Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer
File: oktqYgRLcAZfBQY4hGDkry8X8_8.cer (raw, json)
Hash identifier: +N0OSKf25irDjWtHlsaMB0Lr0sYxYxFG87NAkPJmcFE=
Subject key identifier: A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B601
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 09 Aug 2023 16:49:30 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 23647
AS: 24123
AS: 24503
AS: 38533
AS: 45811
AS: 45845
IP: 43.245.236.0/22
IP: 45.117.152.0/22
IP: 103.57.204.0/22
IP: 103.235.196.0/22
IP: 103.250.132.0/22
IP: 163.53.24.0/22
IP: 202.51.64.0/19
IP: 2405:6600::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112129 (0x1b601)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 9 16:49:30 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A918F550/serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:3b:e7:52:a0:59:2c:89:5b:97:51:f4:08:f0:
d0:a0:e8:c7:6d:d0:5b:18:6f:4e:7c:cd:59:7b:b6:
88:be:d5:76:81:54:e6:ea:a0:4a:2b:19:60:74:28:
b8:79:eb:06:ec:9f:f7:4d:55:69:f4:ce:2b:2f:ad:
d9:7e:e6:c1:94:9e:15:59:17:9d:92:d6:db:2a:0c:
fa:e7:62:7e:15:e8:34:fa:38:00:f0:bb:2f:77:af:
fc:2f:aa:3b:20:75:6f:74:cc:a9:08:04:25:c2:a0:
c0:ce:7c:c6:31:67:a9:3d:5f:3a:86:09:95:da:97:
9d:19:db:d0:43:7d:00:c3:d5:d3:e1:be:cb:88:25:
d9:78:29:1b:48:ef:8c:79:b8:d8:9d:0d:4b:b4:24:
63:0a:c3:e1:ae:8c:d4:94:66:71:80:9b:9d:03:7b:
4e:29:10:72:2e:d0:2c:b2:11:72:78:ff:74:9e:d6:
55:7f:3d:4e:ba:8d:55:8b:16:f8:bb:64:0e:f3:df:
ae:ba:90:fb:fb:b8:24:db:87:5d:66:16:f9:f1:26:
a9:98:d4:9a:55:3c:42:0b:e7:8d:1a:3a:2c:e4:07:
be:d0:55:fd:be:58:c0:01:85:f4:a1:c9:d1:e5:06:
be:b4:4c:62:9a:4d:3a:6b:ca:a8:87:b6:d8:d6:0b:
17:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
23647
24123
24503
38533
45811
45845
sbgp-ipAddrBlock: critical
IPv4:
43.245.236.0/22
45.117.152.0/22
103.57.204.0/22
103.235.196.0/22
103.250.132.0/22
163.53.24.0/22
202.51.64.0/19
IPv6:
2405:6600::/32
Signature Algorithm: sha256WithRSAEncryption
c5:8a:43:a7:0f:77:1b:4f:09:2e:47:2d:01:14:6f:9c:01:2c:
34:e6:55:5f:66:de:67:b3:b5:a9:dc:e2:ad:5a:75:6b:b1:7c:
f3:df:43:b4:0c:54:a0:34:77:57:bd:f2:13:fc:c4:65:ff:7a:
0b:47:24:14:4f:5f:ee:fd:74:d1:74:3e:8f:58:55:f2:88:bc:
d7:4d:3f:95:99:4a:51:5c:6f:89:6c:ca:e3:08:a3:b4:03:0b:
71:d4:51:c7:18:a9:b7:8f:18:b9:82:23:5a:d4:47:ac:62:b0:
2c:e1:ce:ec:f0:81:b3:65:bb:83:6d:bd:cb:b6:ec:37:2b:99:
5f:ef:f7:03:85:ba:a7:a1:51:dc:10:be:af:c3:55:52:f6:68:
19:26:fe:b8:bf:d4:f8:43:4f:8c:84:1b:dd:65:08:05:65:cd:
f2:a6:75:5e:40:b2:75:7e:e1:89:b4:db:b0:73:80:30:11:66:
ed:70:f2:3d:1e:e0:9c:9b:f6:af:1b:ad:a9:bb:91:aa:f1:3f:
4e:57:f7:73:8f:52:94:a2:32:ec:e1:5e:b8:0f:df:b6:67:c4:
11:1c:0b:25:90:5a:56:55:4e:77:d2:8a:af:48:bb:94:ed:3f:
33:51:d6:bf:8f:94:14:71:36:dd:86:69:fb:5b:0f:fb:c9:98:
28:d7:12:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 03:16:17 2024 by rpki-client on console-fra.rpki-client.org