Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aKqu0AhLrPAkqrq8VFCp2nvWQc.cer
File: 7aKqu0AhLrPAkqrq8VFCp2nvWQc.cer (raw, json)
Hash identifier: x2TbJEIWb9xmpFQDNJpbah3WirOx6ad+VAeceSCNVQU=
Subject key identifier: ED:A2:AA:BB:40:21:2E:B3:C0:92:AA:EA:F1:51:42:A7:69:EF:59:07
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EE70
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 30 Apr 2024 08:26:51 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 142013
IP: 103.27.255.0/24
IP: 103.164.203.0/24
IP: 2001:df2:3bc0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126576 (0x1ee70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 30 08:26:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91E04ED/serialNumber=EDA2AABB40212EB3C092AAEAF15142A769EF5907
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:75:26:fd:ee:12:de:bd:c9:b8:dd:55:5d:75:
74:b3:f2:63:83:34:88:15:a1:5f:3c:3e:9d:13:fe:
c1:fd:07:a0:51:d6:77:97:c4:5f:7e:37:7b:ec:76:
c9:ce:85:ad:3b:73:b1:e2:00:e2:38:ac:a0:aa:c6:
68:c2:63:2e:38:98:c8:32:a5:b6:1d:7c:29:d1:fc:
27:4a:a8:3e:45:e9:96:55:73:51:bf:9d:31:21:4b:
b2:ed:b8:8d:0c:96:64:fb:f3:2d:ed:a9:14:ad:b8:
2b:de:01:79:56:e9:f7:ca:ba:92:00:0d:70:7a:ad:
5d:58:41:c7:8f:5f:69:ee:c9:5a:9d:69:d6:54:c9:
d1:1e:d4:2b:76:b2:c1:f6:ea:77:0f:0e:1d:f3:12:
83:b9:dd:28:79:7e:b7:9b:94:47:19:22:62:b6:35:
43:6a:52:18:58:39:da:09:79:00:ba:2c:c1:a2:d8:
00:d5:d4:e8:59:43:72:db:22:fc:51:d5:2e:f8:b8:
4e:68:59:05:7a:cd:26:19:95:da:65:3c:86:52:36:
da:25:5a:03:76:dd:b5:59:a5:0b:94:33:7e:06:e1:
3a:56:6b:96:3f:35:e9:ad:d5:8f:ae:5d:36:e7:18:
52:cd:a2:e5:ee:2e:b2:94:3f:6f:a3:ca:7e:58:68:
9a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:A2:AA:BB:40:21:2E:B3:C0:92:AA:EA:F1:51:42:A7:69:EF:59:07
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142013
sbgp-ipAddrBlock: critical
IPv4:
103.27.255.0/24
103.164.203.0/24
IPv6:
2001:df2:3bc0::/48
Signature Algorithm: sha256WithRSAEncryption
74:2d:28:f8:6f:35:46:3f:d4:a6:74:99:e5:91:0b:68:40:db:
e2:7f:18:a1:91:ed:e9:24:37:d3:53:54:58:eb:ee:8f:d4:6b:
12:c9:60:17:13:69:09:b2:0b:55:74:e9:6a:ee:44:c1:2c:36:
0e:78:0d:83:42:ff:d0:77:5d:02:64:86:68:96:f2:86:79:4a:
b4:71:f1:54:84:a1:77:b5:54:1e:f2:ca:af:a1:82:b7:a4:5c:
28:2f:ff:9a:08:12:91:0b:2a:e2:77:f0:05:51:5c:01:37:fc:
4d:fe:12:e0:48:ea:d1:04:0d:34:72:df:81:17:1b:af:de:1c:
6c:2d:14:10:5e:53:dd:2c:d6:a6:42:e6:de:2b:18:77:d0:34:
cc:50:65:2a:c3:2a:e6:68:a7:fd:b5:4f:98:8d:b5:43:ff:6e:
db:2a:10:42:7f:fe:ed:3b:50:67:a8:e5:da:d2:ca:a7:2d:19:
4a:67:73:52:76:9f:c1:22:f9:f1:f7:26:75:41:d0:fc:89:c7:
11:d1:d4:27:58:b7:da:80:54:b1:e8:fd:5a:94:88:bc:8b:8a:
88:1e:9e:de:ed:6a:da:e4:f2:e9:53:00:da:cc:cd:a1:d4:51:
5b:bd:11:7f:92:64:2e:8a:e5:b6:af:f3:e5:0b:55:86:81:be:
8d:ff:63:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 03:38:16 2024 by rpki-client on console-ams.rpki-client.org