Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFfgNkMaXqPBcqpyg0Aa88StXFk.cer
File: zFfgNkMaXqPBcqpyg0Aa88StXFk.cer (raw, json)
Hash identifier: By22WpPe47XmJ4G81HcYRHq2vzCaAOnwvrWmjOnLW1c=
Subject key identifier: CC:57:E0:36:43:1A:5E:A3:C1:72:AA:72:83:40:1A:F3:C4:AD:5C:59
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E8C0
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 02 Apr 2024 10:03:34 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 135126
IP: 43.252.112.0/22
IP: 103.210.24.0/22
IP: 180.233.124.0/22
IP: 2404:78c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125120 (0x1e8c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 2 10:03:34 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A91FDC78/serialNumber=CC57E036431A5EA3C172AA7283401AF3C4AD5C59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:33:13:72:1b:2f:72:5c:f9:fe:2a:0b:06:37:
70:74:27:2f:a9:aa:b9:ee:18:7e:33:2c:1a:d7:8d:
88:b8:25:1f:d1:e1:fa:47:74:39:01:41:11:bb:0f:
46:3c:3e:81:45:8c:65:76:28:7d:d9:12:94:47:74:
a1:c9:17:c1:9f:8a:cf:50:9c:1d:14:86:54:7d:b7:
6d:19:0b:b2:bf:0d:ca:09:a6:fa:96:1d:39:29:cd:
f5:c3:78:1d:62:68:6d:4a:27:83:24:5e:58:4d:88:
85:44:35:fe:71:c6:1d:23:43:ba:31:a4:64:3d:c8:
1b:b6:35:b8:8a:b6:d3:4b:80:25:48:86:b6:00:91:
72:23:8d:d9:fe:90:3d:9f:7d:fd:13:c9:0d:d9:5b:
ef:ea:41:87:36:64:84:f8:d8:39:59:35:aa:fa:56:
52:d3:b0:61:a6:a5:88:18:91:db:d8:53:33:7f:6d:
85:48:79:77:f0:3e:89:0f:7b:1f:09:d6:ac:7a:08:
81:98:e6:4e:35:00:2e:06:53:50:b8:2d:42:81:6f:
05:98:e4:ce:61:6b:f8:1a:89:b2:39:fb:b5:52:fd:
ea:13:4d:a6:b1:c9:d8:8b:b4:6b:e6:bf:04:00:7d:
19:34:9e:01:04:52:e4:c9:d1:3f:9b:ca:34:93:9f:
b4:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:57:E0:36:43:1A:5E:A3:C1:72:AA:72:83:40:1A:F3:C4:AD:5C:59
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135126
sbgp-ipAddrBlock: critical
IPv4:
43.252.112.0/22
103.210.24.0/22
180.233.124.0/22
IPv6:
2404:78c0::/32
Signature Algorithm: sha256WithRSAEncryption
c7:a3:35:2a:c1:93:9c:f3:ae:b1:dd:75:04:45:cf:28:ae:3d:
3f:92:1f:c1:96:06:5b:62:fa:4f:dd:49:1f:3b:a8:5b:fd:01:
66:68:af:53:84:a9:73:df:ef:b4:68:cd:15:1c:43:3c:0b:1c:
d5:ff:63:9c:10:f8:a8:b6:d3:d4:ef:66:10:62:b2:17:d3:ad:
eb:de:01:18:24:83:27:42:b4:43:d3:fb:95:ad:77:1d:36:37:
3f:87:8c:42:7e:fe:a9:65:be:59:ff:e7:1b:96:5d:1d:cf:83:
db:92:7a:fa:fd:f9:85:04:40:3d:36:7a:a3:dc:3d:1a:4a:48:
0c:42:bc:fe:70:fa:ee:29:98:17:7c:f6:7e:06:cb:98:ef:64:
90:7d:9d:3a:c5:4f:b3:34:6f:ce:99:ef:9a:c8:66:25:f8:b1:
bf:73:cd:b1:67:2c:ce:51:9c:6e:f9:74:d2:08:d2:9f:62:ce:
8b:85:75:85:79:30:78:6f:4e:94:af:49:a1:74:c4:f2:1a:21:
b0:38:02:24:e0:9c:26:2c:1f:8f:c3:77:14:7d:77:e6:c1:f6:
a4:9e:93:bf:fa:7b:89:bc:00:36:e5:c3:d8:0d:ea:aa:e7:1b:
8e:6e:92:1a:89:67:85:0c:51:9d:96:02:81:ef:71:d4:5d:b1:
f2:98:bf:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:00:14 2024 by rpki-client on console-ams.rpki-client.org