Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wxmve7T5gWEa0Awy-KNX3mNT3DY.cer
File: wxmve7T5gWEa0Awy-KNX3mNT3DY.cer (raw, json)
Hash identifier: M4YN5WBVe6eDIyNLUOrCCzxSFG9ROzd7kuAdXXL05zc=
Subject key identifier: C3:19:AF:7B:B4:F9:81:61:1A:D0:0C:32:F8:A3:57:DE:63:53:DC:36
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D992
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C1DB8/16CBC054A11E11E89E636710C4F9AE02/wxmve7T5gWEa0Awy-KNX3mNT3DY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C1DB8/16CBC054A11E11E89E636710C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 19 Jan 2024 20:08:39 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 10204
AS: 139075
IP: 103.229.32.0/22
IP: 203.115.192.0/18
IP: 2001:c18::/32
IP: 2001:dea:c000::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 21:46:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121234 (0x1d992)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 19 20:08:39 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91C1DB8/serialNumber=C319AF7BB4F981611AD00C32F8A357DE6353DC36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:ae:e8:ea:b8:7b:1a:72:26:34:5f:7f:94:1b:
29:96:32:14:0e:02:fc:c9:57:38:8a:d9:c2:c3:f9:
f9:95:71:ee:87:5c:1a:ca:00:31:e2:06:21:22:81:
30:fa:12:94:f0:e6:ca:15:d6:4b:43:fa:6c:16:4b:
2b:3f:35:46:19:f7:76:2d:c1:0c:b6:28:97:11:cf:
ba:ce:07:e2:be:5f:d7:f5:be:44:02:6f:dd:41:9e:
71:fa:d8:e3:fb:c0:66:cb:13:56:4c:2a:6b:2c:bd:
27:fe:f2:9f:32:ca:ab:e4:c9:8c:b1:96:93:52:ff:
70:27:48:64:6b:17:22:70:54:ef:64:f5:ec:c5:22:
08:c1:09:53:2e:82:5e:5d:5a:7a:99:c3:a8:0a:94:
a7:ad:36:80:6b:9b:93:3c:fe:9e:96:5b:0f:43:13:
ce:c7:63:0e:b9:6f:da:2c:d8:b9:cd:3d:93:fd:ee:
30:5a:73:29:52:80:3a:92:ed:30:20:ed:61:f3:11:
25:35:00:31:6e:5a:3c:5f:6d:58:d6:2f:a6:98:12:
46:42:76:09:8d:89:8f:e5:34:f7:80:f9:c7:ac:9e:
f7:6b:a2:99:19:c0:c7:50:80:1a:e9:c2:48:0b:2d:
2f:41:e8:c4:21:60:1b:28:46:9e:12:7e:d4:1d:04:
59:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:19:AF:7B:B4:F9:81:61:1A:D0:0C:32:F8:A3:57:DE:63:53:DC:36
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/16CBC054A11E11E89E636710C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C1DB8/16CBC054A11E11E89E636710C4F9AE02/wxmve7T5gWEa0Awy-KNX3mNT3DY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
10204
139075
sbgp-ipAddrBlock: critical
IPv4:
103.229.32.0/22
203.115.192.0/18
IPv6:
2001:c18::/32
2001:dea:c000::/48
Signature Algorithm: sha256WithRSAEncryption
91:52:9e:b8:c4:34:3f:24:01:e1:bd:02:b6:b7:64:ea:3f:81:
a7:48:ed:3d:50:30:fb:e1:99:4f:7a:e2:c9:a3:b3:a3:3c:2a:
7a:78:1b:27:fd:26:8e:97:34:8c:cc:a4:5f:47:dc:71:a5:e7:
82:25:42:66:17:93:c9:62:bd:79:5e:ea:61:0f:a6:25:44:57:
1a:02:24:17:38:b0:da:14:5e:6b:8f:c5:ef:ab:96:85:f0:b8:
8c:f7:4d:d2:0b:03:c6:18:b4:02:70:36:fe:86:82:7d:f8:73:
8d:ee:68:f3:0e:58:0e:06:e5:b8:12:16:c1:6e:61:91:2d:18:
d7:77:9f:21:7e:e8:a7:1b:74:ad:a5:0f:56:86:3d:d8:e1:bc:
c2:61:f8:d9:09:4c:f9:62:3a:0b:04:0b:37:5f:50:23:f0:13:
ac:37:75:88:7c:8b:5d:62:35:ef:f4:24:52:a5:66:a1:4e:d6:
54:97:6c:71:4e:6c:ac:b3:c0:4f:6e:a4:c3:c3:54:b1:f7:70:
37:17:2f:08:75:23:78:a5:f2:f7:49:0f:c4:da:57:4e:d8:ac:
c1:73:7c:3d:c0:41:46:79:4b:17:f7:55:0e:3c:f2:5a:0f:2d:
0b:d5:59:73:d0:b5:50:b1:45:c6:25:f8:03:11:71:68:53:dd:
42:97:23:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 22:30:43 2024 by rpki-client on console-fra.rpki-client.org