Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer
File: vPr40z8YqNNgICnrzt4eNq8gcVw.cer (raw, json)
Hash identifier: gZicgzFsopy/9RqicGGNdkHcSgly/jqbow8nt1FITKA=
Subject key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020116
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 18 Jul 2024 04:23:42 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 17565
AS: 38443 -- 38444
AS: 45430
AS: 45458
AS: 45781
AS: 131445
AS: 132681
AS: 133328
AS: 133481
AS: 133848
AS: 133910
AS: 134162
AS: 134240
AS: 136538
AS: 136995
AS: 140706
AS: 141692
AS: 141713
AS: 148984
AS: 149996
AS: 150124
AS: 150148
AS: 150686
AS: 151827
IP: 27.100.40.0/21
IP: 27.254.1.0/24
IP: 27.254.8.0/24
IP: 27.254.14.0/24
IP: 27.254.31.0/24
IP: 27.254.185.0 -- 27.254.186.255
IP: 27.254.229.0/24
IP: 27.254.231.0/24
IP: 27.254.233.0/24
IP: 49.0.64.0/18
IP: 49.228.0.0/14
IP: 58.64.0.0/17
IP: 58.136.0.0/16
IP: 58.137.86.0/23
IP: 58.137.109.0/24
IP: 58.137.116.0/24
IP: 58.137.120.0/24
IP: 58.137.133.0/24
IP: 58.137.147.0/24
IP: 58.137.156.0/24
IP: 58.137.179.0/24
IP: 58.137.185.0/24
IP: 58.137.200.0/23
IP: 58.137.205.0 -- 58.137.207.255
IP: 103.3.64.0/22
IP: 103.20.204.0/22
IP: 103.48.12.0/24
IP: 103.93.166.0/24
IP: 110.49.0.0/16
IP: 115.178.56.0/22
IP: 119.31.0.0/17
IP: 182.232.0.0/16
IP: 202.80.224.0/19
IP: 202.149.24.0/21
IP: 202.183.156.0/22
IP: 202.183.188.0/24
IP: 202.183.209.0 -- 202.183.210.255
IP: 202.183.236.0/23
IP: 202.183.239.0/24
IP: 203.146.17.0/24
IP: 203.146.24.0/24
IP: 203.146.29.0/24
IP: 203.146.45.0 -- 203.146.47.255
IP: 203.146.52.0/24
IP: 203.146.75.0/24
IP: 203.146.80.0/24
IP: 203.146.99.0/24
IP: 203.146.109.0/24
IP: 203.146.118.0/23
IP: 203.146.135.0/24
IP: 203.146.137.0/24
IP: 203.146.158.0/24
IP: 203.146.174.0/24
IP: 203.146.182.0/24
IP: 203.146.185.0/24
IP: 203.146.199.0/24
IP: 203.146.207.0/24
IP: 203.146.210.0/23
IP: 203.146.227.0/24
IP: 203.146.243.0/24
IP: 203.170.131.0 -- 203.170.135.255
IP: 203.170.137.0/24
IP: 203.170.139.0 -- 203.170.140.255
IP: 203.170.142.0/24
IP: 203.170.144.0/24
IP: 203.170.148.0/22
IP: 203.170.155.0/24
IP: 203.170.168.0/24
IP: 203.170.171.0/24
IP: 203.170.179.0 -- 203.170.183.255
IP: 203.170.191.0/24
IP: 203.170.194.0/24
IP: 203.170.199.0/24
IP: 203.170.210.0/24
IP: 203.170.214.0/24
IP: 203.170.225.0/24
IP: 203.170.232.0/24
IP: 203.170.235.0/24
IP: 203.170.237.0 -- 203.170.238.255
IP: 203.170.245.0/24
IP: 203.170.253.0/24
IP: 203.172.44.0/24
IP: 203.172.68.0/24
IP: 203.172.92.0/24
IP: 203.172.94.0/24
IP: 203.172.108.0/24
IP: 203.172.111.0 -- 203.172.113.255
IP: 203.172.117.0/24
IP: 210.1.1.0/24
IP: 210.1.16.0/24
IP: 210.1.20.0/24
IP: 210.1.36.0/24
IP: 210.1.45.0 -- 210.1.46.255
IP: 210.1.49.0/24
IP: 2001:df2:400::/48
IP: 2001:44c8::/32
IP: 2405:9800::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 05:23:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131350 (0x20116)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 18 04:23:42 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:2c:cc:ff:ab:22:17:ba:87:50:ca:2d:4f:ae:
82:e9:2b:f7:59:57:fe:56:c9:49:c4:b8:d3:b9:2f:
2a:b5:43:6c:6b:25:0b:69:9a:06:21:cc:83:75:7d:
6b:7f:1b:89:17:3f:49:a4:5c:6c:75:ee:cf:9a:cf:
42:8c:6e:6e:4f:4b:79:f7:53:9f:47:96:ea:1b:69:
be:a0:86:61:7f:0c:a6:5a:fb:ba:0c:28:38:bf:4b:
21:88:dc:08:e4:77:da:7b:fa:2e:ec:a2:3f:4d:a8:
a8:ec:44:b9:ac:a5:ec:8d:e4:fe:79:e8:07:69:2e:
