Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wxYxlYXuLPJHtTUDcUZ9wmncnOU.cer
File: wxYxlYXuLPJHtTUDcUZ9wmncnOU.cer (raw, json)
Hash identifier: EZn96fuXoOuacp8/xFN8UFG7/0TYtYfNAfML4MhMzow=
Subject key identifier: C3:16:31:95:85:EE:2C:F2:47:B5:35:03:71:46:7D:C2:69:DC:9C:E5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A96F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91619BE/752991C61D8511E293861BDC08B02CD2/wxYxlYXuLPJHtTUDcUZ9wmncnOU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91619BE/752991C61D8511E293861BDC08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 12 Jun 2023 14:28:38 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 9927
AS: 58706
AS: 58709
AS: 58884
AS: 59235
IP: 45.64.120.0/22
IP: 58.97.160.0/19
IP: 103.21.12.0/22
IP: 202.57.32.0/19
IP: 2405:d400::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108911 (0x1a96f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 12 14:28:38 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A91619BE/serialNumber=C316319585EE2CF247B5350371467DC269DC9CE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:1e:53:4e:f9:7b:7b:19:d4:73:7a:e6:2b:18:
4c:65:2b:6b:cb:9d:cb:67:b4:6e:d1:de:ff:13:ca:
eb:d7:7f:22:fa:b7:4b:b9:22:25:85:eb:70:2f:6e:
2f:a3:fe:be:69:19:7b:c7:ee:f5:5d:7c:2a:33:a6:
83:4b:16:ef:ad:49:e9:cd:9c:b7:ba:5d:ee:d1:72:
35:33:18:54:f1:56:94:d0:fb:58:5e:18:0d:be:2f:
6f:d0:9f:84:6c:e1:bd:8d:9e:76:f5:ee:8c:10:51:
35:6e:33:06:e1:fa:61:c2:98:a4:44:d2:51:a7:75:
6d:aa:71:14:a9:10:27:b5:67:14:40:04:d3:62:18:
82:bb:3c:50:b7:0c:24:23:2a:b9:f9:ed:50:df:37:
9f:fc:06:29:b1:74:7e:7e:3e:90:bb:0a:ce:e8:83:
18:02:b5:b6:e2:31:59:d8:9c:fc:ec:c0:f6:bc:d3:
ad:ba:3d:56:28:e2:09:05:25:fa:10:e6:64:97:df:
f3:55:bb:ec:8d:75:e1:15:a1:fb:e8:03:c7:1d:10:
76:96:1d:cb:b5:f0:af:68:aa:2a:8e:a4:69:72:fb:
44:a8:17:96:93:be:75:e5:76:64:ac:f7:fd:df:8b:
a6:c1:43:31:f4:6c:06:b3:3e:68:54:43:ed:e0:69:
2a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:16:31:95:85:EE:2C:F2:47:B5:35:03:71:46:7D:C2:69:DC:9C:E5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91619BE/752991C61D8511E293861BDC08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91619BE/752991C61D8511E293861BDC08B02CD2/wxYxlYXuLPJHtTUDcUZ9wmncnOU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9927
58706
58709
58884
59235
sbgp-ipAddrBlock: critical
IPv4:
45.64.120.0/22
58.97.160.0/19
103.21.12.0/22
202.57.32.0/19
IPv6:
2405:d400::/32
Signature Algorithm: sha256WithRSAEncryption
9c:ce:b6:ad:d2:d4:b7:96:11:8e:11:47:70:61:cb:d8:0c:70:
e2:28:16:d2:47:1c:6f:6e:9f:da:7d:a9:3d:ed:78:91:c5:62:
16:a0:2c:fd:80:2c:9a:f8:73:ef:a2:99:c7:22:96:6a:a4:5c:
9d:85:50:fd:e6:b6:0a:53:be:a3:ea:1c:62:26:87:07:95:98:
b2:42:f8:ad:4b:6e:99:c3:ee:66:52:1c:83:b6:22:e0:30:17:
76:c8:ec:7c:4e:7f:17:10:7c:2e:45:06:5d:97:15:c9:be:fa:
79:01:66:81:3a:d9:8d:23:38:41:98:04:34:85:80:7b:03:80:
70:e9:b4:25:70:a8:1d:42:e1:a6:b6:35:03:1f:ec:03:8f:b8:
8c:58:04:93:f2:ff:31:5a:14:6d:db:19:b5:91:3d:25:4f:69:
a2:3d:1d:6c:d7:f4:f4:90:90:eb:eb:dc:0e:84:7f:c3:af:22:
4e:dd:88:a3:b9:79:8a:a4:bd:b3:c7:b7:13:ec:99:6a:bb:bf:
d5:59:cd:8c:8d:41:7d:ec:98:6d:00:a8:05:cd:5c:57:6f:07:
df:e3:ec:17:59:ba:45:7c:dd:c0:70:56:56:ac:1c:e6:ca:c4:
a8:67:5b:43:c2:d2:9a:15:01:d3:97:e5:d4:1f:c6:a3:f0:db:
5d:ee:8c:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 03:22:46 2024 by rpki-client on console-ams.rpki-client.org