Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1f9FyAWBJcJy3wRtwLjgb6owT88.cer
File: 1f9FyAWBJcJy3wRtwLjgb6owT88.cer (raw, json)
Hash identifier: 1355z49yqb7J1AUoNXSv9LGv8WLoAMXSElB7HNU3+Vg=
Subject key identifier: D5:FF:45:C8:05:81:25:C2:72:DF:04:6D:C0:B8:E0:6F:AA:30:4F:CF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D6E5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 05 Jan 2024 02:42:41 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 149442
IP: 103.179.140.0/23
IP: 2400:4ca0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120549 (0x1d6e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 5 02:42:41 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91A7E29/serialNumber=D5FF45C8058125C272DF046DC0B8E06FAA304FCF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:b6:22:20:a6:d8:2d:29:08:ff:d8:76:fc:dd:
d2:be:04:6e:ab:c4:50:c6:40:a4:7c:7b:d6:c9:f6:
37:08:4e:ea:4e:b2:99:75:a9:21:1e:25:4b:69:f4:
56:45:63:d2:f6:4f:71:c2:5d:6a:2c:74:01:70:e6:
62:33:16:5b:84:f4:8a:b6:cf:a4:00:88:16:e6:4d:
b7:b7:22:4d:d6:05:f8:9b:ef:38:96:74:2b:a7:0c:
93:c2:4e:35:a8:34:79:f9:37:76:46:33:f9:e5:94:
71:48:09:e4:29:3a:76:5c:af:f6:76:54:49:ea:8a:
63:b2:23:0f:07:99:4d:f8:da:32:f8:83:6c:86:eb:
69:b6:19:6d:22:15:2c:ed:eb:76:1d:f3:f2:bf:2b:
b3:0d:72:d9:a6:2f:a4:57:66:4a:0d:99:83:52:c7:
df:f4:52:ff:0c:f9:64:12:ec:c6:c3:0d:99:3d:90:
07:7e:a6:fd:7e:c2:29:25:47:3d:dd:77:f5:98:7c:
2e:6e:c8:1a:9f:d1:da:21:b0:56:ae:ff:02:54:c0:
63:54:ed:57:65:e1:5a:46:0e:e3:01:86:da:dd:77:
07:ad:2d:ce:71:91:e2:98:88:30:48:dc:bc:7d:e3:
be:70:0b:53:d3:4d:d5:87:34:86:7a:05:3f:88:49:
b8:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:FF:45:C8:05:81:25:C2:72:DF:04:6D:C0:B8:E0:6F:AA:30:4F:CF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149442
sbgp-ipAddrBlock: critical
IPv4:
103.179.140.0/23
IPv6:
2400:4ca0::/32
Signature Algorithm: sha256WithRSAEncryption
3f:c5:7d:43:df:5e:20:bc:cd:2c:01:92:54:5c:a9:51:c9:cb:
80:21:71:c2:d1:58:6a:d5:65:8f:6b:74:ec:de:57:92:3f:f1:
56:9f:24:ef:5a:c1:49:89:71:5b:19:93:5f:f3:7f:1b:2c:7e:
34:02:f0:4b:c5:fe:ba:60:c9:82:11:be:f1:b3:39:19:10:ef:
a2:dc:85:61:5a:56:e7:dd:25:7d:5d:a0:56:eb:2f:2e:4f:5b:
31:c3:8d:d2:d6:c1:ac:27:89:e7:d0:be:f8:dd:e0:bb:93:2b:
9c:dd:90:ef:b6:8e:53:fd:91:07:3e:5b:b4:c2:d8:d0:5c:3b:
c0:89:8a:2a:ab:f1:22:75:2e:f9:ea:21:3e:58:c2:9f:81:cc:
0e:30:a6:42:c0:97:30:df:24:0a:db:a0:3b:c5:ab:8f:86:87:
15:79:35:a7:5d:89:ae:66:98:89:81:73:d3:c0:15:5d:c0:fa:
a2:f4:4c:48:ad:0a:c4:d1:dd:41:09:ee:9b:c0:de:8b:6d:8d:
68:9d:bf:55:56:04:35:b0:eb:06:71:b2:65:3c:4d:6f:d1:f7:
86:36:9e:56:a4:dc:3a:ef:3a:d7:d2:a4:22:11:c3:e9:f6:ba:
55:e4:9f:94:c3:de:d0:7d:15:d5:35:23:c3:20:46:30:c1:4b:
a7:b8:27:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 10:23:48 2024 by rpki-client on console-fra.rpki-client.org