11:ae:2a:0b:f4:f9:39:a5:30:c8:52:52:ff:ea:67:
f9:f0:9a:ee:5d:e4:e8:1c:a0:64:f7:b4:ca:b4:c8:
2b:04:cd:a9:64:a6:fa:bf:f8:e8:64:71:e9:d8:0c:
80:65:c6:66:93:00:92:d9:33:1c:c3:8d:1b:40:12:
f9:de:06:89:86:4a:51:52:c5:f8:98:43:ed:df:03:
b9:5a:2a:ef:ba:d2:d0:cf:eb:78:f9:c6:6a:65:64:
91:24:f4:38:05:3f:a0:f4:e8:2b:ba:00:a2:97:a1:
f4:8f:b7:93:96:07:61:e6:66:2b:8d:35:bd:e5:8d:
56:8b:6e:97:70:17:7d:f6:9d:88:29:5c:aa:11:e5:
19:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17565
38443-38444
45430
45458
45781
131445
132681
133328
133481
133848
133910
134162
134240
136538
136995
140706
141692
141713
148984
149996
150124
150148
150686
151827
sbgp-ipAddrBlock: critical
IPv4:
27.100.40.0/21
27.254.1.0/24
27.254.8.0/24
27.254.14.0/24
27.254.31.0/24
27.254.185.0-27.254.186.255
27.254.229.0/24
27.254.231.0/24
27.254.233.0/24
49.0.64.0/18
49.228.0.0/14
58.64.0.0/17
58.136.0.0/16
58.137.86.0/23
58.137.109.0/24
58.137.116.0/24
58.137.120.0/24
58.137.133.0/24
58.137.147.0/24
58.137.156.0/24
58.137.179.0/24
58.137.185.0/24
58.137.200.0/23
58.137.205.0-58.137.207.255
103.3.64.0/22
103.20.204.0/22
103.48.12.0/24
103.93.166.0/24
110.49.0.0/16
115.178.56.0/22
119.31.0.0/17
182.232.0.0/16
202.80.224.0/19
202.149.24.0/21
202.183.156.0/22
202.183.188.0/24
202.183.209.0-202.183.210.255
202.183.236.0/23
202.183.239.0/24
203.146.17.0/24
203.146.24.0/24
203.146.29.0/24
203.146.45.0-203.146.47.255
203.146.52.0/24
203.146.75.0/24
203.146.80.0/24
203.146.99.0/24
203.146.109.0/24
203.146.118.0/23
203.146.135.0/24
203.146.137.0/24
203.146.158.0/24
203.146.174.0/24
203.146.182.0/24
203.146.185.0/24
203.146.199.0/24
203.146.207.0/24
203.146.210.0/23
203.146.227.0/24
203.146.243.0/24
203.170.131.0-203.170.135.255
203.170.137.0/24
203.170.139.0-203.170.140.255
203.170.142.0/24
203.170.144.0/24
203.170.148.0/22
203.170.155.0/24
203.170.168.0/24
203.170.171.0/24
203.170.179.0-203.170.183.255
203.170.191.0/24
203.170.194.0/24
203.170.199.0/24
203.170.210.0/24
203.170.214.0/24
203.170.225.0/24
203.170.232.0/24
203.170.235.0/24
203.170.237.0-203.170.238.255
203.170.245.0/24
203.170.253.0/24
203.172.44.0/24
203.172.68.0/24
203.172.92.0/24
203.172.94.0/24
203.172.108.0/24
203.172.111.0-203.172.113.255
203.172.117.0/24
210.1.1.0/24
210.1.16.0/24
210.1.20.0/24
210.1.36.0/24
210.1.45.0-210.1.46.255
210.1.49.0/24
IPv6:
2001:df2:400::/48
2001:44c8::/32
2405:9800::/32
Signature Algorithm: sha256WithRSAEncryption
04:fa:1e:fb:09:54:3f:f5:7f:c4:37:38:4c:07:da:53:9f:b4:
cd:ef:d7:15:14:65:20:7b:76:f2:50:bd:c2:e8:8e:05:e3:70:
cf:70:4a:ba:c1:9e:26:ba:d7:14:28:c1:07:7b:15:a4:6b:7f:
c2:d1:30:cd:ce:b4:e2:67:0c:e3:d1:0f:3d:27:9d:fc:5e:eb:
03:e1:e6:ad:17:f5:5b:aa:62:44:23:ad:91:de:76:d8:92:fa:
68:a8:5f:ae:0f:79:7f:2e:4d:e7:2e:6b:0f:79:d5:2c:59:57:
ae:08:d6:89:0d:f2:59:96:14:0c:ec:46:6f:9e:87:bf:b0:e9:
a8:e0:63:0b:a1:47:8b:5f:a2:b2:23:fe:d3:7b:89:a4:86:b3:
4f:ff:5e:bc:d8:17:56:c5:8f:49:bc:d4:12:d4:1d:2a:b6:97:
85:52:5c:34:9d:9e:5b:64:d8:7e:e8:c2:09:50:75:fe:13:b0:
75:cd:04:11:62:13:25:bb:0d:d7:fe:07:20:e3:41:56:b4:91:
06:6d:8f:73:e7:d0:63:c3:f6:3b:9f:c2:79:72:c4:39:63:ee:
7a:62:15:96:bf:b7:69:f9:20:c2:22:da:d1:d3:b9:fd:bd:87:
af:08:ca:c9:68:a6:f7:fb:90:f6:b2:63:68:36:b0:c4:b6:c7:
c5:97:9f:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 06:37:28 2024 by rpki-client on console-ams.rpki-client.org