Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1lqglKUeKDl1O1khC2zyxUkVwB4.cer
File: 1lqglKUeKDl1O1khC2zyxUkVwB4.cer (raw, json)
Hash identifier: /IHEUXI9iWxS+YHKc+7oX3lv+Uj5uPikMmtMm3dJICo=
Subject key identifier: D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EECD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 30 Apr 2024 18:53:09 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 134105
IP: 103.52.228.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126669 (0x1eecd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 30 18:53:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A915C1AA/serialNumber=D65AA094A51E2839753B59210B6CF2C54915C01E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d8:48:7e:0d:72:e2:3d:7f:55:76:51:9d:fe:
77:b3:5d:87:c1:d2:ab:25:bd:e1:f4:09:a1:ef:e2:
22:e9:8a:b7:41:c8:8b:d3:93:4f:d0:cc:f0:e3:1a:
65:b2:7a:8b:da:91:75:d1:73:e0:40:46:4d:9f:5e:
0b:90:80:69:b3:97:c5:db:21:80:7f:72:cf:8d:3c:
7e:4d:b7:34:2a:58:d7:b5:51:10:35:fe:c9:f6:d4:
ce:8a:83:c7:c9:69:d3:87:56:8c:3a:a0:11:34:84:
1e:97:cb:70:60:51:2b:c8:ca:76:8f:ba:6f:0c:d4:
c3:dd:33:74:e5:a7:62:0c:07:2c:a5:61:51:c1:18:
c5:a1:0d:5c:df:8e:25:f2:79:fa:25:79:cd:c6:48:
37:7a:68:08:82:ef:10:02:ea:b2:f2:92:57:3a:c6:
73:a0:47:55:58:cd:a8:8a:58:92:0a:fd:2a:1e:70:
aa:be:84:bf:59:c8:66:7b:57:ea:b7:f1:d1:38:d8:
19:34:6a:e5:22:7b:c0:e6:6b:83:64:28:ba:a0:4a:
c2:93:77:c6:0d:49:6e:25:09:cc:b7:7c:01:17:08:
15:77:76:0a:6c:76:76:70:be:ea:a7:50:43:16:40:
d8:fd:a4:36:c1:d5:d3:14:1e:83:58:a5:4e:b7:a3:
69:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:5A:A0:94:A5:1E:28:39:75:3B:59:21:0B:6C:F2:C5:49:15:C0:1E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915C1AA/6C9D26307F2011EAB57D5732C4F9AE02/1lqglKUeKDl1O1khC2zyxUkVwB4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134105
sbgp-ipAddrBlock: critical
IPv4:
103.52.228.0/22
Signature Algorithm: sha256WithRSAEncryption
24:1e:b6:67:f1:4b:f2:60:8c:83:ed:01:78:93:c7:02:98:c2:
bc:d3:7b:bd:8a:4b:69:90:bf:ed:a1:fb:d3:a6:53:70:58:28:
e7:74:de:61:0d:42:c6:20:7f:cf:35:85:0c:f7:7b:68:35:77:
b4:ff:52:5d:ee:5e:16:27:52:6c:7c:28:c6:4a:00:f7:5b:f1:
f1:f4:10:0c:b5:2d:f2:42:30:56:71:f1:2b:ee:4f:af:c8:5a:
4b:d1:51:91:bd:9d:70:e2:0f:ab:cc:87:0a:ca:ed:f7:58:d6:
76:04:cc:f9:7e:ce:ea:c5:06:a3:6c:b4:af:02:3f:57:dd:0e:
90:c7:a1:31:be:4d:4b:50:ef:07:cd:6e:7a:f7:c0:7c:68:dd:
6f:a7:51:ea:ed:e6:10:ed:d3:cc:ea:3c:fc:7c:55:c8:66:6b:
14:19:c4:74:31:20:94:28:f2:df:c5:08:1c:35:b2:f7:88:b7:
f7:d5:06:1a:0a:85:48:fc:f5:7b:fb:98:79:89:68:20:0e:d7:
02:0c:2f:75:ce:7f:ea:29:1a:21:00:23:3e:4f:3d:6f:8b:81:
6e:dc:0c:9e:2f:08:24:b7:29:e7:4a:b0:28:25:97:43:63:04:
a3:fb:f2:83:fa:10:82:22:87:67:34:f2:e0:19:3e:49:a5:48:
26:86:02:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 10:10:22 2024 by rpki-client on console-ams.rpki-client.org