Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J-bLGInAo_NvkfWOBZuImiZ5fJQ.cer
File: J-bLGInAo_NvkfWOBZuImiZ5fJQ.cer (raw, json)
Hash identifier: vsqmSGHhPiusnMkuMU2oT6pwTl4ZU6pvFwQVT7nyWBM=
Subject key identifier: 27:E6:CB:18:89:C0:A3:F3:6F:91:F5:8E:05:9B:88:9A:26:79:7C:94
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E134
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914E4E3/423B6FDC1D2F11E8A2FD3712C4F9AE02/J-bLGInAo_NvkfWOBZuImiZ5fJQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914E4E3/423B6FDC1D2F11E8A2FD3712C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 28 Feb 2024 14:26:53 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 55550
AS: 136262
IP: 103.85.160.0/22
IP: 2400:ad40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123188 (0x1e134)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 28 14:26:53 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A914E4E3/serialNumber=27E6CB1889C0A3F36F91F58E059B889A26797C94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:3b:96:7d:ac:4d:77:c3:0b:6f:d9:95:25:a1:
70:3c:d3:a6:f6:2d:7f:af:f8:8e:85:b6:41:6a:1e:
eb:2a:03:5a:08:54:98:09:f6:51:aa:6a:7a:55:55:
63:aa:f0:e8:f7:d1:67:7e:cb:3b:9c:3d:e2:06:31:
39:b7:54:a5:cc:e2:3d:ed:18:bc:4d:59:75:71:16:
5f:f0:68:bd:cc:14:15:1e:d4:c7:f4:e8:c3:20:e9:
5a:28:1b:b2:36:75:58:fb:7e:4c:d4:ce:2b:a8:29:
61:51:b9:f2:30:39:f1:f1:40:25:56:f0:07:b0:d3:
48:c0:49:a0:0a:ae:68:40:6a:aa:a2:6a:36:60:d3:
8b:39:e3:c2:27:99:4d:1e:ab:d8:16:05:fc:6e:8c:
91:90:be:2a:b0:7d:8c:db:49:d2:0a:8d:8a:bd:8e:
b2:85:16:16:36:cd:5f:39:a8:a5:5c:9b:e4:82:89:
5d:45:b6:09:1c:bc:7b:51:ff:cf:13:f2:68:f9:5a:
14:5d:af:9c:3b:20:97:02:ec:8f:3c:5d:51:d9:ec:
9b:68:ad:ed:55:f4:96:64:11:8a:f3:26:dc:1e:8c:
7b:3b:97:b4:62:b2:ed:01:96:2a:17:58:12:55:7e:
50:a7:30:13:09:49:13:49:34:f8:a5:c2:19:22:f3:
77:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:E6:CB:18:89:C0:A3:F3:6F:91:F5:8E:05:9B:88:9A:26:79:7C:94
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914E4E3/423B6FDC1D2F11E8A2FD3712C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914E4E3/423B6FDC1D2F11E8A2FD3712C4F9AE02/J-bLGInAo_NvkfWOBZuImiZ5fJQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55550
136262
sbgp-ipAddrBlock: critical
IPv4:
103.85.160.0/22
IPv6:
2400:ad40::/32
Signature Algorithm: sha256WithRSAEncryption
67:ec:ae:ba:0f:ab:f3:90:19:de:3d:22:db:3a:d1:fc:2f:de:
cc:76:fe:5e:2c:55:27:f2:c9:d4:c0:b6:77:e7:ef:7b:80:da:
b1:40:1b:74:ec:a6:39:60:9a:05:ef:6f:fe:ec:62:bf:01:e5:
59:8b:41:ea:cf:50:28:e3:ee:cf:f7:f1:af:5f:38:44:ec:19:
d3:26:7f:4f:e1:f1:6f:c8:d9:bf:9e:3e:e1:0b:a0:04:b5:f8:
df:18:d2:15:a3:c7:b7:e5:b4:64:01:39:68:b7:1a:b0:09:7d:
47:5f:3c:bf:61:dd:76:0a:75:53:91:3f:76:b2:51:66:4a:7e:
90:77:d3:36:02:c4:39:22:ed:21:8b:c1:78:5b:77:00:79:de:
11:60:a5:ce:af:13:53:ed:68:c2:ac:e7:ab:ff:b1:d8:c7:0d:
f6:20:eb:3d:80:63:b1:e4:8b:b1:46:bc:17:75:92:5f:08:90:
ac:53:62:b2:85:d2:5b:2e:6b:02:76:2c:1c:b7:de:38:03:f4:
41:4d:cf:3d:61:01:3f:ff:b6:ba:09:a9:c5:f9:63:43:68:ef:
e1:4e:89:d3:c3:1b:37:73:b0:7d:82:4d:e4:16:57:c3:af:f0:
a1:8d:86:b2:67:3d:1d:78:50:c8:9e:57:90:a7:28:a3:e9:75:
a4:1c:33:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 03:29:53 2024 by rpki-client on console-fra.rpki-client.org