Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2yF51LVad_PHekEycvnHkg-9fI.cer
File: y2yF51LVad_PHekEycvnHkg-9fI.cer (raw, json)
Hash identifier: 9RTJEyeS5cwmxKIidVoqo0ViguJ+zcNVm64Tm0bO3H0=
Subject key identifier: CB:6C:85:E7:52:D5:69:DF:CF:1D:E9:04:C9:CB:E7:1E:48:3E:F5:F2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D0FC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 11 Dec 2023 01:32:51 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 133120
IP: 103.40.109.0/24
IP: 103.80.20.0/23
IP: 103.243.110.0/24
IP: 182.161.64.0/23
IP: 203.31.65.0/24
IP: 203.55.90.0/23
IP: 2407:d080::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119036 (0x1d0fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 11 01:32:51 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91BC039/serialNumber=CB6C85E752D569DFCF1DE904C9CBE71E483EF5F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f9:9d:8e:2d:65:bf:5b:db:55:e8:83:68:af:
6c:15:08:75:ad:22:25:4b:35:d8:ff:fb:44:00:89:
35:2a:66:6e:70:5b:b6:2c:bc:d6:9f:e9:f0:bf:24:
4b:67:ed:52:cb:f2:28:46:42:5e:ae:71:35:b3:9f:
22:4c:1d:78:15:36:a4:e7:5d:d0:a0:83:32:cd:84:
c7:b8:0f:5a:86:22:93:df:c8:83:04:d6:bd:d3:fe:
e7:ed:be:f2:70:a8:e5:56:57:7d:e2:6e:59:17:36:
77:34:ad:3f:33:cc:93:3f:b8:83:12:ff:e3:81:f4:
95:0f:a5:a4:07:79:35:dd:ed:fa:68:1d:54:0e:46:
c7:f7:27:2e:4e:d2:05:fe:1a:f0:16:89:75:4c:17:
df:a5:ca:f4:0b:59:c5:5c:ca:19:5f:7a:62:75:6c:
18:ec:5f:5a:77:9e:92:e7:10:a6:92:d8:f9:98:ee:
66:90:4e:28:0d:33:4d:33:2a:4c:a3:47:3a:f2:2c:
d9:04:3f:07:ad:58:17:6b:d1:76:98:64:59:f0:5c:
f7:df:e1:69:70:d9:19:dd:03:2c:b7:7c:e9:8a:44:
c2:b7:ba:8c:0e:4a:b3:30:0c:a4:07:ea:b5:59:46:
09:96:a7:13:04:6f:dd:ce:92:c1:22:c0:de:d6:9e:
7e:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:6C:85:E7:52:D5:69:DF:CF:1D:E9:04:C9:CB:E7:1E:48:3E:F5:F2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BC039/BB5323E825C211ECB499D158C4F9AE02/y2yF51LVad_PHekEycvnHkg-9fI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133120
sbgp-ipAddrBlock: critical
IPv4:
103.40.109.0/24
103.80.20.0/23
103.243.110.0/24
182.161.64.0/23
203.31.65.0/24
203.55.90.0/23
IPv6:
2407:d080::/32
Signature Algorithm: sha256WithRSAEncryption
64:81:ef:33:00:b6:35:2f:10:14:d2:38:03:91:2d:1b:5b:58:
da:90:b9:b9:17:73:26:c7:0e:e7:af:54:4f:b7:5e:7c:df:2a:
41:93:7e:7e:d1:66:80:3f:70:24:8d:b0:a4:9e:55:12:c9:58:
fd:17:8b:01:8c:06:49:e5:ef:95:28:2b:0e:fd:5e:3f:fb:be:
94:7c:f5:22:fd:14:9d:73:f4:04:31:8d:30:35:ec:f0:c7:f6:
86:71:2e:1e:cc:ef:a9:60:bf:e0:bb:d8:cb:e3:9b:37:77:52:
e4:51:ef:e3:e1:a6:6f:7d:c0:4c:1b:f6:dd:78:c4:e9:93:d7:
d9:77:df:aa:63:5c:60:58:4d:95:a9:a3:86:b0:d1:c4:d3:36:
32:77:62:15:37:8f:58:a0:0c:e6:fb:3c:bf:4a:6a:14:25:3e:
13:47:da:38:5b:f7:90:92:15:9e:dd:2d:2e:d6:cb:25:91:ac:
46:20:e2:35:31:26:20:4d:77:43:08:34:f0:9a:87:03:a5:e6:
0a:8b:cf:50:bd:7f:a9:c2:94:1c:d6:51:6e:8d:ec:17:0d:40:
b7:5d:a3:de:45:8a:20:54:f4:fa:ed:ec:0a:f0:b1:9f:d0:7e:
9d:93:2a:f6:f9:2d:8c:a4:18:d5:a7:c6:56:eb:2d:a8:fe:7a:
82:8e:6c:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:57 2024 by rpki-client on console-fra.rpki-client.org