Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer
File: -xaxnfv3ymrECmtqNT94V4kX4P0.cer (raw, json)
Hash identifier: UbUG6VbOSU6gtDNVkuON3k1HIZAZiiP7G3fRrWX1on0=
Subject key identifier: FB:16:B1:9D:FB:F7:CA:6A:C4:0A:6B:6A:35:3F:78:57:89:17:E0:FD
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E1E0
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 01 Mar 2024 06:33:42 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 134813
IP: 103.85.184.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123360 (0x1e1e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 1 06:33:42 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A9146CB4/serialNumber=FB16B19DFBF7CA6AC40A6B6A353F78578917E0FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:64:fd:01:3a:69:03:65:4d:f6:de:2d:d0:a7:
c2:7b:11:00:1b:ab:fd:87:b0:02:92:c3:19:fd:31:
c0:31:a0:c2:09:9e:a9:5e:b1:d4:94:2b:4b:37:c6:
c6:9d:76:2c:81:7c:e5:ab:f2:87:2e:a9:67:e7:3f:
bf:d1:b2:34:ec:68:fb:79:73:20:f2:9a:95:2c:75:
0b:02:f1:86:ae:7c:44:ef:d7:65:e4:52:ed:7e:9a:
bc:1e:2f:1b:36:23:9a:82:c3:03:82:34:07:f7:49:
8e:84:fb:46:54:ad:9e:51:bf:6a:58:ca:d3:cc:0d:
c7:ea:b8:bb:45:d5:1d:90:6c:1e:de:81:6d:32:d0:
ed:26:1a:d0:3d:b0:3b:75:ae:a2:f7:3f:93:62:3a:
4a:0e:6d:59:c4:c5:2e:f6:eb:cb:50:0b:df:e6:d7:
e6:91:97:38:3b:2d:92:10:a1:6d:e1:41:1c:21:2d:
d2:c4:a6:75:36:e1:54:ed:b0:35:0c:8f:d6:d7:8e:
61:b9:ad:50:1b:45:c4:5c:33:76:54:55:48:8e:37:
b1:2b:4c:d6:28:b4:25:ba:57:8e:c9:bd:70:bd:ba:
1e:90:ef:c3:2d:43:5a:98:8e:55:f8:ee:87:1e:83:
1c:d2:86:cb:4f:01:73:56:17:6f:e7:07:eb:55:f8:
85:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:16:B1:9D:FB:F7:CA:6A:C4:0A:6B:6A:35:3F:78:57:89:17:E0:FD
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134813
sbgp-ipAddrBlock: critical
IPv4:
103.85.184.0/23
Signature Algorithm: sha256WithRSAEncryption
71:df:57:11:73:5f:2f:df:b0:ef:e6:59:af:e0:c9:09:45:78:
dc:6a:14:dc:d8:3e:56:68:53:83:b4:f3:8d:0d:62:fd:75:98:
22:13:22:20:e7:a7:c7:f8:3c:a4:a3:62:ee:96:5a:d3:b9:73:
f2:9b:b0:4d:d4:60:d1:02:d3:58:26:da:3c:81:4a:12:a1:ec:
ac:3e:12:8b:4e:a4:64:04:16:5e:f2:e1:37:e3:35:cb:db:53:
5b:7d:2b:ab:01:61:f0:56:fd:df:33:e7:f7:4f:b1:7b:cd:27:
65:5a:f6:3c:0a:fe:f5:30:7b:38:17:d4:ea:7b:02:8b:a6:1e:
27:c8:12:d0:50:d9:3b:a5:c4:31:f5:94:d4:e7:ed:57:4a:1a:
f8:eb:3c:89:ac:f8:53:e8:a0:4c:81:83:16:d9:3e:a2:f6:c3:
f0:b7:0e:7d:08:d1:c7:9b:a5:c4:58:d2:cf:24:83:fa:df:e0:
c4:f3:f7:13:f7:c6:7a:87:44:30:19:ed:ae:c6:ee:d0:b0:e5:
a5:42:99:9e:a7:1f:36:58:54:8f:f0:df:77:f1:70:58:c4:ee:
b3:67:83:c4:f1:86:7b:98:3f:13:89:cf:d5:d3:c8:76:44:2c:
83:84:89:a2:b8:a1:be:6b:23:52:c0:fd:a0:9f:d0:0a:07:be:
b1:c9:c3:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 07:42:33 2024 by rpki-client on console-fra.rpki-client.org