Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v49Do1Dk9qJgvwPtS9_BqB2itaE.cer
File: v49Do1Dk9qJgvwPtS9_BqB2itaE.cer (raw, json)
Hash identifier: jcs12k30QzCmcH4bezYjH1gRB6+l6ztVhdWTDk9LILQ=
Subject key identifier: BF:8F:43:A3:50:E4:F6:A2:60:BF:03:ED:4B:DF:C1:A8:1D:A2:B5:A1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0218C1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FAB62/82E93F2C98CF11EBB7572A3AC4F9AE02/v49Do1Dk9qJgvwPtS9_BqB2itaE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FAB62/82E93F2C98CF11EBB7572A3AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 02 Nov 2024 17:46:34 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 133012
IP: 45.113.164.0/22
IP: 103.74.248.0/22
IP: 2407:3880::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 12:46:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137409 (0x218c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 2 17:46:34 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91FAB62/serialNumber=BF8F43A350E4F6A260BF03ED4BDFC1A81DA2B5A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4a:de:26:23:58:21:3b:a2:31:97:b1:ca:6b:
56:a7:7a:fa:6a:cd:bb:9d:9c:ee:90:e6:91:e0:7a:
b7:c7:7b:24:7c:e1:26:e1:02:5e:9b:bc:db:7d:8d:
48:bd:67:d5:5d:83:1d:78:f8:4b:13:aa:b7:b4:70:
34:93:b5:96:76:7f:6f:68:19:8f:06:b0:99:32:40:
af:bb:17:02:4b:db:95:92:5c:26:a5:10:ba:01:71:
33:56:57:e1:6e:29:58:ef:16:46:6b:7a:26:21:cb:
6d:37:a7:48:d5:2b:03:8a:ea:19:e0:c2:e4:ec:6c:
84:f6:6e:e9:c4:45:60:8d:ea:cd:9a:c9:75:5d:1e:
c2:7c:55:94:c9:56:29:8a:ae:c3:72:cc:fa:4d:a5:
75:88:87:c5:5b:2f:d0:a6:0f:62:af:04:04:db:4f:
82:35:10:99:60:da:79:dc:75:f3:a9:15:84:ed:23:
53:d4:76:84:e4:3e:19:08:be:87:34:b6:f5:16:a8:
82:36:f0:ea:af:02:95:c2:ff:d5:2a:0f:5a:f6:76:
b5:7c:41:12:42:91:5b:27:44:bb:38:25:14:af:0d:
b7:5f:12:ba:0b:e1:7e:7b:ef:f9:8b:5f:ca:c4:2c:
f9:6b:e5:76:2f:de:a2:d8:05:9b:65:e8:80:45:95:
92:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:8F:43:A3:50:E4:F6:A2:60:BF:03:ED:4B:DF:C1:A8:1D:A2:B5:A1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FAB62/82E93F2C98CF11EBB7572A3AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FAB62/82E93F2C98CF11EBB7572A3AC4F9AE02/v49Do1Dk9qJgvwPtS9_BqB2itaE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133012
sbgp-ipAddrBlock: critical
IPv4:
45.113.164.0/22
103.74.248.0/22
IPv6:
2407:3880::/32
Signature Algorithm: sha256WithRSAEncryption
84:ea:4f:e2:85:13:c0:71:2b:05:85:f0:90:e7:1a:f6:ea:e0:
a5:94:79:67:bb:d3:29:22:8d:5e:cb:b8:7e:56:ea:17:7b:6b:
b4:e5:7d:bb:91:ff:21:3c:aa:40:9e:de:72:28:be:d8:77:1e:
f2:b1:89:e7:53:d7:24:14:3e:7d:f2:9c:19:35:8a:3a:93:19:
fe:c8:43:46:7c:3a:74:b2:75:53:2e:b4:98:12:68:40:23:75:
13:6a:6a:70:98:29:76:c7:28:17:2c:bc:18:72:2f:eb:b5:0f:
1b:af:3a:d4:2e:d0:5f:88:f2:15:22:bb:58:f9:05:e1:82:fa:
08:33:d6:7a:fa:fb:ac:42:03:35:08:c7:c7:37:be:ef:57:3c:
ff:e2:37:8c:26:84:4e:0b:81:26:16:48:76:2a:7c:e5:d6:75:
b0:70:01:1d:34:33:7b:f5:fb:cf:00:7d:6d:26:d9:58:b0:f0:
36:96:51:04:ac:c0:ee:76:8d:09:5b:78:b8:46:0a:9d:d0:66:
a9:23:6e:4d:a3:fa:9e:22:47:3c:16:68:10:02:ea:9b:95:8b:
61:92:01:69:d4:2e:53:7b:a6:cb:c6:0d:de:6a:29:22:93:39:
08:fa:50:82:87:e0:05:e4:e8:cd:d5:5b:2a:9c:87:63:60:22:
5b:bc:6b:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 13:36:14 2024 by rpki-client on console-fra.rpki-client.org