Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pStC19RpVfQoUSa7DcS-qnNKkr0.cer
File: pStC19RpVfQoUSa7DcS-qnNKkr0.cer (raw, json)
Hash identifier: ZO+2yAhkpwTLR1asjZfpucp9impZPMAK+8zlRmAYcgo=
Subject key identifier: A5:2B:42:D7:D4:69:55:F4:28:51:26:BB:0D:C4:BE:AA:73:4A:92:BD
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020CC6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E51AD/229581D41D8C11E2B7B428E708B02CD2/pStC19RpVfQoUSa7DcS-qnNKkr0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E51AD/229581D41D8C11E2B7B428E708B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 09 Sep 2024 22:20:14 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 23884
AS: 24573
AS: 45456
AS: 45662
AS: 56018
IP: 45.112.64.0/22
IP: 49.50.232.0/22
IP: 103.246.188.0/22
IP: 111.223.32.0/19
IP: 112.121.128.0/19
IP: 202.8.84.0/22
IP: 202.151.176.0/20
IP: 202.162.76.0/22
IP: 202.170.112.0/20
IP: 2400:ea00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134342 (0x20cc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Sep 9 22:20:14 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91E51AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:98:18:46:33:84:76:2a:d6:0c:10:82:90:3f:
9a:e8:79:12:98:43:97:23:b0:c3:28:15:29:db:05:
57:0c:0c:44:d5:db:2c:f2:7b:c9:84:7f:62:21:03:
95:be:da:b0:96:ca:0f:c5:5c:29:12:fd:aa:d2:17:
9a:42:31:49:d2:28:e7:0b:cf:0c:98:f2:a5:6e:65:
e5:54:71:9b:25:ec:9c:63:14:19:2f:98:38:1b:45:
47:43:d3:f2:a8:a3:0f:6d:32:e5:6c:85:28:0e:ab:
7d:26:1d:d0:28:bc:ba:ad:b4:9c:5f:70:96:b0:5a:
c3:bd:11:22:cc:70:f8:90:79:bf:72:13:6b:ac:c6:
f2:c1:16:c4:1f:11:87:0d:5a:ae:04:cd:8b:2e:7c:
b2:48:9f:7f:25:d6:0e:ac:8e:dd:cd:0e:e0:0e:1b:
ee:79:b6:cd:83:16:98:11:4c:c2:0d:56:7a:df:22:
f5:10:8e:96:e0:60:49:88:94:55:c7:7d:82:42:6c:
28:9a:ff:13:0f:af:40:15:b6:73:42:be:87:a5:31:
8d:54:a0:50:77:cf:36:27:f7:7f:4b:4c:2a:3d:a0:
45:15:13:b1:31:b9:5e:fc:ac:42:e0:41:e2:6c:7b:
68:5e:42:f8:e2:38:b7:8f:ed:c5:26:83:22:e2:94:
f0:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:2B:42:D7:D4:69:55:F4:28:51:26:BB:0D:C4:BE:AA:73:4A:92:BD
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E51AD/229581D41D8C11E2B7B428E708B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E51AD/229581D41D8C11E2B7B428E708B02CD2/pStC19RpVfQoUSa7DcS-qnNKkr0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
23884
24573
45456
45662
56018
sbgp-ipAddrBlock: critical
IPv4:
45.112.64.0/22
49.50.232.0/22
103.246.188.0/22
111.223.32.0/19
112.121.128.0/19
202.8.84.0/22
202.151.176.0/20
202.162.76.0/22
202.170.112.0/20
IPv6:
2400:ea00::/32
Signature Algorithm: sha256WithRSAEncryption
2d:05:a2:d0:bc:4e:5b:19:00:6e:42:fe:22:e3:3a:8b:ec:d9:
ff:4d:7f:a4:31:ae:2f:df:97:84:07:71:18:f9:b0:e9:01:96:
c2:36:f2:e2:86:e2:00:85:a7:ed:0b:49:a0:ff:30:55:5c:e0:
a8:f1:c0:10:f7:64:06:b3:64:78:2f:2d:32:7a:30:71:0f:f3:
e9:5d:7d:a1:3f:fd:e7:d2:f3:60:ec:33:ce:f1:ef:11:30:68:
b9:f9:00:43:c0:f6:5b:02:8d:f3:1d:35:63:7c:7d:2f:5a:3a:
df:ce:68:2a:8e:d0:8f:06:29:5c:4e:3a:d5:2b:15:2d:65:1d:
b7:26:cb:a7:e6:d6:0b:df:1e:0d:f4:fc:4f:00:c7:bf:6f:46:
74:40:61:8e:52:1e:06:bc:af:54:7f:2e:45:e5:57:8a:3a:83:
b8:93:8a:b6:50:6a:a8:cd:e8:44:e6:a5:49:af:34:c1:a8:bb:
3e:a9:cc:93:fb:65:7d:2d:59:97:87:be:83:4d:60:74:38:76:
0f:5a:16:ca:be:99:21:07:91:9d:6f:b4:db:2f:7e:0e:58:9b:
b9:1a:00:e3:81:53:1c:9f:5f:6f:c6:64:1b:b0:66:00:a7:b6:
d6:68:c7:58:a3:52:5c:97:e5:09:65:06:40:ed:42:10:19:d5:
21:d5:37:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:25:10 2025 by rpki-client