Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer
File: nmaObme60Kz5QKIoxLwJO4skACs.cer (raw, json)
Hash identifier: Qv6FPPTzJiOzgvYLC/KYlLojygEkPTHCpTo5XAMNkLY=
Subject key identifier: 9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020281
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 26 Jul 2024 14:39:55 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 4775
AS: 18392
AS: 23606
AS: 23689
AS: 24091
AS: 24179
AS: 24451
AS: 38445
AS: 38822
AS: 45343
AS: 45462
AS: 45799
AS: 45832
AS: 55730
AS: 131121
AS: 132595
AS: 132853
AS: 139626
AS: 139798
IP: 1.37.0.0/16
IP: 45.114.20.0/22
IP: 103.6.89.0/24
IP: 103.10.176.0/23
IP: 103.53.220.0/22
IP: 110.54.128.0 -- 110.55.255.255
IP: 111.90.192.0/18
IP: 112.198.0.0/16
IP: 120.28.0.0/16
IP: 124.6.128.0/18
IP: 180.190.0.0/15
IP: 202.86.192.0/21
IP: 203.5.77.0/24
IP: 203.177.0.0/16
IP: 210.185.160.0/20
IP: 222.127.0.0/16
IP: 2001:fe0::/31
IP: 2401:1600::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 18 Mar 2025 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131713 (0x20281)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jul 26 14:39:55 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A9146207
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:12:39:8b:cc:93:ad:ff:94:8d:87:ce:db:2d:
c6:90:82:b0:5a:08:f0:7d:42:1d:5c:f4:ba:4e:f7:
11:31:37:da:58:4f:85:82:a1:5f:01:1e:b6:35:1c:
79:86:b9:2a:c8:1c:4c:39:bc:c2:b8:54:6c:f1:d7:
c1:be:2b:4e:53:5c:87:8a:1e:ce:fc:01:44:f9:b3:
46:d5:d1:f7:d9:1e:88:dd:d9:da:79:84:f0:0c:fd:
9d:d3:88:13:c5:a9:38:f9:a7:6f:38:f5:d2:36:66:
31:53:43:6e:3f:64:67:7b:8a:35:01:ce:2c:fa:b8:
d2:b3:b2:db:02:c2:b6:f3:1f:75:ce:03:09:02:ed:
08:7a:ef:2f:72:f2:d5:c8:12:e9:73:0f:df:d7:0d:
34:a8:d4:c0:b4:c8:99:06:4f:e8:2f:aa:ce:f0:84:
37:1b:9c:d4:97:bf:bb:c1:c6:c0:90:f6:61:05:17:
16:7f:84:37:f5:c3:2b:1d:12:4a:16:56:65:38:f3:
13:3d:34:a8:fb:e4:6f:29:d5:c1:3c:a8:03:5c:c5:
db:e4:96:6c:e3:07:ed:7b:13:d3:6e:5e:cc:e0:f5:
7e:2d:7e:47:53:ea:24:46:a1:74:47:01:55:7c:5e:
7b:c1:c4:1c:03:96:6c:41:bc:8a:01:a4:2e:e8:54:
2e:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
4775
18392
23606
23689
24091
24179
24451
38445
38822
45343
45462
45799
45832
55730
131121
132595
132853
139626
139798
sbgp-ipAddrBlock: critical
IPv4:
1.37.0.0/16
45.114.20.0/22
103.6.89.0/24
103.10.176.0/23
103.53.220.0/22
110.54.128.0-110.55.255.255
111.90.192.0/18
112.198.0.0/16
120.28.0.0/16
124.6.128.0/18
180.190.0.0/15
202.86.192.0/21
203.5.77.0/24
203.177.0.0/16
210.185.160.0/20
222.127.0.0/16
IPv6:
2001:fe0::/31
2401:1600::/32
Signature Algorithm: sha256WithRSAEncryption
85:2c:81:67:18:01:c4:7d:21:3f:af:61:bb:31:69:46:b5:13:
e5:bf:ad:a2:a4:f0:a9:95:08:38:ba:ee:07:72:55:87:38:69:
1e:d1:4b:9e:97:b3:44:74:20:74:b5:a8:98:86:0d:d5:c5:c6:
ab:ed:c7:7e:34:2d:29:1f:22:34:54:00:0b:95:b9:e4:9f:8a:
b3:b7:13:5f:26:a3:2d:05:65:1e:70:42:2c:27:03:a8:68:a8:
28:8e:8c:ae:b9:65:80:2b:75:c0:3e:5d:02:0a:d0:ae:9e:c7:
dc:ac:8e:48:0d:b8:9b:67:a4:32:0d:d2:6f:e3:f3:86:f3:c0:
d6:60:5b:8f:6e:a6:56:7b:03:7e:0f:bf:62:25:60:48:0c:3b:
60:64:92:3f:8d:39:bb:27:e7:1f:b7:aa:ff:07:d3:da:49:d0:
50:2b:5f:a9:ca:88:99:b1:f8:8e:1b:bc:49:f4:b6:1f:b2:37:
2c:d3:30:7c:17:b0:e1:a9:1d:8b:48:43:7b:52:98:cb:16:58:
71:67:2b:ef:3d:ca:df:33:54:4a:76:a5:17:3c:4d:8a:3d:41:
9d:e1:7b:69:38:7e:16:d5:f2:47:d7:2d:55:98:b1:30:a4:7a:
7f:07:bc:85:c6:92:f4:6f:58:52:4f:69:ca:2d:72:b9:ec:d3:
77:a5:d0:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 05:05:18 2025 by rpki-client