Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ptk5jRGWrQTIFS7foPJ1fGDSfc.cer
File: 0ptk5jRGWrQTIFS7foPJ1fGDSfc.cer (raw, json)
Hash identifier: VBafQBZ5NnL2O+i9Oj8VTadrEExY+TwhL6I6zcGU/8U=
Subject key identifier: D2:9B:64:E6:34:46:5A:B4:13:20:54:BB:7E:83:C9:D5:F1:83:49:F7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E093
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D26C6/58E99E946F7911EBA4D22287C4F9AE02/0ptk5jRGWrQTIFS7foPJ1fGDSfc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D26C6/58E99E946F7911EBA4D22287C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 25 Feb 2024 18:07:30 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 141699
IP: 103.162.56.0/23
IP: 2001:df5:e580::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123027 (0x1e093)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 25 18:07:30 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91D26C6/serialNumber=D29B64E634465AB4132054BB7E83C9D5F18349F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:1e:8b:03:9f:96:14:e4:cc:da:08:73:9e:d0:
7b:48:33:79:48:e8:18:c1:ae:03:20:9e:8d:53:a5:
6d:df:9e:4c:ea:1c:8c:64:66:bf:34:c8:5c:40:2a:
25:cf:c2:5e:f8:de:38:68:27:d6:30:5e:aa:79:d0:
55:49:d9:10:a8:7e:5e:88:f8:50:9a:61:e2:b7:be:
88:15:df:ac:b1:b6:13:b7:c1:e3:dd:b2:36:57:4b:
11:53:f4:87:56:11:b6:14:3e:84:fb:a7:9f:00:e2:
05:85:fc:62:32:15:cf:23:aa:64:b8:79:25:9a:78:
c0:3f:ee:2e:ce:c8:72:a8:06:d8:f6:54:1f:f9:11:
93:51:25:9a:c7:fc:e8:89:a0:67:1d:cf:31:89:ca:
f3:56:58:c0:4c:ee:f7:48:b1:72:3f:cd:1e:24:53:
a3:68:fe:0f:ad:81:c9:52:17:b1:05:e6:e3:0e:c5:
30:37:44:b1:54:48:5c:a8:71:59:63:85:05:fd:fd:
a1:ea:60:60:51:95:98:00:f9:d3:ed:37:6f:55:36:
78:b8:7a:91:6c:ba:0f:f2:05:5b:5f:46:ab:93:27:
73:30:47:20:a8:84:60:1a:fb:81:0a:ee:f8:ff:5d:
af:c7:68:c5:b7:6b:92:b0:39:cc:67:39:6e:0f:7d:
53:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:9B:64:E6:34:46:5A:B4:13:20:54:BB:7E:83:C9:D5:F1:83:49:F7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D26C6/58E99E946F7911EBA4D22287C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D26C6/58E99E946F7911EBA4D22287C4F9AE02/0ptk5jRGWrQTIFS7foPJ1fGDSfc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141699
sbgp-ipAddrBlock: critical
IPv4:
103.162.56.0/23
IPv6:
2001:df5:e580::/48
Signature Algorithm: sha256WithRSAEncryption
af:03:47:6c:30:10:26:53:89:00:71:1d:4b:14:79:b5:a3:b4:
cc:f8:dc:72:46:53:9c:c0:f1:50:10:89:40:76:e1:2b:27:22:
c5:c6:eb:fb:be:4f:5d:a0:dd:a4:47:03:b6:e8:62:16:1c:96:
21:20:c4:a2:c0:c9:3e:33:00:2f:93:8e:70:23:33:0d:e4:48:
7d:10:96:26:4b:0b:b7:4f:84:f7:cf:13:ec:cf:dc:86:af:1e:
48:87:53:50:29:58:9f:44:71:d6:b3:b8:49:fe:dd:cf:a4:21:
6d:72:8c:37:4a:06:f8:68:0b:a1:ba:eb:9f:85:bb:6d:c5:fd:
95:ee:0f:1d:c6:9a:16:48:ca:7d:7b:e4:3d:a4:d1:52:b0:35:
bd:dd:77:65:b0:52:b9:b9:36:4e:fd:3f:34:4b:71:e1:cf:2a:
9e:85:d8:f1:ec:f0:41:b7:8a:11:7c:86:be:0d:da:a5:fb:2a:
cf:a9:07:33:31:ff:af:04:55:5a:38:9c:4d:57:d9:fc:1c:b9:
18:be:99:8a:0e:07:86:e4:0c:7a:0a:e4:45:2a:32:ce:81:21:
65:42:2e:14:9f:2e:af:40:3d:55:07:86:57:9e:f3:0e:87:a1:
d7:9a:92:28:cc:4b:45:45:2b:04:dc:9c:2b:f9:55:f7:5f:de:
ee:e1:69:b6
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 9 17:47:56 2024 by rpki-client on console-ams.rpki-client.org