Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fu3IlWvEE8nFAhkosDvIUPx-ckc.cer
File: Fu3IlWvEE8nFAhkosDvIUPx-ckc.cer (raw, json)
Hash identifier: Q9U21FVam2thjdaVx5krbflDXwhqscUQMWT+A9P5/Rs=
Subject key identifier: 16:ED:C8:95:6B:C4:13:C9:C5:02:19:28:B0:3B:C8:50:FC:7E:72:47
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EAF9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916223F/4EBF27B6F95C11E9B6272285C4F9AE02/Fu3IlWvEE8nFAhkosDvIUPx-ckc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916223F/4EBF27B6F95C11E9B6272285C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 10 Apr 2024 15:57:33 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 132216
IP: 103.134.208.0/22
IP: 2404:6bc0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125689 (0x1eaf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 10 15:57:33 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A916223F/serialNumber=16EDC8956BC413C9C5021928B03BC850FC7E7247
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:36:17:a0:95:b1:a2:8d:8c:1b:68:45:ee:49:
ad:a0:f4:6a:93:58:32:62:5f:60:98:55:83:dc:36:
f8:27:93:99:53:0f:12:92:c9:6d:08:44:15:d1:73:
99:e0:e5:85:ed:3e:f7:c9:a0:ef:ba:41:1f:ae:59:
d6:e3:8a:17:93:ff:ad:27:96:f5:e3:2f:89:2f:7b:
86:fc:18:73:08:9c:ec:59:c8:36:e0:49:b4:41:12:
c1:1e:e9:29:e2:f5:c0:88:7c:4a:74:15:83:6e:95:
25:f7:9a:ae:64:ac:fb:fb:2a:54:1b:01:74:97:47:
03:cc:26:58:57:6b:f6:ea:e2:10:4e:57:24:8c:75:
36:7e:bc:e4:f8:2e:f9:61:53:70:e1:08:c2:c9:4f:
f2:79:55:57:00:98:66:6c:23:9d:e3:6f:3a:70:d5:
e2:9d:96:58:49:f6:0d:3a:5a:45:e9:26:e0:ba:22:
fa:6f:f8:06:6d:5a:11:08:24:08:6c:49:84:6a:c3:
c2:3e:d2:2f:d7:7f:cb:8a:15:66:9e:6c:fa:96:21:
c6:c7:66:f7:9a:46:8c:2f:89:d7:14:f2:7a:a3:83:
4e:a6:27:55:33:63:9a:7f:1b:b8:a2:ac:24:3e:47:
7e:90:dc:b4:f0:e9:ee:7e:4a:ce:0f:b6:ef:a8:6b:
97:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:ED:C8:95:6B:C4:13:C9:C5:02:19:28:B0:3B:C8:50:FC:7E:72:47
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916223F/4EBF27B6F95C11E9B6272285C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916223F/4EBF27B6F95C11E9B6272285C4F9AE02/Fu3IlWvEE8nFAhkosDvIUPx-ckc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132216
sbgp-ipAddrBlock: critical
IPv4:
103.134.208.0/22
IPv6:
2404:6bc0::/32
Signature Algorithm: sha256WithRSAEncryption
79:50:90:d7:bd:88:6c:9f:a6:39:23:b6:fe:2b:97:06:ff:0e:
e8:04:69:57:47:d5:19:90:2d:c3:53:60:d5:95:a2:fe:f5:68:
ee:12:ca:e2:ab:7d:a6:92:63:57:e3:b0:88:7b:ec:4d:6a:36:
94:42:7a:17:d3:d9:37:b2:e4:3f:5e:f0:e8:d9:15:c8:ca:6e:
56:e4:40:6d:62:dc:ee:0b:a7:74:71:d6:7d:3a:8b:6b:e7:ea:
a5:d9:b3:a8:61:28:c4:4c:ca:dd:c7:26:ba:c7:c2:97:07:a2:
5f:6f:ee:83:49:9f:b7:51:57:27:96:2f:ea:0c:43:96:50:95:
95:97:ae:8f:f0:59:55:6c:f6:3d:06:f4:6e:f3:d4:46:48:58:
b3:e1:72:32:b2:5c:46:15:64:5c:d4:a8:e6:91:69:d7:a1:c2:
5d:f3:4f:5f:f5:e8:df:ec:40:02:ba:f0:a8:78:8d:6d:a3:0f:
2f:dd:ed:0f:fb:0b:ad:f3:c1:f7:3f:63:97:64:3c:fd:d8:e3:
47:8c:52:bf:cb:14:e8:bf:1e:40:9e:a6:89:25:97:cb:f8:f2:
c0:92:0f:36:1e:0e:2d:1a:c1:ee:d6:5b:eb:d9:61:ec:bc:ed:
a9:68:64:3d:35:6a:74:08:e9:a3:07:9b:b5:79:18:f7:6e:2c:
48:cb:2a:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 17:48:04 2024 by rpki-client on console-ams.rpki-client.org