Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer
File: nmaObme60Kz5QKIoxLwJO4skACs.cer (raw, json)
Hash identifier: 9olw1nx84N9cmWWePGPGDBCUDIqzu1/HET6uYuY9r+4=
Subject key identifier: 9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B14F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 20 Jul 2023 14:38:57 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 4775
AS: 18392
AS: 23606
AS: 23689
AS: 24091
AS: 24179
AS: 24451
AS: 38445
AS: 38822
AS: 45343
AS: 45462
AS: 45799
AS: 45832
AS: 55730
AS: 131121
AS: 132595
AS: 132853
AS: 139626
AS: 139798
IP: 1.37.0.0/16
IP: 45.114.20.0/22
IP: 103.6.89.0/24
IP: 103.10.176.0/23
IP: 103.53.220.0/22
IP: 110.54.128.0 -- 110.55.255.255
IP: 111.90.192.0/18
IP: 112.198.0.0/16
IP: 120.28.0.0/16
IP: 124.6.128.0/18
IP: 180.190.0.0/15
IP: 202.86.192.0/21
IP: 203.5.77.0/24
IP: 203.177.0.0/16
IP: 210.185.160.0/20
IP: 222.127.0.0/16
IP: 2001:fe0::/31
IP: 2401:1600::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 23 Apr 2024 09:59:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110927 (0x1b14f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 20 14:38:57 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:12:39:8b:cc:93:ad:ff:94:8d:87:ce:db:2d:
c6:90:82:b0:5a:08:f0:7d:42:1d:5c:f4:ba:4e:f7:
11:31:37:da:58:4f:85:82:a1:5f:01:1e:b6:35:1c:
79:86:b9:2a:c8:1c:4c:39:bc:c2:b8:54:6c:f1:d7:
c1:be:2b:4e:53:5c:87:8a:1e:ce:fc:01:44:f9:b3:
46:d5:d1:f7:d9:1e:88:dd:d9:da:79:84:f0:0c:fd:
9d:d3:88:13:c5:a9:38:f9:a7:6f:38:f5:d2:36:66:
31:53:43:6e:3f:64:67:7b:8a:35:01:ce:2c:fa:b8:
d2:b3:b2:db:02:c2:b6:f3:1f:75:ce:03:09:02:ed:
08:7a:ef:2f:72:f2:d5:c8:12:e9:73:0f:df:d7:0d:
34:a8:d4:c0:b4:c8:99:06:4f:e8:2f:aa:ce:f0:84:
37:1b:9c:d4:97:bf:bb:c1:c6:c0:90:f6:61:05:17:
16:7f:84:37:f5:c3:2b:1d:12:4a:16:56:65:38:f3:
13:3d:34:a8:fb:e4:6f:29:d5:c1:3c:a8:03:5c:c5:
db:e4:96:6c:e3:07:ed:7b:13:d3:6e:5e:cc:e0:f5:
7e:2d:7e:47:53:ea:24:46:a1:74:47:01:55:7c:5e:
7b:c1:c4:1c:03:96:6c:41:bc:8a:01:a4:2e:e8:54:
2e:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
4775
18392
23606
23689
24091
24179
24451
38445
38822
45343
45462
45799
45832
55730
131121
132595
132853
139626
139798
sbgp-ipAddrBlock: critical
IPv4:
1.37.0.0/16
45.114.20.0/22
103.6.89.0/24
103.10.176.0/23
103.53.220.0/22
110.54.128.0-110.55.255.255
111.90.192.0/18
112.198.0.0/16
120.28.0.0/16
124.6.128.0/18
180.190.0.0/15
202.86.192.0/21
203.5.77.0/24
203.177.0.0/16
210.185.160.0/20
222.127.0.0/16
IPv6:
2001:fe0::/31
2401:1600::/32
Signature Algorithm: sha256WithRSAEncryption
bc:59:e4:a6:9c:08:dc:b9:c2:83:ff:05:ad:f4:a7:72:80:a6:
de:9a:39:f9:de:7f:e2:6f:32:d1:cb:cc:46:6d:b8:93:14:24:
f7:c0:de:44:a7:36:03:c5:e1:6a:66:56:3d:49:a5:30:94:85:
cc:dc:a7:18:60:a2:23:3c:1b:6e:3c:bf:95:84:36:58:e7:40:
da:53:13:c5:15:fb:80:9e:e7:16:83:31:87:29:c1:08:a5:45:
a9:4d:55:94:c0:d5:ec:37:d3:1c:57:e3:71:de:d8:c6:ee:57:
f1:3c:07:c8:1a:34:c1:e3:9f:57:96:6f:37:e1:7d:76:a6:ec:
81:79:60:1e:fd:53:01:ea:80:f7:2b:fc:83:91:6b:15:c8:d1:
f9:23:95:0d:0c:2e:99:04:1b:d1:8d:f2:aa:b3:28:af:69:6f:
c7:9a:66:f6:d9:de:04:e8:85:e3:86:40:97:61:f9:55:50:89:
c0:f3:ae:ad:2a:75:a7:38:7b:3e:23:74:ea:23:56:82:4b:2b:
0c:5c:c5:03:2a:71:c3:e2:89:9f:e6:7c:3d:3d:1e:88:bc:f3:
f9:27:ac:53:1b:21:d6:e7:97:56:a1:57:fa:db:49:43:25:3e:
75:86:96:75:18:ba:0d:de:df:d1:04:d2:5b:8d:f0:26:cc:29:
0f:0a:a0:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 16 10:34:28 2024 by rpki-client on console-fra.rpki-client.org