Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer
File: u1uBVrA35dIiY-rH9qEcBS_fYz8.cer (raw, json)
Hash identifier: LdVPZAm/kIsjSqikJtqcLA+kaYOlfMZluvUiJ9hp6SA=
Subject key identifier: BB:5B:81:56:B0:37:E5:D2:22:63:EA:C7:F6:A1:1C:05:2F:DF:63:3F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E452
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 13 Mar 2024 14:48:05 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 9535
AS: 9936
AS: 10095
AS: 23924
AS: 55461 -- 55463
AS: 55466
AS: 55515
AS: 55641
AS: 55739
AS: 55849
AS: 55883
AS: 55886
AS: 55929
AS: 55937
AS: 56019
AS: 56053
AS: 56116
AS: 56119
AS: 56127
AS: 56176
AS: 56187
AS: 56230
AS: 56279
AS: 56292
AS: 56314
AS: 58410
AS: 58412
AS: 58415 -- 58417
AS: 58879
AS: 58888
AS: 63918
AS: 131300 -- 131301
AS: 131307
AS: 131311
AS: 131319 -- 131320
AS: 131326 -- 131327
AS: 131335 -- 131336
AS: 131449 -- 131450
AS: 131456 -- 131457
AS: 131469 -- 131470
IP: 101.36.0.0 -- 101.36.95.255
IP: 101.38.0.0 -- 101.41.255.255
IP: 110.165.32.0/19
IP: 118.26.0.0/19
IP: 118.26.40.0/21
IP: 118.26.56.0 -- 118.26.95.255
IP: 118.26.112.0/21
IP: 118.26.128.0/22
IP: 118.26.133.0 -- 118.26.143.255
IP: 118.26.160.0/20
IP: 118.26.188.0 -- 118.26.255.255
IP: 118.28.0.0/15
IP: 118.184.0.0/17
IP: 118.186.0.0 -- 118.188.255.255
IP: 118.191.0.0 -- 118.191.12.255
IP: 118.191.16.0/21
IP: 118.191.64.0 -- 118.191.83.255
IP: 118.191.128.0/19
IP: 118.191.176.0 -- 118.191.208.255
IP: 118.191.216.0/22
IP: 118.191.223.0 -- 118.191.224.255
IP: 118.191.240.0 -- 118.193.7.255
IP: 118.193.48.0/21
IP: 118.193.96.0 -- 118.193.255.255
IP: 118.194.128.0 -- 118.194.227.255
IP: 118.194.240.0/21
IP: 122.8.0.0/17
IP: 122.8.192.0/18
IP: 122.10.128.0/22
IP: 122.10.164.0 -- 122.10.195.255
IP: 122.10.200.0 -- 122.10.215.255
IP: 122.10.228.0 -- 122.10.243.255
IP: 122.14.0.0 -- 122.14.191.255
IP: 123.58.32.0 -- 123.58.95.255
IP: 123.58.128.0/18
IP: 123.58.224.0/20
IP: 2401:a00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 05:23:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123986 (0x1e452)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 13 14:48:05 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A915370F/serialNumber=BB5B8156B037E5D22263EAC7F6A11C052FDF633F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:ec:bb:a4:3f:51:6e:fd:af:a5:03:13:a5:39:
28:4a:17:9e:40:f8:a6:d9:ba:52:85:07:83:66:63:
25:50:db:08:2a:3b:b0:43:e0:fc:a8:fe:5a:8b:db:
ee:49:db:a1:dc:2b:f1:78:4d:e5:7e:c1:cd:b1:35:
9a:8f:cd:02:06:c7:75:7c:f5:a3:1f:40:2e:65:20:
df:69:22:4e:d0:b0:83:53:de:db:59:6c:df:6f:f6:
3a:a1:a2:35:6f:38:fd:63:0c:43:61:d8:c2:31:e9:
47:b3:0b:78:67:50:2c:77:3c:7c:01:3a:67:74:1a:
