Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wxYxlYXuLPJHtTUDcUZ9wmncnOU.cer
File: wxYxlYXuLPJHtTUDcUZ9wmncnOU.cer (raw, json)
Hash identifier: AnOo3warHN6ZCwnneajq9WcMO8uG3VOoBQaohNQtnlY=
Subject key identifier: C3:16:31:95:85:EE:2C:F2:47:B5:35:03:71:46:7D:C2:69:DC:9C:E5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F668
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91619BE/752991C61D8511E293861BDC08B02CD2/wxYxlYXuLPJHtTUDcUZ9wmncnOU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91619BE/752991C61D8511E293861BDC08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 02 Jun 2024 14:27:52 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 9927
AS: 58706
AS: 58709
AS: 58884
AS: 59235
IP: 45.64.120.0/22
IP: 58.97.160.0/19
IP: 103.21.12.0/22
IP: 202.57.32.0/19
IP: 2405:d400::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128616 (0x1f668)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 2 14:27:52 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91619BE/serialNumber=C316319585EE2CF247B5350371467DC269DC9CE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:1e:53:4e:f9:7b:7b:19:d4:73:7a:e6:2b:18:
4c:65:2b:6b:cb:9d:cb:67:b4:6e:d1:de:ff:13:ca:
eb:d7:7f:22:fa:b7:4b:b9:22:25:85:eb:70:2f:6e:
2f:a3:fe:be:69:19:7b:c7:ee:f5:5d:7c:2a:33:a6:
83:4b:16:ef:ad:49:e9:cd:9c:b7:ba:5d:ee:d1:72:
35:33:18:54:f1:56:94:d0:fb:58:5e:18:0d:be:2f:
6f:d0:9f:84:6c:e1:bd:8d:9e:76:f5:ee:8c:10:51:
35:6e:33:06:e1:fa:61:c2:98:a4:44:d2:51:a7:75:
6d:aa:71:14:a9:10:27:b5:67:14:40:04:d3:62:18:
82:bb:3c:50:b7:0c:24:23:2a:b9:f9:ed:50:df:37:
9f:fc:06:29:b1:74:7e:7e:3e:90:bb:0a:ce:e8:83:
18:02:b5:b6:e2:31:59:d8:9c:fc:ec:c0:f6:bc:d3:
ad:ba:3d:56:28:e2:09:05:25:fa:10:e6:64:97:df:
f3:55:bb:ec:8d:75:e1:15:a1:fb:e8:03:c7:1d:10:
76:96:1d:cb:b5:f0:af:68:aa:2a:8e:a4:69:72:fb:
44:a8:17:96:93:be:75:e5:76:64:ac:f7:fd:df:8b:
a6:c1:43:31:f4:6c:06:b3:3e:68:54:43:ed:e0:69:
2a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:16:31:95:85:EE:2C:F2:47:B5:35:03:71:46:7D:C2:69:DC:9C:E5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91619BE/752991C61D8511E293861BDC08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91619BE/752991C61D8511E293861BDC08B02CD2/wxYxlYXuLPJHtTUDcUZ9wmncnOU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9927
58706
58709
58884
59235
sbgp-ipAddrBlock: critical
IPv4:
45.64.120.0/22
58.97.160.0/19
103.21.12.0/22
202.57.32.0/19
IPv6:
2405:d400::/32
Signature Algorithm: sha256WithRSAEncryption
b7:62:bc:9e:65:ab:1e:cf:33:9d:c5:0e:4f:6f:a8:46:4a:72:
92:69:b8:63:68:f0:44:85:01:00:17:34:9e:af:57:51:94:37:
de:45:d4:f8:b7:32:80:06:9d:b3:62:d1:4c:e6:0c:f3:de:fd:
dd:5d:e6:5b:90:85:4d:31:4b:2c:07:96:13:c1:94:51:5c:5b:
ff:ac:57:86:1b:18:7c:1e:4d:97:6f:0e:e0:66:29:a8:18:fd:
d2:95:3d:e3:96:dd:4c:93:9b:f0:03:4c:f4:24:30:0b:87:d0:
97:49:3c:cc:04:01:3d:5b:57:d0:0a:c1:0c:8a:64:7c:af:6d:
f6:ab:fd:9d:62:09:6f:4d:b7:4c:4a:23:8c:f6:79:33:82:2b:
d6:77:52:75:c1:c5:c7:af:f5:10:f7:d6:05:78:fd:3b:55:96:
53:28:f4:96:45:a0:4f:5f:55:ed:be:78:c8:dc:74:09:3f:18:
1a:a5:8b:ff:e0:1b:9b:3b:49:09:21:6a:23:93:42:63:cb:b1:
0d:f5:6b:2d:3e:aa:e5:bf:e5:68:d8:d5:19:11:ce:dd:68:b9:
11:b3:51:a3:f9:ae:e7:02:2e:14:e2:f9:66:61:14:41:ab:b5:
42:e7:7f:f3:99:03:c4:ee:e7:31:21:d8:f4:ea:06:20:e4:72:
53:50:23:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:56 2024 by rpki-client on console-fra.rpki-client.org