7:0a:73:1c:f7:0c:
4a:57:06:d1:6b:00:1a:1a:f8:78:a1:d6:ca:86:9b:44:d5:be:
2d:c8:4a:52:31:90:82:7a:93:3f:74:fe:9a:7e:61:a4:b9:1d:
61:0d:b0:1c:b7:f3:43:d9:2f:de:8a:c9:45:ad:6c:77:3c:c7:
b0:89:01:cd:9e:56:1e:eb:62:8d:3d:4c:c8:5b:41:20:33:aa:
4d:3f:74:81:d1:55:cd:37:66:c9:ed:0f:5a:1f:ef:74:f7:24:
2b:85:65:19:ab:d3:62:04:22:50:a4:5d:46:d6:b7:3b:66:df:
9f:ad:43:88:1e:b1:9c:28:db:54:93:d5:d2:bf:98:15:f7:19:
a8:2c:0f:73:d9:7f:fa:fa:fa:6c:bf:50:7d:d9:64:f0:1d:5b:
c1:da:20:54:d5:25:c0:50:82:e3:b7:a1:3a:e9:9a:0d:2d:0b:
7c:cc:fe:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:05:29 2024 by rpki-client on console-ams.rpki-client.org