Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer
File: N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer (raw, json)
Hash identifier: J0wkmcHO5RDlaSeY+07HgyJXorf2+PFIbXuzvo0pTk0=
Subject key identifier: 37:B6:2A:77:25:1C:52:A0:4B:33:B8:2D:2E:D0:20:4C:92:7A:42:9A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EDB4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 26 Apr 2024 21:47:45 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 150791
IP: 103.101.98.0/23
IP: 2001:df2:fc0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126388 (0x1edb4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 26 21:47:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91FDA40/serialNumber=37B62A77251C52A04B33B82D2ED0204C927A429A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:9a:4e:36:c0:4a:77:7b:32:ea:34:cd:5e:76:
5f:fc:2c:7e:58:23:20:37:33:c4:ee:86:e4:22:d5:
6b:7d:cf:ca:52:05:5d:22:b1:90:9f:9c:8d:0f:b3:
a6:e0:b1:fd:98:b3:64:bb:d6:87:b8:76:0a:4b:a0:
17:34:1b:61:59:d4:3d:3a:cf:53:88:da:c4:75:5f:
22:52:67:dc:87:56:01:01:20:7d:a5:65:b0:49:1f:
af:90:03:e6:00:59:50:95:23:de:4b:e6:9c:c8:9d:
29:7f:90:32:89:1e:43:b4:6f:b5:bf:07:87:f5:21:
4e:9c:17:fe:29:0a:79:02:ec:35:e7:d3:4f:91:1d:
16:c2:98:0a:a1:88:07:b4:ae:f3:d2:8e:60:b4:61:
46:b5:7c:65:f3:af:4b:35:c9:f7:f6:f9:21:4a:8c:
9b:9b:21:75:8f:14:ad:a1:02:6e:f9:9a:fb:85:b8:
ce:e6:e5:1a:c8:8f:6c:cb:af:bb:e6:1c:18:b7:af:
31:fc:c0:71:55:f1:53:60:e8:9b:0d:e2:05:0d:b6:
9f:25:02:f5:91:5d:a1:40:97:0f:c4:1f:32:ef:c7:
4c:a4:e9:45:c8:46:f2:e4:b4:42:77:2b:a6:25:0f:
d9:82:80:6f:52:a4:ff:96:35:86:5d:7d:ea:7a:d7:
60:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:B6:2A:77:25:1C:52:A0:4B:33:B8:2D:2E:D0:20:4C:92:7A:42:9A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150791
sbgp-ipAddrBlock: critical
IPv4:
103.101.98.0/23
IPv6:
2001:df2:fc0::/48
Signature Algorithm: sha256WithRSAEncryption
43:b7:31:7f:e1:98:f6:83:53:cb:9a:16:86:4f:6b:5a:5f:1b:
28:0e:9e:79:79:f8:39:65:ed:e1:cb:4a:2a:82:b1:a6:29:c8:
f0:7d:e7:56:75:65:4b:ce:43:c1:ce:2b:7e:c5:96:c7:68:3d:
56:01:2a:7e:8f:45:58:9a:9b:8b:c4:42:1c:5e:81:82:5e:d6:
02:6f:38:0f:dd:f9:77:02:f6:2c:1f:94:f3:ce:01:44:0e:45:
a3:df:43:6f:45:61:54:5e:2c:5d:99:c5:f5:41:51:99:ba:9a:
03:15:34:91:e6:cc:8f:46:c0:c6:7f:12:49:44:4f:cd:df:d6:
db:e0:ec:e4:a5:8a:ee:45:72:ff:98:2d:51:0f:e1:44:78:e4:
9a:63:ba:89:fb:a9:74:33:d1:15:a8:93:36:7d:ea:d9:5d:04:
4a:46:55:72:9a:ca:57:b1:01:87:85:24:44:73:70:87:3f:56:
fd:92:f7:55:03:c5:e5:56:ea:3e:71:c2:90:96:2f:1b:0d:7d:
6b:89:1f:99:1e:35:ab:a5:3f:ac:cf:f7:a2:8e:9d:f3:b3:cf:
73:91:ee:fe:db:05:6f:27:f4:cf:19:09:23:b9:09:88:db:3c:
c8:a1:c2:b5:1b:7e:f1:88:b6:e7:6b:38:81:1d:cf:a2:cf:c1:
70:fe:ea:12
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 9 18:13:52 2024 by rpki-client on console-fra.rpki-client.org