Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/61l_6N8H6peZiwP4KDQ7yIda7Qg.cer
File: 61l_6N8H6peZiwP4KDQ7yIda7Qg.cer (raw, json)
Hash identifier: Nivtj5f96SZRNUjZkBYnfAlerytBQGmVHd3izJXEG/M=
Subject key identifier: EB:59:7F:E8:DF:07:EA:97:99:8B:03:F8:28:34:3B:C8:87:5A:ED:08
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E4CD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FCF7C/CD3B748C87CC11EB984FA748C4F9AE02/61l_6N8H6peZiwP4KDQ7yIda7Qg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FCF7C/CD3B748C87CC11EB984FA748C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 15 Mar 2024 21:40:42 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 142003
IP: 103.164.92.0/23
IP: 2001:df6:4580::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124109 (0x1e4cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 15 21:40:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91FCF7C/serialNumber=EB597FE8DF07EA97998B03F828343BC8875AED08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:72:2d:00:35:16:9f:57:58:ce:2e:ad:65:07:
53:68:9c:ef:73:4f:de:27:5a:49:56:49:1c:fe:76:
e5:84:d9:87:5b:81:ac:74:db:67:05:05:b1:8f:11:
76:a3:d8:41:44:c7:2b:26:76:88:17:45:a9:34:fd:
da:e0:4c:ff:72:18:38:dc:f9:0c:dd:df:15:29:0c:
fd:39:99:5a:9b:ef:8c:1a:44:20:c0:b4:04:6b:1b:
b6:3f:4d:3c:c3:7b:9a:64:e1:9c:8e:87:47:6f:46:
1d:2e:6c:64:b8:71:12:d0:de:8d:c6:d2:c3:f5:40:
0f:55:a7:11:2c:c7:58:b3:37:fc:5c:d0:49:47:09:
bb:a1:ec:39:59:3d:0e:3d:52:60:2f:2a:b7:dc:47:
2d:86:4f:59:38:11:7a:de:78:5d:92:b2:d2:5d:8d:
50:2c:a1:73:4c:31:34:68:3f:9c:66:7c:84:26:4f:
6f:a7:23:d7:8a:33:c6:fd:bb:a7:0d:26:64:59:7f:
23:d1:16:99:95:62:6f:94:a8:c1:ee:39:55:e2:29:
de:c9:6f:fc:fd:ed:a1:6f:5e:32:e4:da:6b:1b:6d:
3d:db:cb:53:e5:a3:c0:0c:bd:a3:60:8f:4c:b9:9d:
2c:db:66:ff:ca:a0:0a:20:64:90:66:87:1d:d2:89:
7c:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:59:7F:E8:DF:07:EA:97:99:8B:03:F8:28:34:3B:C8:87:5A:ED:08
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FCF7C/CD3B748C87CC11EB984FA748C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FCF7C/CD3B748C87CC11EB984FA748C4F9AE02/61l_6N8H6peZiwP4KDQ7yIda7Qg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142003
sbgp-ipAddrBlock: critical
IPv4:
103.164.92.0/23
IPv6:
2001:df6:4580::/48
Signature Algorithm: sha256WithRSAEncryption
88:e4:d4:f0:98:20:e5:08:d3:71:af:4c:ee:31:46:06:66:7b:
a2:a9:a5:34:b9:ff:04:47:92:1d:f9:5c:a8:e2:8f:3e:e1:f2:
9e:13:4a:53:f4:86:81:9e:ee:cc:55:9b:b3:07:79:84:43:2f:
1c:d7:b4:27:51:f8:54:3f:49:f1:d1:7e:08:d0:e8:73:bf:3b:
f4:c1:35:25:0b:6c:88:ca:8a:c5:c6:1d:c2:fa:26:6e:da:61:
4e:97:e2:26:a1:dd:d4:1a:40:49:d9:c8:20:bb:3a:7b:c3:90:
d7:cb:df:7a:9c:59:69:4a:21:1a:40:36:0e:97:d5:8c:ec:fd:
46:26:a8:bb:09:ae:31:52:a5:14:ed:a3:09:85:2b:52:d3:b5:
c1:79:e8:25:c7:ba:ca:1b:83:27:57:55:8f:c0:d8:4f:9f:f5:
2f:f9:b3:80:89:42:b1:d6:7f:3b:b3:f3:39:75:61:04:8a:4f:
cb:38:ad:35:d0:a5:b6:58:f4:d6:3a:93:e2:8c:7c:40:71:a7:
d5:36:ee:4d:42:47:d3:16:b5:9b:4e:69:52:de:e1:c0:14:94:
9b:f8:a4:30:03:09:d7:b0:17:59:aa:6d:6f:8d:3a:e1:74:e5:
ca:1b:5d:4a:f0:45:66:21:97:31:b1:f5:00:fc:87:1e:2f:8d:
5e:a8:ca:1a
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 9 18:13:37 2024 by rpki-client on console-fra.rpki-client.org