Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rPLI0Nz7p0UWszzr4mrhT4sGfIA.cer
File: rPLI0Nz7p0UWszzr4mrhT4sGfIA.cer (raw, json)
Hash identifier: Nqw0lNAgwNjSLTE9wdEPeONQLAjKC16fCkzlhkA4hPM=
Subject key identifier: AC:F2:C8:D0:DC:FB:A7:45:16:B3:3C:EB:E2:6A:E1:4F:8B:06:7C:80
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D1F9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9191A09/4ACFF3601D9011E2B87CF2EF08B02CD2/rPLI0Nz7p0UWszzr4mrhT4sGfIA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9191A09/4ACFF3601D9011E2B87CF2EF08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 14 Dec 2023 14:45:22 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 24492
AS: 55559
AS: 139821
IP: 27.111.8.0/22
IP: 43.245.216.0/22
IP: 49.156.32.0/20
IP: 103.17.212.0/22
IP: 116.206.16.0/22
IP: 119.15.80.0/20
IP: 202.79.24.0/21
IP: 218.100.71.0/24
IP: 2405:1a00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119289 (0x1d1f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 14 14:45:22 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A9191A09/serialNumber=ACF2C8D0DCFBA74516B33CEBE26AE14F8B067C80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:0a:d3:a7:84:98:b4:96:80:a4:e7:72:2a:54:
b3:05:c5:cf:fa:6c:95:05:46:53:70:b0:40:87:3d:
ad:9a:72:ee:2e:56:c9:fe:6a:87:bd:9b:08:3d:62:
f0:a1:5c:ee:f3:2d:2a:da:62:8f:9b:d9:7c:a0:5d:
da:a4:5b:35:22:9f:78:93:f8:c5:14:9c:34:25:08:
ba:91:04:a6:d6:a8:10:a6:72:b4:65:a6:45:7f:3a:
e4:f3:c5:06:01:1d:ed:78:f9:95:b8:f6:9a:42:a8:
0c:32:8d:f0:3f:2d:17:7b:8b:a9:2f:8f:56:98:e3:
d4:db:7e:ad:60:c2:ce:24:af:5b:20:b5:c1:81:a9:
61:63:b9:f9:90:5f:a0:eb:72:11:6e:bf:3c:c8:35:
19:80:8e:57:84:bd:f4:64:13:f0:ca:b2:35:a4:f9:
51:93:32:27:61:ee:6b:b9:a5:13:01:1d:b6:df:ec:
58:2f:6c:17:26:20:58:7b:e7:eb:d6:35:4b:95:be:
0d:ca:cf:1f:42:d9:21:c6:be:43:90:bc:a6:93:35:
00:23:84:cf:31:6a:42:8d:c7:bf:39:d2:eb:e0:1c:
b8:0c:95:1d:be:56:21:83:c5:99:d4:7b:e2:63:19:
1c:fe:5a:65:1f:29:87:d3:be:65:69:91:fd:e8:24:
78:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:F2:C8:D0:DC:FB:A7:45:16:B3:3C:EB:E2:6A:E1:4F:8B:06:7C:80
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9191A09/4ACFF3601D9011E2B87CF2EF08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9191A09/4ACFF3601D9011E2B87CF2EF08B02CD2/rPLI0Nz7p0UWszzr4mrhT4sGfIA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24492
55559
139821
sbgp-ipAddrBlock: critical
IPv4:
27.111.8.0/22
43.245.216.0/22
49.156.32.0/20
103.17.212.0/22
116.206.16.0/22
119.15.80.0/20
202.79.24.0/21
218.100.71.0/24
IPv6:
2405:1a00::/32
Signature Algorithm: sha256WithRSAEncryption
30:a5:29:8b:be:01:a2:ed:88:d9:56:a9:b6:2f:23:b4:d8:d9:
2d:09:4f:be:c8:00:42:64:5e:61:fc:93:ce:a4:ee:9c:c9:8f:
57:74:52:f7:da:ce:32:b4:4d:09:4c:06:2c:71:ad:69:46:95:
2f:05:3b:5a:88:e9:96:c0:79:6f:88:fc:ce:a0:c9:61:0e:16:
50:d5:6f:14:9f:05:fd:d9:9d:6b:5c:9d:11:22:50:c3:5a:f0:
de:a7:c0:0a:0f:41:6f:f9:e2:89:1f:f7:d5:e9:5f:02:42:81:
e8:e6:78:d0:1f:0e:95:17:94:69:c0:7c:f9:a9:6c:78:b2:e3:
c8:ce:2c:2e:7f:c9:ea:73:bd:c4:a8:e2:f7:6d:e8:5e:62:1f:
c6:b8:36:e2:14:fa:42:86:a7:36:0d:c8:74:f8:64:40:be:a3:
6d:07:74:36:73:f3:7f:d5:38:e9:d3:4b:f2:b9:86:c6:7a:38:
74:ce:cb:38:4a:27:fa:4e:7e:a5:4e:ec:4e:74:dd:e8:b0:67:
01:d3:1c:f7:1d:18:b6:3f:68:16:3d:f6:53:aa:9f:a4:8d:9d:
4f:2e:5d:77:f6:fd:23:9e:95:00:a2:b7:7b:bb:e1:bd:bf:2b:
6b:38:ba:99:a9:d9:59:78:80:18:ee:31:d8:32:7e:a4:7c:75:
e3:3c:d5:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:36 2024 by rpki-client on console-fra.rpki-client.org