Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer
File: 3Y89lj-o0fItV_Tfspq9cNJVjjc.cer (raw, json)
Hash identifier: b/aLz1YzO+uU5+qpj+YUHRyaFPH0YrvLZ3p2qMadhqg=
Subject key identifier: DD:8F:3D:96:3F:A8:D1:F2:2D:57:F4:DF:B2:9A:BD:70:D2:55:8E:37
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B229
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 25 Jul 2023 21:06:49 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 149985
IP: 103.190.34.0/23
IP: 2001:df0:e340::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111145 (0x1b229)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 25 21:06:49 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91D506C/serialNumber=DD8F3D963FA8D1F22D57F4DFB29ABD70D2558E37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:07:35:ed:91:42:64:73:35:48:91:93:3e:d1:
a8:b4:54:1c:96:b2:b3:46:9a:8c:a3:35:57:d1:00:
3b:04:82:d0:00:a2:81:ad:95:0b:3a:e4:3b:9f:3c:
50:53:e9:e0:10:f9:5f:c8:78:68:e5:0e:7f:7c:fa:
ef:4a:35:86:00:7a:cc:03:e0:b3:20:3b:32:05:be:
44:09:d4:4d:c2:8b:53:b6:37:3b:b2:36:2e:47:fc:
f6:b1:ac:10:5c:10:34:c6:7c:c8:da:17:0f:ff:16:
8d:1f:dc:8a:75:71:7c:ad:08:6f:f5:aa:73:1e:c4:
05:9b:83:32:6e:b7:70:4b:45:6d:f9:53:ea:ea:f3:
cb:f3:41:0b:16:e0:03:86:ac:10:18:91:2f:61:f9:
fc:f1:ed:b5:e8:9a:4f:e7:d7:9d:25:a7:70:4b:bb:
5a:d7:9c:72:83:4a:35:6e:10:07:61:63:16:1d:41:
a1:68:0a:bc:f4:69:77:6c:7e:f6:38:fe:f4:89:79:
9d:89:7f:42:28:31:81:5e:28:c0:f7:f8:a9:f7:68:
80:6d:f6:31:a8:e8:70:5b:25:8b:2f:9f:9a:29:2f:
7e:a1:e5:28:28:80:71:7d:05:fb:54:c9:45:95:de:
91:5a:3a:c3:75:84:ca:93:66:14:ac:83:e3:ad:6f:
5a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:8F:3D:96:3F:A8:D1:F2:2D:57:F4:DF:B2:9A:BD:70:D2:55:8E:37
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149985
sbgp-ipAddrBlock: critical
IPv4:
103.190.34.0/23
IPv6:
2001:df0:e340::/48
Signature Algorithm: sha256WithRSAEncryption
07:48:65:9f:aa:2b:6c:2b:49:c0:d3:1b:30:22:4c:36:5a:98:
db:cb:85:1a:44:f7:10:b2:13:89:64:2a:ab:7e:d9:42:4e:c3:
16:87:fb:1c:3f:cc:47:f3:bf:40:77:08:84:b5:f3:1e:5c:22:
da:b7:43:96:cc:69:49:73:62:c8:0e:34:c2:14:05:8f:0e:f5:
fa:7a:9b:68:85:14:a5:41:68:42:45:ed:3c:2d:56:14:41:49:
ac:e8:a0:8f:6f:d8:7f:ff:9a:91:18:af:95:94:0d:78:28:d3:
57:89:7a:71:4c:2b:c9:5c:1d:47:39:fb:72:26:ba:6d:95:e2:
89:da:07:7a:53:5d:58:a2:1a:b2:03:e1:a0:1b:94:c9:bb:aa:
a1:a0:85:fb:69:5b:c1:20:d6:55:40:18:2b:bc:bf:4a:a2:f7:
06:d6:c6:f8:aa:b8:bc:8f:92:56:8a:fb:63:c9:cf:bf:6b:bf:
cd:53:00:8e:44:a5:5e:81:90:9f:22:ae:1b:b8:ba:a3:03:b3:
82:82:16:29:3c:c9:53:ff:71:c6:9f:65:3f:3f:eb:84:d3:cd:
76:9b:95:4a:69:57:96:fb:b8:f5:7d:5b:5b:97:9a:58:ff:50:
08:84:92:62:4a:fb:ed:5a:9b:cc:2b:f0:cb:65:9c:11:08:bd:
b9:9f:23:02
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed May 8 20:36:18 2024 by rpki-client on console-ams.rpki-client.org