Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYtxSbsguOOtsIo8wMNGLYkwVI.cer
File: zFYtxSbsguOOtsIo8wMNGLYkwVI.cer (raw, json)
Hash identifier: hbM5N1/te3JFAPhVJJfK6NUrA2HJz9aQefxuHB+3wD8=
Subject key identifier: CC:56:2D:C5:26:EC:82:E3:8E:B6:C2:28:F3:03:0D:18:B6:24:C1:52
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F4A9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917D048/D70811903E1111E7882A2B2EC4F9AE02/zFYtxSbsguOOtsIo8wMNGLYkwVI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917D048/D70811903E1111E7882A2B2EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 30 May 2024 02:01:13 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 24432
AS: 38069
AS: 56138
IP: 36.255.80.0/22
IP: 42.0.4.0/22
IP: 58.145.184.0/21
IP: 103.25.248.0/22
IP: 103.31.152.0/22
IP: 103.73.46.0/23
IP: 103.87.250.0/23
IP: 103.132.178.0/23
IP: 103.242.20.0/22
IP: 202.134.8.0/21
IP: 202.181.18.0/23
IP: 203.13.162.0/23
IP: 2404:1c40::/32
IP: 2406:2500::/32
IP: 2407:b100::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128169 (0x1f4a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 30 02:01:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A917D048/serialNumber=CC562DC526EC82E38EB6C228F3030D18B624C152
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:55:5f:49:ef:14:31:4a:ab:11:74:93:3e:f7:
89:c6:75:7e:5b:40:61:c1:7c:f5:b9:48:11:cf:13:
6d:71:c3:a2:7c:7b:34:e5:e0:4c:4c:fb:57:df:8e:
e1:58:6a:2b:a0:96:66:36:7c:73:89:89:1e:0d:4c:
ee:82:82:f7:ca:44:11:ca:08:73:ad:63:f3:0b:56:
2e:02:b0:19:79:ef:06:01:4a:e9:ce:97:e0:4a:eb:
4d:bc:74:0a:80:f1:3a:44:6f:e1:81:84:03:27:fe:
ea:46:94:97:c6:d8:dd:aa:ee:ff:42:9c:7f:f2:ed:
de:a0:4c:f7:fc:24:43:d3:56:51:6c:a3:9d:ce:d4:
9b:39:44:a4:46:48:ab:5d:e5:4c:13:86:bc:e4:64:
79:12:a7:22:50:3e:c1:2f:4d:f5:6b:60:b5:ce:78:
17:42:48:83:cb:b5:f1:c1:35:ea:db:ec:e8:d7:ab:
06:b5:81:39:6e:8e:d9:e3:ed:f5:61:a0:33:61:a7:
6f:51:c4:9f:c2:7c:77:c9:fc:ff:dd:14:aa:fa:8d:
91:a5:70:f5:e3:dd:0b:68:40:f9:c2:29:eb:03:2d:
2c:ea:b4:cc:27:c8:d5:ea:5b:77:90:b3:f4:77:87:
ed:6f:57:16:7e:b8:df:26:3f:a7:1b:07:83:27:af:
5a:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:56:2D:C5:26:EC:82:E3:8E:B6:C2:28:F3:03:0D:18:B6:24:C1:52
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917D048/D70811903E1111E7882A2B2EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917D048/D70811903E1111E7882A2B2EC4F9AE02/zFYtxSbsguOOtsIo8wMNGLYkwVI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24432
38069
56138
sbgp-ipAddrBlock: critical
IPv4:
36.255.80.0/22
42.0.4.0/22
58.145.184.0/21
103.25.248.0/22
103.31.152.0/22
103.73.46.0/23
103.87.250.0/23
103.132.178.0/23
103.242.20.0/22
202.134.8.0/21
202.181.18.0/23
203.13.162.0/23
IPv6:
2404:1c40::/32
2406:2500::/32
2407:b100::/32
Signature Algorithm: sha256WithRSAEncryption
7b:3f:a6:16:72:7b:65:96:4c:26:14:7f:64:0d:39:73:f1:6d:
e6:1c:2d:04:27:93:f5:33:88:65:a1:17:1c:93:bc:ba:d3:b3:
92:9f:c1:37:27:07:38:c8:76:74:6f:63:c8:de:18:73:ec:c3:
37:dd:9c:c4:00:b3:a1:27:79:fd:e1:e4:97:fc:83:9d:43:65:
bd:35:b9:5d:af:e1:4f:da:1e:b2:b9:ac:4b:07:17:c1:df:93:
b7:65:a7:96:a8:ae:17:69:07:40:ac:dd:aa:a8:0f:48:ff:86:
3f:d5:2c:c1:94:b4:72:8f:ba:c8:41:d8:65:c6:15:38:31:6f:
52:34:e4:c3:68:bf:e5:80:c7:f9:fd:06:42:f2:1d:ca:e8:d8:
d2:3c:40:24:f6:80:32:a6:4a:c4:44:f2:29:07:3c:7f:8c:06:
a2:2d:85:29:e5:af:15:20:41:76:4d:c5:6a:e0:08:7f:1f:c3:
07:26:1a:74:61:8d:a1:e3:6e:01:45:76:20:c1:ee:55:3e:64:
0f:2f:2e:8a:09:9c:d8:4e:aa:bc:3e:c5:d2:d2:09:51:3e:ac:
09:3b:17:99:d8:1f:7b:83:45:9e:12:d1:f4:3d:c9:28:7a:87:
44:59:3d:87:37:77:e7:a1:aa:85:ff:90:cc:c7:ab:d5:35:93:
98:72:5f:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:58 2024 by rpki-client on console-fra.rpki-client.org