Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fgi_RiSn4bcjIotGYd1mHnCu8_Q.cer
File: Fgi_RiSn4bcjIotGYd1mHnCu8_Q.cer (raw, json)
Hash identifier: gUANUp4qiYUYivNtsNSmN3+VEIgvR2D48t2uc6uoKpI=
Subject key identifier: 16:08:BF:46:24:A7:E1:B7:23:22:8B:46:61:DD:66:1E:70:AE:F3:F4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B8EC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91444E5/2E822DAA1B9111EC9E7A3114C4F9AE02/Fgi_RiSn4bcjIotGYd1mHnCu8_Q.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91444E5/2E822DAA1B9111EC9E7A3114C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 26 Aug 2023 13:38:51 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 142604
IP: 103.170.208.0/23
IP: 2001:df7:2a80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112876 (0x1b8ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 26 13:38:51 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91444E5/serialNumber=1608BF4624A7E1B723228B4661DD661E70AEF3F4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:84:18:8f:d4:6a:ff:6b:71:de:68:64:08:f2:
8d:c8:9f:cc:a4:2f:3c:00:3e:67:95:2a:3b:13:06:
3c:fd:58:8b:e8:18:bc:d3:a7:bd:ab:e8:f5:3e:26:
48:8f:98:c9:0d:45:10:f6:66:05:b0:34:2d:b1:22:
47:f6:a2:4c:bf:7e:ba:45:90:e7:95:41:90:ca:d6:
ab:9c:67:5b:2d:46:f2:9a:df:b4:18:19:63:95:0a:
42:7f:fa:24:07:61:7a:35:5c:ae:ea:c4:63:db:af:
16:46:cc:36:a0:12:64:6a:c3:fd:d2:ff:fe:39:ac:
04:c2:04:c9:90:a0:cf:2d:94:77:b7:0f:be:70:96:
30:28:dc:97:f6:e6:5c:99:5d:b8:16:85:f0:ea:50:
be:6b:da:d6:b4:7d:dd:3a:88:8d:39:71:f6:ba:ec:
32:e8:77:45:f7:c6:89:ee:12:cf:bd:c9:12:58:c4:
1c:3c:41:95:02:89:bb:14:68:8a:0c:be:dd:f9:e4:
9c:09:28:b1:29:4d:fd:81:d3:c7:09:4f:28:5a:b1:
51:28:8f:91:e8:ea:e5:bf:22:ff:05:5d:81:c7:29:
b9:16:1b:ae:24:60:6f:a9:f5:9a:a2:8a:91:94:37:
72:69:8f:01:b9:4a:b5:18:2f:97:5a:62:bc:3c:35:
bc:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:08:BF:46:24:A7:E1:B7:23:22:8B:46:61:DD:66:1E:70:AE:F3:F4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91444E5/2E822DAA1B9111EC9E7A3114C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91444E5/2E822DAA1B9111EC9E7A3114C4F9AE02/Fgi_RiSn4bcjIotGYd1mHnCu8_Q.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142604
sbgp-ipAddrBlock: critical
IPv4:
103.170.208.0/23
IPv6:
2001:df7:2a80::/48
Signature Algorithm: sha256WithRSAEncryption
00:84:14:e1:31:80:19:15:11:82:97:b7:aa:17:b3:49:f0:da:
78:32:c2:e8:06:9b:0d:ea:8f:d6:a0:16:66:2e:c5:04:fe:c1:
e8:d7:01:4e:79:29:57:3a:b3:ad:22:7b:8c:9a:ce:f9:40:6d:
63:27:f8:e6:97:2d:b0:7d:e5:84:25:fc:3d:ce:fc:0a:4f:94:
20:ff:9a:1f:7c:2a:7b:e0:ca:41:1e:ef:ec:49:8b:b3:e5:f8:
39:fa:16:4a:e6:69:20:7b:6e:0f:19:38:5f:b0:24:ec:44:85:
80:2c:ec:41:b4:c6:b1:ce:dc:1b:37:5d:7d:e9:bf:5a:e5:9a:
c4:15:0d:ca:e0:ab:64:dc:c5:3a:7b:26:0f:6e:c1:7c:82:1f:
15:15:33:15:e3:f1:65:b4:e2:c8:1a:8f:5e:4e:14:6d:c6:83:
9c:67:ad:6a:69:e0:5d:33:ed:aa:c1:69:78:d9:a3:5e:ea:3a:
fa:46:84:ef:83:7e:72:94:b7:fb:ca:05:8d:59:6e:c3:a9:85:
cf:9a:c2:00:f2:85:fb:aa:99:6c:fb:1d:f5:b7:cd:4c:07:23:
a7:fc:08:42:c4:b2:70:c1:50:40:28:01:d8:2d:d0:e5:05:69:
3a:4b:2e:17:25:8f:63:1c:19:be:28:00:c3:fe:99:61:5d:d7:
a2:85:23:ca
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 9 03:38:21 2024 by rpki-client on console-ams.rpki-client.org