65:7c:63:05:7e:00:98:dd:bf:f2:ca:51:f1:04:d7:
77:d9:d8:f8:6f:c3:27:61:9b:d5:9a:ad:1a:c1:e4:
93:1a:8a:c9:ea:4b:0b:49:01:12:a0:fe:6e:7c:4e:
f7:6b:f6:9a:6e:be:51:ba:8c:46:e3:e6:e5:8c:91:
ef:41:b4:18:c9:09:2e:29:29:bb:6a:e2:3e:1a:70:
4b:da:8b:3c:64:f2:3f:aa:28:7e:dd:62:69:93:0c:
c4:e9:c6:9d:fb:11:06:d3:a6:d5:62:63:dd:61:b6:
e4:f7:2e:01:fc:1b:87:bb:41:44:4d:f4:d6:3b:5a:
48:51:84:c2:41:06:16:ad:5b:a7:83:31:8a:fd:6f:
12:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:5B:81:56:B0:37:E5:D2:22:63:EA:C7:F6:A1:1C:05:2F:DF:63:3F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9535
9936
10095
23924
55461-55463
55466
55515
55641
55739
55849
55883
55886
55929
55937
56019
56053
56116
56119
56127
56176
56187
56230
56279
56292
56314
58410
58412
58415-58417
58879
58888
63918
131300-131301
131307
131311
131319-131320
131326-131327
131335-131336
131449-131450
131456-131457
131469-131470
sbgp-ipAddrBlock: critical
IPv4:
101.36.0.0-101.36.95.255
101.38.0.0-101.41.255.255
110.165.32.0/19
118.26.0.0/19
118.26.40.0/21
118.26.56.0-118.26.95.255
118.26.112.0/21
118.26.128.0/22
118.26.133.0-118.26.143.255
118.26.160.0/20
118.26.188.0-118.26.255.255
118.28.0.0/15
118.184.0.0/17
118.186.0.0-118.188.255.255
118.191.0.0-118.191.12.255
118.191.16.0/21
118.191.64.0-118.191.83.255
118.191.128.0/19
118.191.176.0-118.191.208.255
118.191.216.0/22
118.191.223.0-118.191.224.255
118.191.240.0-118.193.7.255
118.193.48.0/21
118.193.96.0-118.193.255.255
118.194.128.0-118.194.227.255
118.194.240.0/21
122.8.0.0/17
122.8.192.0/18
122.10.128.0/22
122.10.164.0-122.10.195.255
122.10.200.0-122.10.215.255
122.10.228.0-122.10.243.255
122.14.0.0-122.14.191.255
123.58.32.0-123.58.95.255
123.58.128.0/18
123.58.224.0/20
IPv6:
2401:a00::/32
Signature Algorithm: sha256WithRSAEncryption
34:10:18:9f:a2:08:42:54:a5:e3:cb:70:46:d8:bf:0c:e7:8b:
d8:80:9f:6d:7f:70:e1:b8:33:ba:db:de:59:f0:35:de:0e:42:
6f:8a:34:e9:94:9a:a7:1e:6a:99:2c:e0:19:46:44:bc:00:36:
e2:d3:ca:10:51:7f:29:c2:ab:cc:36:1a:73:39:b0:3c:e0:b3:
f5:a3:9f:42:32:b6:10:9a:3d:d7:4b:9b:1e:c2:73:76:af:e8:
da:26:aa:0d:42:05:ac:3a:6d:23:c7:ab:a9:88:f6:f8:2b:6e:
fa:c6:76:44:2f:08:78:35:b7:2a:a7:88:45:2b:c8:db:ce:53:
22:a5:7b:6e:bb:ba:26:9e:7b:5b:c1:b7:5d:b5:d7:a4:38:eb:
2d:92:67:10:41:41:8f:7e:e6:8f:14:a2:e7:d0:80:d1:72:83:
2e:aa:be:08:11:dc:7a:b4:1f:0b:8b:27:36:05:9c:a1:fc:c8:
f8:30:ff:11:25:20:b6:52:9f:69:3b:a4:2f:f2:0c:9c:3c:68:
1e:0e:8a:5b:e1:43:5f:90:9a:be:54:38:6f:fe:c5:63:0e:61:
87:7e:bc:17:db:54:e7:06:5f:de:ea:21:17:6b:ee:2d:b0:44:
1f:3e:57:03:3d:60:6f:b8:31:5c:df:0b:df:47:9f:89:d3:e5:
15:6d:3d:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 06:37:27 2024 by rpki-client on console-ams.rpki-client.org