Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgtgbdnoiYp9XfXqHKPZlgKOddk.cer
File: AgtgbdnoiYp9XfXqHKPZlgKOddk.cer (raw, json)
Hash identifier: /Sq+s2OAYhScS5dO9i8IFU1FzdAGQ5y4kk9pfiazWlM=
Subject key identifier: 02:0B:60:6D:D9:E8:89:8A:7D:5D:F5:EA:1C:A3:D9:96:02:8E:75:D9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C23F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 05 Oct 2023 13:48:18 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 150328
IP: 103.13.192.0/23
IP: 2001:df1:53c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115263 (0x1c23f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 5 13:48:18 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A913E23F/serialNumber=020B606DD9E8898A7D5DF5EA1CA3D996028E75D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:3c:31:dd:e0:fa:87:aa:39:ff:5d:48:4f:92:
1f:7b:0b:4a:25:c1:07:70:bd:31:a1:ab:14:de:c6:
73:88:4c:4e:b9:77:bf:22:d6:82:7e:0d:8a:1e:72:
f1:1b:20:2c:41:7e:ee:ae:a5:7b:aa:a0:21:0d:49:
a3:42:56:90:06:39:62:84:58:8a:e9:15:f2:2c:17:
98:46:e9:c6:cb:52:b9:b8:31:b4:af:50:0a:d6:9d:
4e:d7:e0:54:d7:6e:0a:73:aa:9d:2f:64:52:ad:fb:
1a:57:0f:52:c8:88:72:64:44:f7:20:d1:a5:a2:76:
cc:d8:f7:01:90:ab:5a:f8:35:7f:19:5d:24:8a:41:
b0:f5:9b:ab:33:bb:6c:9b:16:a5:c8:a4:94:7c:74:
8b:c6:55:b2:52:56:5b:16:d8:f1:5e:2e:de:57:86:
17:31:31:90:f2:d1:4a:aa:5e:ed:2b:39:31:20:67:
1c:de:ee:ed:6e:77:76:5d:db:64:0e:fa:7e:41:a8:
35:a9:92:11:70:6f:6e:32:b7:c0:18:f0:6a:7f:59:
61:78:be:96:6a:6f:b9:57:8e:40:33:42:98:bf:c8:
bd:2e:99:2e:24:95:fa:94:4d:04:6f:7f:90:c7:7b:
6c:46:4f:9a:78:8c:25:17:8c:d4:2a:22:7e:cc:2a:
03:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:0B:60:6D:D9:E8:89:8A:7D:5D:F5:EA:1C:A3:D9:96:02:8E:75:D9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150328
sbgp-ipAddrBlock: critical
IPv4:
103.13.192.0/23
IPv6:
2001:df1:53c0::/48
Signature Algorithm: sha256WithRSAEncryption
ca:51:0a:a6:ec:0f:f6:b9:73:5e:66:c2:32:a4:10:30:11:5e:
08:99:89:f8:7d:86:09:6a:ab:c0:88:09:f4:2a:d0:e9:3a:ea:
11:15:1c:b7:e5:b7:31:e8:4e:c7:f7:f3:37:c3:f9:25:c0:a7:
db:73:58:ec:3f:12:df:d9:60:3d:d5:30:69:83:69:92:e7:3d:
18:43:ac:a0:eb:1d:33:1d:c0:ea:01:14:81:d3:3b:84:59:0d:
59:d9:93:7f:7e:34:3d:e0:91:da:58:64:8a:86:1a:d6:7b:80:
12:ad:6e:ec:4b:b7:cd:07:6c:16:9e:9c:22:6f:4f:24:d5:64:
d9:a8:46:db:a5:ab:0b:6d:7a:a2:dc:a8:bc:a8:24:96:b4:bd:
b2:34:81:be:1b:e4:4b:68:44:0e:e7:04:96:bb:3d:22:c4:05:
a9:8f:6c:44:4b:da:63:10:f2:26:24:7d:4b:29:36:bd:e9:34:
c7:7a:af:c0:bb:1b:19:cf:ab:86:68:55:a1:a5:a9:ef:95:9a:
ef:f5:bb:de:4a:9a:f4:a6:d5:ca:69:53:c8:88:c9:d8:aa:6c:
08:6d:cb:b8:e8:01:19:38:21:fd:8d:ed:1a:22:ff:b5:bd:b8:
76:79:7c:6d:20:ef:8e:56:f7:d9:1d:b3:0a:89:12:dd:2b:5d:
f5:7e:33:68
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 9 03:38:18 2024 by rpki-client on console-ams.rpki-client.org