Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer
File: r2oY2zoHHvGMylvos1Qz31RPD7I.cer (raw, json)
Hash identifier: nFIvFlfoSUaF5kODmm22Zz7iDGbimAvhC5CCT6o8G1w=
Subject key identifier: AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020255
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 25 Jul 2024 16:51:12 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 137981
IP: 103.119.75.0/24
IP: 103.143.252.0/24
IP: 2001:df5:df00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131669 (0x20255)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 25 16:51:12 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A918E20E/serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:52:a0:79:8d:61:15:7f:09:cd:43:24:20:41:
eb:97:c8:4c:c5:49:04:d0:e8:a7:95:98:90:e0:31:
b3:66:95:b1:3e:38:0b:2a:76:0c:3e:1d:71:68:7e:
8e:3a:ab:13:a0:3d:f1:4f:10:f9:f3:3c:a1:29:7d:
c8:44:4a:4e:6a:95:ac:af:73:49:58:82:2c:8e:17:
11:2c:b6:c9:dc:aa:74:79:55:7c:3b:6a:28:ec:b7:
7c:5b:4c:43:b3:4b:9b:c3:bd:a1:26:23:09:e6:cc:
09:52:cd:34:4c:a6:f3:23:36:ea:4a:31:db:9b:f1:
e6:8e:19:4d:ba:41:7f:c0:27:e3:70:99:69:c7:e7:
d8:58:75:b0:f8:b5:6e:a3:b2:82:d4:a4:a5:0d:41:
92:e3:22:bb:ae:c1:bc:ee:a0:56:41:79:c3:1a:9c:
69:28:26:2e:98:02:73:20:6e:c9:2f:a7:80:19:7c:
d8:bd:83:a8:18:52:6e:f1:67:8d:68:7f:8e:94:ab:
3c:12:7f:63:3f:23:79:b9:3d:d2:f4:1e:96:d2:50:
ec:91:3b:1e:d2:73:66:ea:da:74:ea:83:2d:58:ea:
d5:47:f6:b4:0b:1e:45:2a:ab:43:62:cc:f1:d9:17:
32:fe:c6:ba:24:d5:25:7d:3d:6b:eb:2c:b1:71:6d:
b7:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137981
sbgp-ipAddrBlock: critical
IPv4:
103.119.75.0/24
103.143.252.0/24
IPv6:
2001:df5:df00::/48
Signature Algorithm: sha256WithRSAEncryption
7a:d0:b7:44:d0:6f:1a:7b:69:2d:c6:43:f3:c1:a1:5d:b7:f8:
a6:e1:91:09:c8:d9:8a:30:61:3a:44:79:4e:61:3e:c5:aa:a7:
38:62:c7:b9:35:d4:c6:6d:a3:f4:e4:12:b6:18:3c:13:39:72:
6d:b6:d2:b6:76:8f:75:a9:31:db:0d:4f:4c:bd:c5:7b:c7:b7:
23:6d:5a:9a:1e:ab:3b:0d:93:5c:3f:60:df:cd:f6:a6:d5:96:
0a:9f:8c:07:d8:a4:82:31:0b:79:b7:e5:4e:e5:14:3d:d1:40:
a3:0d:9d:ee:f7:ea:6f:c9:a2:c0:bf:e6:2c:30:dc:47:bb:ce:
18:b4:6f:90:ff:b4:c5:a2:6e:c1:f5:9b:bc:99:79:6a:81:02:
eb:4d:41:64:9e:02:fd:1c:96:75:10:e5:cc:79:ca:d2:ff:a9:
29:ae:bc:f1:e5:a9:e7:f4:f7:d5:f0:c0:46:a4:d2:79:8a:b7:
34:60:04:d5:99:60:98:f9:5f:c8:0b:ab:04:51:85:4c:bc:59:
69:c1:af:fc:04:3c:39:92:9e:41:a2:f4:e2:84:71:21:b2:89:
64:bf:c8:10:1e:52:6c:d1:a0:6e:54:dd:08:1c:5c:47:01:f8:
59:5b:6c:04:2f:a2:09:23:38:99:9d:27:09:80:f6:0b:e4:45:
c5:72:ba:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:00:06 2024 by rpki-client on console-ams.rpki-client.org