Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer
File: 2DkrDZFbmsH00jv5hBlxQG-2GsY.cer (raw, json)
Hash identifier: pFEdc/uz+4+uGesGuK/rokdrN8ME1MVQAdYPDcAImyY=
Subject key identifier: D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BF25
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 22 Sep 2023 16:50:43 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 58883
AS: 58985
AS: 135056
AS: 140996
IP: 103.142.8.0/23
IP: 103.207.164.0/22
IP: 2001:df1:2380::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114469 (0x1bf25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 22 16:50:43 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A9196DE5/serialNumber=D8392B0D915B9AC1F4D23BF9841971406FB61AC6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ef:cb:4c:ae:4d:7b:e9:0f:d1:05:16:aa:dc:
e9:77:02:f7:de:c1:7b:e6:af:6c:2b:99:ab:d5:1a:
b8:10:81:b7:d2:76:ed:96:f8:dc:f2:99:37:f1:8c:
af:c3:c2:fd:c7:59:39:e4:bc:a7:dd:94:d4:62:49:
46:97:df:f0:3b:cc:ac:0a:ff:ec:ee:46:36:a9:8d:
48:22:2e:7f:bd:00:4b:3f:3d:24:43:58:06:d6:f1:
8c:1e:4c:d5:04:84:8a:4c:b7:80:52:9a:e9:cf:76:
e4:18:da:ae:d7:b6:c7:d9:57:59:69:f8:a7:3c:5b:
9e:16:ce:56:64:0c:ba:9e:55:bf:7b:85:c2:0e:38:
31:44:99:58:d9:ce:71:df:bd:be:c9:82:c7:42:fa:
13:43:7a:90:2d:81:85:e2:3d:17:d2:63:db:79:5b:
67:fb:2e:af:34:30:b4:1a:20:c6:6c:2b:d3:22:9c:
6a:53:f9:5a:0c:61:ca:00:8c:80:f9:81:22:b5:2c:
6d:88:2b:66:40:06:54:3e:7c:96:c1:28:88:1d:4a:
5d:74:0d:27:6f:59:54:ee:e7:25:e1:89:7f:fe:ee:
5e:de:da:60:03:24:cf:3e:82:1c:c3:d1:a1:9e:8d:
39:06:be:3b:e9:36:cb:0c:64:ab:bb:83:e2:e1:e1:
03:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58883
58985
135056
140996
sbgp-ipAddrBlock: critical
IPv4:
103.142.8.0/23
103.207.164.0/22
IPv6:
2001:df1:2380::/48
Signature Algorithm: sha256WithRSAEncryption
3a:55:c1:65:68:15:ed:45:15:fc:cc:4e:3d:ba:8a:a2:87:8d:
66:d6:c3:c9:1a:ec:fd:bf:1f:57:0a:f7:9a:6e:7d:21:3d:ec:
4a:ac:a2:56:be:1e:0a:b5:32:28:f1:4e:55:b2:92:81:ea:e1:
29:73:40:0c:5e:a6:9a:9d:c2:9c:b1:44:23:32:d5:56:80:3f:
b3:7d:5e:f5:f3:dd:70:e5:1c:e3:40:f5:86:86:6c:ed:c8:62:
cf:dd:81:a0:de:d7:9f:89:ea:5b:b6:05:53:14:5d:82:c8:a2:
ec:5d:1e:f5:cc:92:a6:88:de:95:22:80:34:75:0e:e5:dc:47:
13:eb:96:e2:b8:c8:88:57:14:bd:30:f1:e0:93:33:56:c5:cf:
cf:6f:76:4d:4d:f4:71:1a:00:97:89:e6:60:8b:c4:df:76:ed:
55:9a:2d:34:b4:7d:59:14:cc:8d:93:de:1c:c5:ca:e4:34:8f:
c2:d5:23:c8:fb:3e:73:25:2c:e4:83:a3:b3:c0:ed:82:d9:c4:
e0:78:8d:12:e1:15:50:26:5e:f9:d5:d2:c9:f2:ad:26:e3:c5:
6a:4b:3c:3b:52:1f:82:16:10:83:b9:47:08:b2:6c:51:bb:f3:
dc:36:14:68:cc:f6:95:e0:da:10:5d:9e:f8:8e:e7:1e:22:93:
bb:22:ce:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 10:10:22 2024 by rpki-client on console-ams.rpki-client.org