Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer
File: FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer (raw, json)
Hash identifier: xPbJ+vM5bnVYHCVznRcaGSMz/YPrm3IONqqzfydf5CA=
Subject key identifier: 14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BFEF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 26 Sep 2023 22:29:06 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 135335
IP: 103.154.46.0/23
IP: 2001:df4:6780::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114671 (0x1bfef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 26 22:29:06 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91DEC3C/serialNumber=147A0E048711B62506B09F088A05992A3A31020A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:dc:22:79:ce:ee:34:48:4f:6b:c5:82:86:ce:
b5:5b:08:61:96:07:8e:26:e9:99:4f:8c:4f:49:53:
00:14:a6:05:c8:f5:c7:9e:04:33:74:1e:f2:6f:6c:
99:30:e3:56:47:2c:3f:eb:7f:24:a0:9b:b9:39:95:
3d:fb:0d:f2:ac:87:cd:68:12:57:00:65:fe:d7:96:
ae:63:e7:ef:56:d8:ac:c1:1d:20:87:7c:10:4f:b2:
a3:20:03:70:05:1d:56:f8:40:0e:20:0f:04:f4:44:
29:22:b9:aa:17:08:84:71:56:6b:6a:b4:f4:0d:04:
6a:b4:6a:65:1c:70:aa:31:61:24:24:1b:64:e6:55:
d0:ee:49:d7:29:be:72:f7:1d:5f:0c:c7:f6:24:de:
99:bf:0f:1a:b2:55:e9:23:77:ce:20:e7:fa:02:20:
fb:67:35:1e:aa:4b:33:eb:4e:cb:89:ed:29:47:b1:
fd:42:a2:80:1e:52:72:4f:ab:91:80:c1:95:2e:f9:
ab:04:f8:4f:84:51:69:3a:42:7b:de:24:59:80:83:
2b:65:49:5e:26:ed:04:be:c0:e1:12:ac:e5:f9:7c:
09:36:8c:09:69:d4:de:bf:e2:9b:30:b5:61:a8:bc:
76:d5:41:69:17:40:6b:6a:a5:03:d7:4f:c1:9a:3d:
d0:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135335
sbgp-ipAddrBlock: critical
IPv4:
103.154.46.0/23
IPv6:
2001:df4:6780::/48
Signature Algorithm: sha256WithRSAEncryption
42:ce:4d:25:1f:73:bc:bd:83:51:bb:05:a6:85:53:dc:76:f9:
f6:f9:ea:f0:73:f5:d6:fb:16:e2:0b:ba:bd:fa:b9:71:55:6b:
cb:bb:c1:8c:83:f7:4e:ac:12:d4:33:9e:42:87:d2:e8:63:9f:
48:a9:62:df:30:8a:8f:dc:a8:56:0d:09:42:26:a5:b1:c7:56:
44:f4:bd:85:4a:53:9c:12:42:8c:7b:fa:85:00:ad:cf:e0:ff:
19:db:ca:85:62:33:2c:43:cb:4d:61:c4:34:48:1a:0b:c1:44:
c0:be:f0:01:42:c1:ba:4c:28:25:58:3c:5c:e3:0d:c8:7d:29:
db:b4:ff:41:8a:28:a9:67:7c:af:ee:66:28:7b:04:08:c8:91:
d8:21:f1:ae:14:3b:4e:f1:c6:d0:62:98:5e:82:d5:ad:b0:5f:
2a:13:a8:65:23:36:c5:65:0c:ea:e1:b7:a9:86:62:28:47:a0:
19:34:06:9e:70:46:e9:ad:36:06:04:21:88:b9:c5:f0:af:63:
bd:17:ac:0d:80:d7:37:c3:64:de:82:cc:63:cd:7c:5c:1a:1e:
4b:09:a7:37:7c:34:8d:fa:9a:20:6b:e9:c4:c5:48:97:a5:84:
df:1a:49:e3:0c:c8:3d:f1:b1:66:68:e0:66:65:2f:41:4b:47:
ca:b0:54:1e
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 9 03:38:21 2024 by rpki-client on console-ams.rpki-client.org