Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u5dqWY5eywXjf6wApbeIjlf1HFI.cer
File: u5dqWY5eywXjf6wApbeIjlf1HFI.cer (raw, json)
Hash identifier: /cVT7Zn40VvDAiz2WoEa0rMJY7orgaV2omp9relxLHA=
Subject key identifier: BB:97:6A:59:8E:5E:CB:05:E3:7F:AC:00:A5:B7:88:8E:57:F5:1C:52
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02180B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 01 Nov 2024 21:22:54 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 136948
IP: 103.99.248.0/22
IP: 2401:b640::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137227 (0x2180b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 1 21:22:54 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91590E3/serialNumber=BB976A598E5ECB05E37FAC00A5B7888E57F51C52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:2d:ae:99:60:b6:75:71:01:61:58:94:24:6e:
9d:d0:b9:2c:fc:e8:ec:f2:e3:60:a1:d3:21:3a:aa:
43:27:e2:d9:67:52:6b:48:4e:7e:8d:4b:4b:51:6f:
e5:72:3a:e6:54:86:f6:67:85:2d:c1:25:64:45:c7:
f5:2f:bf:03:97:62:40:bb:04:e6:e9:fa:04:a6:f0:
d9:c8:26:a8:60:14:ac:b6:ac:50:7b:f6:e2:4f:5a:
64:71:1a:97:d2:fa:ee:73:da:bd:10:26:7f:71:79:
f3:6b:fc:95:c5:d4:d0:3b:a8:f7:64:79:77:26:54:
ca:96:ff:21:5c:04:9d:2d:b3:36:6c:d3:a7:a2:1f:
a4:83:2c:62:7a:e4:05:7d:00:f0:03:89:60:05:e3:
93:86:26:42:e6:fb:f3:3f:cd:d6:6d:32:81:f3:4e:
33:0e:4c:57:52:64:26:1f:d5:4a:3b:75:cd:34:22:
80:c4:6f:5b:37:3b:4f:12:b5:15:92:10:17:6d:dd:
ea:84:51:bc:39:92:f6:12:b8:01:92:f0:e4:0c:c1:
f7:e3:ad:69:5d:41:82:c8:a0:50:f5:a9:52:85:59:
e4:57:57:7f:8b:24:8e:b3:fd:47:26:e0:03:47:f6:
f8:7c:7e:75:12:ce:f7:09:06:01:43:0a:1c:9f:84:
f4:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:97:6A:59:8E:5E:CB:05:E3:7F:AC:00:A5:B7:88:8E:57:F5:1C:52
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136948
sbgp-ipAddrBlock: critical
IPv4:
103.99.248.0/22
IPv6:
2401:b640::/32
Signature Algorithm: sha256WithRSAEncryption
b9:73:80:1d:e1:92:28:21:57:93:6b:13:7c:35:93:bd:22:3d:
a2:6c:36:f0:91:67:e4:ba:9a:0e:09:ae:0f:46:55:ca:2c:17:
8c:a5:6e:28:32:98:28:77:e8:80:c8:ac:8c:13:62:89:d4:b4:
63:f0:e5:2d:9c:b6:d0:3e:2b:94:6b:b8:f8:25:86:12:fe:66:
b8:44:28:a6:c0:33:4d:aa:0a:b4:91:8a:0e:68:1f:f4:95:9b:
19:a1:fb:f7:d2:b1:bc:f7:83:2d:56:c4:65:b6:48:e2:55:1f:
fc:35:a5:7d:8b:de:c8:1f:da:94:9d:90:ba:6b:09:a8:74:c6:
0a:15:7f:48:c5:dd:d5:e5:70:9a:fa:0f:95:fc:d2:1e:68:67:
d3:f1:4b:83:e5:4d:a0:a5:90:b8:1a:42:f9:90:79:ae:29:e3:
91:c4:11:11:09:5b:f8:79:b3:c1:e9:5e:d4:7e:2a:3a:3a:21:
ce:5d:dc:a0:be:5a:93:3c:9c:20:a1:a6:01:a2:45:67:36:bb:
61:79:37:11:c8:37:73:58:94:ea:c1:e3:a5:13:1b:5a:d0:08:
54:2b:8e:e4:b1:5d:f8:b1:f6:54:87:b1:28:62:44:44:7a:6e:
2b:2b:7c:bb:4f:b6:35:05:13:60:65:e5:7b:d1:f0:bc:82:3c:
1e:46:a2:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:00:09 2024 by rpki-client on console-ams.rpki-client.org