Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJEs76dYoRmcG-3gaxSp6jmJdfc.cer
File: rJEs76dYoRmcG-3gaxSp6jmJdfc.cer (raw, json)
Hash identifier: FR6d8qRVVNRyR66Vo6VQI/5vl2S78XgoeYR87HWyFlQ=
Subject key identifier: AC:91:2C:EF:A7:58:A1:19:9C:1B:ED:E0:6B:14:A9:EA:39:89:75:F7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021692
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/rJEs76dYoRmcG-3gaxSp6jmJdfc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 28 Oct 2024 12:24:32 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 133608
AS: 147012
IP: 103.172.232.0/23
IP: 223.165.16.0/24
IP: 2407:dac0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136850 (0x21692)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 28 12:24:32 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A911285C/serialNumber=AC912CEFA758A1199C1BEDE06B14A9EA398975F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:27:c2:57:c3:ac:4e:58:c1:18:e6:6c:b2:e8:
75:0a:ff:cb:7b:7b:55:45:0c:a6:e7:85:7e:de:1c:
32:94:5f:94:c1:d1:92:76:97:66:4d:e0:2e:c6:00:
40:4d:7f:ea:65:aa:ed:83:c1:7a:8d:09:d6:de:6c:
be:14:42:15:58:b9:61:41:20:e1:96:b1:e7:5d:9c:
d3:10:64:e8:b0:94:f9:26:a7:c3:b4:5d:bd:5d:72:
2e:98:87:4a:0b:e8:d9:29:ff:0d:5d:b3:ce:53:88:
5f:71:dc:2e:03:f7:70:60:26:98:10:32:17:8b:86:
6c:e9:a2:4e:e8:b3:b5:a1:a3:83:d5:42:5a:da:b6:
05:34:70:96:01:08:6e:00:3e:91:78:f5:a3:1d:63:
c4:d5:44:04:9a:38:12:74:52:e8:a5:bf:6e:86:56:
ad:75:e4:ca:3e:3d:18:af:7d:1c:c9:62:e2:84:7f:
f6:ff:54:7e:52:cd:6b:7e:81:54:5c:16:88:df:2e:
3c:a3:32:a5:d6:43:2f:fc:36:3a:a8:05:9b:cb:67:
d8:1e:7f:33:24:ff:8c:1b:9d:d5:06:e1:62:6e:aa:
f6:60:f1:b9:2f:22:96:17:6d:af:73:6f:08:3b:b2:
a2:ab:0c:2b:c3:7a:2a:05:c6:3f:fe:31:14:28:b1:
d8:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:91:2C:EF:A7:58:A1:19:9C:1B:ED:E0:6B:14:A9:EA:39:89:75:F7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/rJEs76dYoRmcG-3gaxSp6jmJdfc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133608
147012
sbgp-ipAddrBlock: critical
IPv4:
103.172.232.0/23
223.165.16.0/24
IPv6:
2407:dac0::/32
Signature Algorithm: sha256WithRSAEncryption
2f:b7:23:b5:e5:ae:b6:4c:85:c0:19:67:04:de:90:48:95:36:
ef:4d:b6:5b:02:a8:52:28:8b:01:90:ab:f9:69:26:de:4f:ac:
99:3a:70:a5:f9:ae:f1:ca:cc:f2:16:ab:a7:40:f1:3a:a2:57:
1c:11:89:c3:98:dd:0c:be:09:70:80:19:35:4b:98:c5:e7:a6:
d9:7a:cc:4c:c0:1f:d6:11:94:41:90:c7:18:7a:09:e0:af:76:
69:64:e9:1a:89:1e:70:69:47:14:28:f6:c4:36:51:30:2f:3b:
63:11:70:b6:0c:67:60:59:d0:1f:1d:74:89:6c:65:3e:66:62:
b3:54:ea:5c:76:fd:6a:04:fd:a4:db:9d:b6:ef:16:c2:30:ef:
f5:08:97:be:36:7a:cb:d1:9a:d4:39:41:79:af:e4:0c:b3:c9:
45:d2:3f:bb:13:7c:b0:24:fc:84:68:ce:2e:33:de:c6:83:74:
70:e9:2f:b3:81:f4:4a:ac:c1:29:36:6d:16:86:5a:a3:d2:23:
8d:2f:c6:a8:46:95:4d:c9:80:a7:09:69:11:c4:f2:72:62:11:
5c:34:25:ae:3d:ae:c4:a8:91:37:ba:19:86:99:07:1a:07:9a:
a7:eb:93:06:54:91:e7:b4:78:c8:15:a0:85:ed:4b:f1:a9:3b:
2b:9f:dd:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 04:08:15 2024 by rpki-client on console-ams.rpki-client.org