Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pStC19RpVfQoUSa7DcS-qnNKkr0.cer
File: pStC19RpVfQoUSa7DcS-qnNKkr0.cer (raw, json)
Hash identifier: u0I86Wi3tcsyPJt+ET1gGASW2vQkhNO+wwGr6IYVQYU=
Subject key identifier: A5:2B:42:D7:D4:69:55:F4:28:51:26:BB:0D:C4:BE:AA:73:4A:92:BD
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BC34
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E51AD/229581D41D8C11E2B7B428E708B02CD2/pStC19RpVfQoUSa7DcS-qnNKkr0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E51AD/229581D41D8C11E2B7B428E708B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 07 Sep 2023 19:36:10 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 23884
AS: 24573
AS: 45456
AS: 45662
AS: 56018
IP: 45.112.64.0/22
IP: 49.50.232.0/22
IP: 103.246.188.0/22
IP: 111.223.32.0/19
IP: 112.121.128.0/19
IP: 202.8.84.0/22
IP: 202.151.176.0/20
IP: 202.162.76.0/22
IP: 202.170.112.0/20
IP: 2400:ea00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Apr 2024 19:33:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113716 (0x1bc34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 7 19:36:10 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91E51AD/serialNumber=A52B42D7D46955F4285126BB0DC4BEAA734A92BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:98:18:46:33:84:76:2a:d6:0c:10:82:90:3f:
9a:e8:79:12:98:43:97:23:b0:c3:28:15:29:db:05:
57:0c:0c:44:d5:db:2c:f2:7b:c9:84:7f:62:21:03:
95:be:da:b0:96:ca:0f:c5:5c:29:12:fd:aa:d2:17:
9a:42:31:49:d2:28:e7:0b:cf:0c:98:f2:a5:6e:65:
e5:54:71:9b:25:ec:9c:63:14:19:2f:98:38:1b:45:
47:43:d3:f2:a8:a3:0f:6d:32:e5:6c:85:28:0e:ab:
7d:26:1d:d0:28:bc:ba:ad:b4:9c:5f:70:96:b0:5a:
c3:bd:11:22:cc:70:f8:90:79:bf:72:13:6b:ac:c6:
f2:c1:16:c4:1f:11:87:0d:5a:ae:04:cd:8b:2e:7c:
b2:48:9f:7f:25:d6:0e:ac:8e:dd:cd:0e:e0:0e:1b:
ee:79:b6:cd:83:16:98:11:4c:c2:0d:56:7a:df:22:
f5:10:8e:96:e0:60:49:88:94:55:c7:7d:82:42:6c:
28:9a:ff:13:0f:af:40:15:b6:73:42:be:87:a5:31:
8d:54:a0:50:77:cf:36:27:f7:7f:4b:4c:2a:3d:a0:
45:15:13:b1:31:b9:5e:fc:ac:42:e0:41:e2:6c:7b:
68:5e:42:f8:e2:38:b7:8f:ed:c5:26:83:22:e2:94:
f0:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:2B:42:D7:D4:69:55:F4:28:51:26:BB:0D:C4:BE:AA:73:4A:92:BD
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E51AD/229581D41D8C11E2B7B428E708B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E51AD/229581D41D8C11E2B7B428E708B02CD2/pStC19RpVfQoUSa7DcS-qnNKkr0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
23884
24573
45456
45662
56018
sbgp-ipAddrBlock: critical
IPv4:
45.112.64.0/22
49.50.232.0/22
103.246.188.0/22
111.223.32.0/19
112.121.128.0/19
202.8.84.0/22
202.151.176.0/20
202.162.76.0/22
202.170.112.0/20
IPv6:
2400:ea00::/32
Signature Algorithm: sha256WithRSAEncryption
6a:8d:19:e5:cd:b8:bf:41:70:6c:70:d8:d2:82:1e:28:22:4c:
b6:0b:bb:d1:a0:be:d7:3b:bc:a6:91:70:10:e3:9a:c9:f2:29:
d7:88:11:d9:8f:ed:76:d7:80:13:f1:46:d2:10:f7:91:31:1b:
d4:d9:74:d1:a6:cb:37:ff:75:a3:77:07:38:f1:59:52:1d:20:
46:57:d9:ac:18:a9:dd:7c:34:dd:37:38:22:53:3c:d7:26:e0:
6d:8e:ed:36:68:a6:d2:74:dc:bf:0e:01:11:70:2b:9f:91:1c:
ae:a8:21:ba:17:ca:f4:b7:26:88:15:b6:0c:72:56:48:db:11:
fd:bc:a8:4a:8e:ee:3d:e3:11:cc:34:7a:3c:cb:72:25:cb:ec:
9b:64:f1:7b:06:42:f1:d1:af:95:2b:a9:7d:db:7b:e2:fa:4b:
04:8d:67:96:23:d5:30:e4:b9:e3:9b:d7:a6:3b:98:84:75:06:
9c:2d:b2:ac:bc:64:c2:1f:e2:5a:bf:8b:e9:db:e7:83:34:b0:
6e:61:44:db:4a:14:27:33:73:c3:ca:3f:19:e1:a8:b7:b2:4e:
20:8c:01:f4:88:71:6a:e9:df:24:f9:5d:d8:46:68:27:54:89:
6d:f1:7e:d7:62:88:ff:29:ed:98:db:de:3e:6b:eb:d6:d7:48:
b5:70:04:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 20:11:19 2024 by rpki-client on console-fra.rpki-client.org