Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer
File: wJBqGafeNJv6KzKzw-tMLRd2DOE.cer (raw, json)
Hash identifier: uW1Q2DbnLRLos4/OxrQjqySVC97TXGiHvxxpLPDTI0k=
Subject key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0178AE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft
caRepository: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/
Notify URL: https://rpki.rand.apnic.net/rrdp/notification.xml
Certificate not before: Tue 08 Nov 2022 14:44:10 +0000
Certificate not after: Mon 31 Mar 2031 00:00:00 +0000
Subordinate resources: AS: 9838
AS: 24021
AS: 38610
AS: 131072
AS: 131074
IP: 1.0.0.0/24
IP: 1.1.1.0/24
IP: 103.0.0.0/16
IP: 103.10.232.0/24
IP: 203.10.60.0/22
IP: 203.133.248.0/22
IP: 203.147.108.0/23
IP: 2401:2000::/31
IP: 2408:2000::/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 01:13:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96430 (0x178ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 8 14:44:10 2022 GMT
Not After : Mar 31 00:00:00 2031 GMT
Subject: CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a8:0d:68:03:96:79:f3:b9:3d:1a:1f:ae:db:
98:08:e3:22:41:ed:d3:be:7f:d7:16:e8:ff:fc:33:
e1:36:b8:56:90:60:28:d2:10:bb:0c:6a:a0:6d:e9:
a5:f2:6d:3b:e7:f7:0c:b3:eb:e4:fd:0d:19:02:25:
bc:ad:76:98:01:9c:5c:92:62:70:a2:b6:2b:7e:1a:
c6:90:35:2d:f9:94:b5:53:20:12:8b:de:23:7d:6c:
33:0c:ed:58:26:68:9e:7d:8c:b5:e9:7b:a4:98:2c:
48:03:d4:23:6e:e5:99:fa:33:2f:b0:de:34:32:b5:
94:b8:61:25:18:e0:dd:08:11:70:ff:dd:d1:86:20:
b3:6c:b3:9a:ce:23:42:18:32:37:af:bc:fd:69:a6:
30:7e:21:99:c7:3d:48:95:b7:4e:a9:e6:83:20:52:
2a:d8:16:8d:26:31:ec:d1:25:33:18:c4:33:74:62:
6d:1d:1c:a4:9b:04:05:d8:ab:a9:ae:1a:f8:23:e7:
03:1f:25:57:e5:8f:a0:ed:31:98:4e:1a:b7:f2:0d:
62:d2:74:3c:1f:d0:b9:9f:a1:dd:43:62:a0:bf:bd:
85:b0:db:4d:d1:79:81:a8:34:81:3c:7c:74:4b:f6:
13:63:4a:a0:5c:1c:b7:42:3a:ac:42:06:3e:a3:06:
ef:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0
RPKI Manifest - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.mft
RPKI Notify - URI:https://rpki.rand.apnic.net/rrdp/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9838
24021
38610
131072
131074
sbgp-ipAddrBlock: critical
IPv4:
1.0.0.0/24
1.1.1.0/24
103.0.0.0/16
103.10.232.0/24
203.10.60.0/22
203.133.248.0/22
203.147.108.0/23
IPv6:
2401:2000::/31
2408:2000::/24
Signature Algorithm: sha256WithRSAEncryption
25:b6:70:72:ac:c5:be:56:4a:b7:c8:ab:12:1a:05:db:26:5e:
0f:4a:c1:57:40:bd:29:84:7e:87:63:af:19:cd:af:39:6f:07:
49:5f:78:24:2e:8e:0d:ba:94:b1:33:ec:41:2f:da:11:71:6d:
a7:08:61:ad:60:1c:3a:e7:08:4e:8d:48:1a:b6:c8:33:b8:4c:
e1:98:1f:80:c1:86:14:65:92:63:65:c2:fc:a8:26:44:2d:e3:
1d:bb:e5:ed:03:85:3d:5f:b9:86:c8:31:a8:aa:24:0d:e6:34:
b7:71:18:00:37:50:15:fc:ae:fa:b2:a9:64:87:95:8d:15:e7:
81:ef:34:d4:e0:ff:ec:44:73:c1:d5:27:d4:0e:e6:b0:54:ae:
3a:4e:6a:ae:94:17:ed:08:8a:df:02:7c:58:ef:e9:15:2e:74:
aa:d8:23:11:49:ff:ff:8f:73:7f:0f:12:c3:d7:d1:ef:bd:78:
d7:8e:fd:ff:20:e3:a5:14:31:d4:65:55:74:f9:9a:4f:83:f2:
51:a1:f3:35:fe:86:85:21:3c:39:b4:76:2f:1e:87:d0:2d:d9:
f3:90:9b:12:63:c9:a4:4b:7e:2a:3e:29:26:26:e8:8e:30:29:
8a:9d:b9:04:ac:aa:ad:79:df:ef:60:df:ad:25:26:ce:52:37:
56:42:f7:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 02:05:39 2024 by rpki-client on console-ams.rpki-client.org