Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer
File: poP2ckwCoT8tOc8vIVAL4AOA3eM.cer (raw, json)
Hash identifier: F5kIQg9QpdOXvnho4UZNBksQcXU2zJO2T4TwaNTI+Fk=
Subject key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F9C2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 18 Jun 2024 14:50:47 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 38077
IP: 103.112.36.0/22
IP: 180.189.160.0/20
IP: 2405:1f00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129474 (0x1f9c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 18 14:50:47 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:64:1f:b4:54:01:b3:b2:8e:d9:fe:c6:51:37:
af:ad:55:9f:6d:df:8e:84:f5:e8:0e:c6:e7:92:38:
ed:06:00:ef:33:f2:f8:5f:24:98:c0:36:65:be:1f:
b8:48:16:c6:3a:55:6b:99:b5:4f:33:0f:8f:41:1f:
85:6f:84:e1:ca:a4:46:ec:23:4a:7c:cb:b1:f8:aa:
4c:06:ba:43:d6:1b:5e:82:d6:23:bc:81:85:a4:7d:
fd:a7:91:ca:62:94:00:b5:de:7f:be:7f:98:26:da:
38:23:d4:11:71:bb:3c:48:3f:a5:95:bb:ff:56:b8:
68:6c:ec:22:ed:81:16:5a:ed:63:49:45:32:46:cc:
b7:20:44:a6:b2:01:d8:38:df:92:11:39:55:79:ee:
2e:bb:35:ba:1d:79:fe:26:6a:0e:75:c7:cb:8c:ac:
1f:db:52:65:ad:a7:4a:19:80:5c:f0:43:0a:f6:a2:
f2:54:2d:75:8c:ac:90:27:00:ab:53:33:da:40:d7:
fc:9d:1d:ee:f2:56:20:b5:8c:23:4f:cf:23:b6:59:
ec:47:8d:f9:4d:63:0d:68:03:fa:e2:0e:22:31:59:
52:eb:c7:18:e0:9a:b6:45:25:be:1e:48:bd:50:3b:
08:f8:67:47:3e:15:16:5b:ad:41:6c:ca:8a:19:c1:
25:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38077
sbgp-ipAddrBlock: critical
IPv4:
103.112.36.0/22
180.189.160.0/20
IPv6:
2405:1f00::/32
Signature Algorithm: sha256WithRSAEncryption
29:7d:71:e8:58:90:df:2d:be:2f:63:a9:ad:1e:09:6a:01:61:
91:7f:11:8d:e2:fc:d1:4a:76:51:5d:3e:8d:a4:09:ea:5f:6a:
97:71:b3:a3:91:5c:aa:a5:2e:12:f3:c8:de:61:94:e5:e3:50:
4c:ff:0a:b8:02:f5:f1:cb:ab:a7:a5:53:01:13:ad:c4:5f:c1:
d0:9f:02:4f:54:90:1a:4d:7f:b5:1e:8f:2c:40:02:50:4b:07:
07:e5:d2:b4:fb:97:4b:d0:c4:e6:f5:f2:5f:d9:71:ec:72:cb:
75:e9:9e:4e:b1:2d:1e:fe:ed:0d:88:75:d9:85:41:e7:1d:10:
e6:74:23:4b:96:af:6e:e9:c4:fa:dd:8a:e4:8b:e2:82:52:60:
55:95:13:d1:3e:3c:62:8f:9a:f7:64:b0:d3:75:63:d6:45:25:
c3:81:31:16:bb:a1:7e:02:13:52:94:a4:bd:62:14:41:f3:83:
df:f3:b4:01:95:7d:e9:12:c9:91:05:60:f4:c4:48:ab:f4:3d:
06:3a:48:08:b8:49:7d:2f:aa:ab:02:7f:74:a4:ec:e0:22:2c:
9c:f5:ca:ce:8f:9b:8f:37:cb:57:b2:c2:65:af:d9:d9:cb:89:
64:22:3c:70:b9:e6:13:f8:59:f9:5c:4b:50:6f:b8:ab:b5:30:
26:67:8e:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:50 2024 by rpki-client on console-fra.rpki-client.org