Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer
File: vPr40z8YqNNgICnrzt4eNq8gcVw.cer (raw, json)
Hash identifier: Wne7+Z51XCUaAiCoO+cDMDXVMwGjcs3dO+8YwaiR4fw=
Subject key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D4A5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 28 Dec 2023 12:42:59 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 17565
AS: 38443 -- 38444
AS: 45430
AS: 45458
AS: 45781
AS: 131445
AS: 132681
AS: 133328
AS: 133481
AS: 133848
AS: 133910
AS: 134162
AS: 134240
AS: 136538
AS: 136995
AS: 140706
AS: 141692
AS: 141713
AS: 148984
AS: 149996
AS: 150124
AS: 150148
AS: 150686
AS: 151827
IP: 27.100.40.0/21
IP: 49.0.64.0/18
IP: 49.228.0.0/14
IP: 58.64.0.0/17
IP: 58.136.0.0/16
IP: 103.3.64.0/22
IP: 103.20.204.0/22
IP: 103.48.12.0/24
IP: 110.49.0.0/16
IP: 115.178.56.0/22
IP: 119.31.0.0/17
IP: 182.232.0.0/16
IP: 202.80.224.0/19
IP: 202.149.24.0/21
IP: 2001:df2:400::/48
IP: 2001:44c8::/32
IP: 2405:9800::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 17:23:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119973 (0x1d4a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 28 12:42:59 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:2c:cc:ff:ab:22:17:ba:87:50:ca:2d:4f:ae:
82:e9:2b:f7:59:57:fe:56:c9:49:c4:b8:d3:b9:2f:
2a:b5:43:6c:6b:25:0b:69:9a:06:21:cc:83:75:7d:
6b:7f:1b:89:17:3f:49:a4:5c:6c:75:ee:cf:9a:cf:
42:8c:6e:6e:4f:4b:79:f7:53:9f:47:96:ea:1b:69:
be:a0:86:61:7f:0c:a6:5a:fb:ba:0c:28:38:bf:4b:
21:88:dc:08:e4:77:da:7b:fa:2e:ec:a2:3f:4d:a8:
a8:ec:44:b9:ac:a5:ec:8d:e4:fe:79:e8:07:69:2e:
11:ae:2a:0b:f4:f9:39:a5:30:c8:52:52:ff:ea:67:
f9:f0:9a:ee:5d:e4:e8:1c:a0:64:f7:b4:ca:b4:c8:
2b:04:cd:a9:64:a6:fa:bf:f8:e8:64:71:e9:d8:0c:
80:65:c6:66:93:00:92:d9:33:1c:c3:8d:1b:40:12:
f9:de:06:89:86:4a:51:52:c5:f8:98:43:ed:df:03:
b9:5a:2a:ef:ba:d2:d0:cf:eb:78:f9:c6:6a:65:64:
91:24:f4:38:05:3f:a0:f4:e8:2b:ba:00:a2:97:a1:
f4:8f:b7:93:96:07:61:e6:66:2b:8d:35:bd:e5:8d:
56:8b:6e:97:70:17:7d:f6:9d:88:29:5c:aa:11:e5:
19:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17565
38443-38444
45430
45458
45781
131445
132681
133328
133481
133848
133910
134162
134240
136538
136995
140706
141692
141713
148984
149996
150124
150148
150686
151827
sbgp-ipAddrBlock: critical
IPv4:
27.100.40.0/21
49.0.64.0/18
49.228.0.0/14
58.64.0.0/17
58.136.0.0/16
103.3.64.0/22
103.20.204.0/22
103.48.12.0/24
110.49.0.0/16
115.178.56.0/22
119.31.0.0/17
182.232.0.0/16
202.80.224.0/19
202.149.24.0/21
IPv6:
2001:df2:400::/48
2001:44c8::/32
2405:9800::/32
Signature Algorithm: sha256WithRSAEncryption
02:1f:58:00:27:68:07:6c:96:d7:b4:ae:16:f4:98:f0:6d:42:
94:ab:fd:fe:bd:b3:6c:90:4e:ab:cf:b5:b1:e3:84:48:ba:4e:
ed:4a:f5:6d:75:9c:da:e6:df:ec:be:48:d2:84:f3:05:2e:13:
5f:ff:56:cc:05:50:f0:ed:1d:4b:cd:20:61:4e:6d:7a:63:9c:
8a:5b:f5:f2:cd:ce:a9:40:e0:ad:62:5d:75:cf:98:d6:c4:3c:
de:b8:88:7e:9f:26:24:07:b2:51:e4:f7:20:5c:a7:09:42:c4:
dd:61:2a:d1:0b:71:1e:56:1c:a4:d3:24:97:7c:a5:c7:06:3e:
af:05:ff:fd:01:ca:83:94:03:46:83:36:d1:0e:bf:05:f3:df:
cf:49:73:95:e2:28:91:f4:4d:c6:10:fa:43:da:3b:6f:20:6c:
d5:5f:96:de:e4:75:6c:4e:dc:0e:d3:b2:3a:b7:53:7c:07:ab:
7a:09:85:3e:63:4f:11:b3:e4:a6:f9:2f:ca:79:31:1e:58:80:
94:25:f9:0f:9c:6f:f1:e9:4c:97:40:cd:33:18:b5:95:5f:db:
a1:8e:50:9a:88:59:9c:e2:d3:44:de:f1:d2:30:e2:55:92:a0:
d5:c3:75:ce:55:58:6c:18:ae:96:ac:f7:32:1a:df:18:69:02:
1e:e0:2b:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 18:37:34 2024 by rpki-client on console-ams.rpki-client.org