Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer
File: up0rragmh4TwCuhYcC744p5ytLw.cer (raw, json)
Hash identifier: ZJvIXsRV7MDpbYTlmu1GbGWQN9nUKKu0H4f6yqftAo8=
Subject key identifier: BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DB5F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 30 Jan 2024 14:33:50 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 17480
AS: 131248
AS: 149003
IP: 43.255.236.0/22
IP: 103.23.52.0/22
IP: 113.21.96.0/19
IP: 202.171.64.0/20
IP: 203.147.64.0 -- 203.147.87.255
IP: 220.156.160.0/20
IP: 2401:c00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121695 (0x1db5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 30 14:33:50 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91A9EE2/serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4b:8c:8a:e6:86:b3:c9:a2:d6:e1:3a:21:96:
17:88:f5:05:f9:65:f7:47:e8:c0:c7:57:d6:74:bc:
1f:c4:e2:01:07:72:ea:82:2c:d9:0e:0a:78:3f:8d:
06:16:17:e6:c0:35:b6:3f:97:86:9b:3e:01:dd:3d:
d4:78:d7:53:ba:18:05:0c:9c:49:04:d9:35:24:d0:
8f:30:cf:c4:8a:4f:17:07:5a:59:92:85:41:d0:ad:
22:21:fb:16:04:cb:8b:e1:9f:f6:19:65:0d:a5:29:
ef:a9:92:83:7b:d7:04:93:9b:de:f9:3d:8d:fa:78:
e3:7b:a8:47:32:4a:85:c4:41:a8:0e:11:f3:28:74:
74:68:cb:1d:07:39:f9:87:b3:0e:56:bf:ad:ad:9e:
77:d2:78:cd:dc:d5:8a:db:94:73:e5:b5:b7:82:58:
19:35:c7:e2:e8:87:10:39:f8:e7:92:91:27:aa:c6:
a8:68:e8:b8:94:d5:35:33:77:5f:a5:09:85:b6:12:
f5:b7:34:88:f4:08:05:fc:1b:24:73:c0:c7:62:2b:
21:c5:a3:0e:89:13:43:17:59:1f:8c:90:da:5f:a3:
6a:93:7a:c5:28:64:9b:51:c2:dc:d4:2d:54:a9:e4:
e6:7f:6d:51:3a:d8:6b:07:e4:e1:fd:63:68:9f:d6:
42:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17480
131248
149003
sbgp-ipAddrBlock: critical
IPv4:
43.255.236.0/22
103.23.52.0/22
113.21.96.0/19
202.171.64.0/20
203.147.64.0-203.147.87.255
220.156.160.0/20
IPv6:
2401:c00::/32
Signature Algorithm: sha256WithRSAEncryption
16:3f:88:a3:61:50:6d:14:de:ba:a6:3e:25:96:0a:10:8c:8a:
8f:21:93:a5:92:86:67:0b:31:67:ad:e5:68:d8:99:56:8b:0d:
22:c1:3e:58:af:de:cd:c3:15:c8:81:eb:13:ad:ef:b7:b3:26:
0c:1e:58:c5:8d:9f:e7:95:63:da:97:28:02:2e:bc:0d:f7:9d:
06:2e:ef:2d:0b:ce:f3:7b:51:d9:c1:da:d2:ac:67:38:5f:09:
46:bd:98:0d:c6:76:aa:5e:3d:0c:b5:6d:7a:28:ef:ba:cc:60:
27:e7:08:7c:c3:09:46:83:1a:53:d6:58:c4:29:82:e2:7a:56:
c0:b0:d6:f8:62:05:4a:9e:c6:e6:e3:da:b8:68:ea:e9:0c:ce:
5d:50:6c:18:02:a2:ea:d8:61:64:15:10:04:d9:a4:30:4c:b3:
89:7d:21:9c:17:81:02:c0:19:b1:67:10:11:76:5b:6a:bc:d2:
13:7e:cd:8f:54:ac:92:ed:46:47:09:99:c3:a9:11:ba:7b:bc:
29:ae:25:a6:f2:76:ef:69:07:6e:c7:a0:96:7c:15:6d:d7:bb:
2d:a6:ba:f7:67:66:aa:80:95:53:c8:79:eb:cf:6a:d3:a3:5e:
ff:12:e1:6b:09:87:df:0c:83:57:79:55:cb:16:c9:64:87:ef:
3b:e4:ed:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 03:22:45 2024 by rpki-client on console-ams.rpki-client.org