Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v49Do1Dk9qJgvwPtS9_BqB2itaE.cer
File: v49Do1Dk9qJgvwPtS9_BqB2itaE.cer (raw, json)
Hash identifier: lSVb4pplyqtK7/Hc7NuaN23Z/atuyonsQMC+YCMc86E=
Subject key identifier: BF:8F:43:A3:50:E4:F6:A2:60:BF:03:ED:4B:DF:C1:A8:1D:A2:B5:A1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C9DA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FAB62/82E93F2C98CF11EBB7572A3AC4F9AE02/v49Do1Dk9qJgvwPtS9_BqB2itaE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FAB62/82E93F2C98CF11EBB7572A3AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 08 Nov 2023 23:16:35 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 133012
IP: 45.113.164.0/22
IP: 103.74.248.0/22
IP: 2407:3880::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 30 Apr 2024 21:54:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117210 (0x1c9da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 8 23:16:35 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A91FAB62/serialNumber=BF8F43A350E4F6A260BF03ED4BDFC1A81DA2B5A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4a:de:26:23:58:21:3b:a2:31:97:b1:ca:6b:
56:a7:7a:fa:6a:cd:bb:9d:9c:ee:90:e6:91:e0:7a:
b7:c7:7b:24:7c:e1:26:e1:02:5e:9b:bc:db:7d:8d:
48:bd:67:d5:5d:83:1d:78:f8:4b:13:aa:b7:b4:70:
34:93:b5:96:76:7f:6f:68:19:8f:06:b0:99:32:40:
af:bb:17:02:4b:db:95:92:5c:26:a5:10:ba:01:71:
33:56:57:e1:6e:29:58:ef:16:46:6b:7a:26:21:cb:
6d:37:a7:48:d5:2b:03:8a:ea:19:e0:c2:e4:ec:6c:
84:f6:6e:e9:c4:45:60:8d:ea:cd:9a:c9:75:5d:1e:
c2:7c:55:94:c9:56:29:8a:ae:c3:72:cc:fa:4d:a5:
75:88:87:c5:5b:2f:d0:a6:0f:62:af:04:04:db:4f:
82:35:10:99:60:da:79:dc:75:f3:a9:15:84:ed:23:
53:d4:76:84:e4:3e:19:08:be:87:34:b6:f5:16:a8:
82:36:f0:ea:af:02:95:c2:ff:d5:2a:0f:5a:f6:76:
b5:7c:41:12:42:91:5b:27:44:bb:38:25:14:af:0d:
b7:5f:12:ba:0b:e1:7e:7b:ef:f9:8b:5f:ca:c4:2c:
f9:6b:e5:76:2f:de:a2:d8:05:9b:65:e8:80:45:95:
92:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:8F:43:A3:50:E4:F6:A2:60:BF:03:ED:4B:DF:C1:A8:1D:A2:B5:A1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FAB62/82E93F2C98CF11EBB7572A3AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FAB62/82E93F2C98CF11EBB7572A3AC4F9AE02/v49Do1Dk9qJgvwPtS9_BqB2itaE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133012
sbgp-ipAddrBlock: critical
IPv4:
45.113.164.0/22
103.74.248.0/22
IPv6:
2407:3880::/32
Signature Algorithm: sha256WithRSAEncryption
29:f0:bd:aa:81:19:f6:a0:65:0b:96:2b:74:5b:aa:ba:2f:91:
6b:47:ea:be:f5:b9:7e:d0:85:fc:2d:c2:92:69:46:3f:e6:a2:
22:d5:ad:dc:32:a4:0a:a2:9e:0f:79:a5:cb:e8:d9:8e:e9:5e:
a6:46:4d:d1:b2:d7:77:31:7f:e0:00:43:82:87:63:75:8b:f7:
f2:9b:76:cc:cd:b7:dd:a9:69:4d:65:d8:9c:80:6e:86:0e:46:
ab:26:22:ff:ef:1d:59:1a:b6:03:1e:01:5c:68:f2:d7:bf:20:
16:09:db:7d:16:05:88:91:d1:11:a4:fd:be:dd:f4:83:9c:5f:
3b:d6:ec:5c:3e:85:c9:5b:71:90:4f:06:18:ab:d2:75:e5:42:
21:8b:73:f1:74:bd:9f:1b:db:b7:51:f3:1b:da:c1:86:1a:0f:
55:af:5e:3f:7f:b4:5f:31:77:64:59:73:22:f6:bd:8a:87:dd:
bb:eb:3a:b6:bd:6a:71:c0:2b:d3:bc:f0:f5:50:4f:74:c4:71:
bc:6a:f0:2e:0d:8e:25:73:6c:7c:51:ec:e8:fb:59:fc:04:ef:
0b:3c:95:0a:11:ae:f6:a8:e4:a6:5d:62:88:39:81:4f:3b:44:
8c:ec:77:a2:d1:60:5e:3b:c8:f1:24:a3:64:38:27:31:92:a1:
fe:eb:72:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 23 22:56:35 2024 by rpki-client on console-ams.rpki-client.org