Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qelaQWvM7v2G6i-gGcJeTXa46dk.cer
File: qelaQWvM7v2G6i-gGcJeTXa46dk.cer (raw, json)
Hash identifier: J96I0NZIFUSK4GhR6YAABEH04IdtVSirQTNPUae81g8=
Subject key identifier: A9:E9:5A:41:6B:CC:EE:FD:86:EA:2F:A0:19:C2:5E:4D:76:B8:E9:D9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021CBF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/qelaQWvM7v2G6i-gGcJeTXa46dk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 21 Nov 2024 12:34:47 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 134094
AS: 138646
IP: 45.123.116.0/24
IP: 45.123.118.0/23
IP: 103.51.140.0/22
IP: 103.103.128.0/22
IP: 203.15.150.0/24
IP: 2401:f540::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138431 (0x21cbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 21 12:34:47 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A911C676/serialNumber=A9E95A416BCCEEFD86EA2FA019C25E4D76B8E9D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:78:03:91:23:7e:9c:42:c7:6e:00:7f:c0:35:
28:41:e2:49:43:af:0c:83:cb:95:3c:ef:48:c3:1f:
3c:5b:94:e4:e9:22:72:b2:81:bf:fa:df:6b:31:77:
5f:35:ee:53:bb:6a:e3:fe:c1:2b:32:00:fc:be:8a:
73:9a:71:c0:be:f5:79:5e:87:c3:ab:b9:52:3a:8f:
4e:d7:3c:48:8e:10:66:d6:c4:7a:00:a5:95:e9:a2:
4a:57:72:30:9b:64:8f:17:5f:2f:c2:4d:a6:2b:66:
b7:c3:aa:a5:e5:c3:6e:c6:5b:2c:49:c6:50:1d:2d:
3b:4c:30:b3:ba:38:77:c2:a9:4f:8e:30:4a:5a:d6:
12:d3:19:a2:6e:b9:42:6f:5e:48:56:c8:92:6d:a7:
b4:39:f4:89:b9:3b:d5:0d:08:1a:b8:28:0d:b3:d8:
35:01:3b:10:08:97:e0:a4:66:a3:4c:69:52:c2:26:
c5:db:0d:ca:9f:eb:ef:e4:86:26:3a:ff:47:c1:48:
ad:e9:e5:a7:2f:f8:f8:b7:ff:5f:c4:55:d7:ad:f3:
1a:d1:db:b6:97:dc:f8:78:1c:37:65:6a:1e:3a:d3:
4e:68:e9:ea:c6:c1:51:63:bf:89:fd:c9:17:77:2a:
6d:db:9a:de:4b:67:a8:fa:be:46:ea:fb:16:ce:7f:
6c:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:E9:5A:41:6B:CC:EE:FD:86:EA:2F:A0:19:C2:5E:4D:76:B8:E9:D9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/qelaQWvM7v2G6i-gGcJeTXa46dk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134094
138646
sbgp-ipAddrBlock: critical
IPv4:
45.123.116.0/24
45.123.118.0/23
103.51.140.0/22
103.103.128.0/22
203.15.150.0/24
IPv6:
2401:f540::/32
Signature Algorithm: sha256WithRSAEncryption
17:a3:4c:a2:b5:42:17:23:f4:c8:3e:f0:6e:f5:c5:77:a3:19:
17:bb:53:12:d5:22:60:f2:07:08:61:4e:3f:f7:4e:76:a7:29:
65:81:46:84:dc:9a:de:b8:40:4e:ee:34:fa:d0:5b:9d:2e:bb:
91:af:4f:99:c5:f1:46:29:5f:0d:d2:ef:1b:ec:bd:39:1f:6a:
4a:76:02:e6:c9:78:09:b8:e1:ef:91:3a:18:b4:a9:4f:08:4e:
63:46:bb:a5:df:d8:71:50:de:91:05:0d:b5:ee:1e:55:82:1f:
c4:96:2e:7b:e8:e3:5f:58:11:88:b8:31:13:23:6c:de:87:2f:
72:0c:a3:2e:f6:2a:28:ee:24:4e:f8:05:3e:93:b1:c9:91:5d:
2e:f6:f7:5a:c2:e3:f7:e2:39:a2:22:c3:19:29:6d:b3:71:25:
da:26:a6:ce:bc:65:0c:e2:97:ca:13:be:45:94:00:2b:eb:73:
4f:f0:b5:ea:bf:30:70:ee:f4:f6:16:08:90:d4:2d:71:1e:a1:
3a:9a:f5:3c:6b:0a:47:2f:c1:cc:80:43:28:52:11:db:cf:63:
f1:11:78:fa:97:19:65:84:b4:9f:24:32:2b:da:78:20:9e:0f:
ce:13:c3:dd:22:97:1b:52:24:1d:cb:0c:76:71:74:69:57:70:
92:09:ba:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:00:05 2024 by rpki-client on console-ams.rpki-client.org