Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OEBSLgVtM3Uf55akOVuNTf3lj4w.cer
File: OEBSLgVtM3Uf55akOVuNTf3lj4w.cer (raw, json)
Hash identifier: T7NSY6Qmx1U0q9n6AeCH4er4CGtISpBvC6UoB4BSDpo=
Subject key identifier: 38:40:52:2E:05:6D:33:75:1F:E7:96:A4:39:5B:8D:4D:FD:E5:8F:8C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EFC6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917FEF3/DDDC01EC985411EBBB47964AC4F9AE02/OEBSLgVtM3Uf55akOVuNTf3lj4w.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917FEF3/DDDC01EC985411EBBB47964AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 03 May 2024 16:27:40 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 136275
IP: 103.165.162.0/23
IP: 2001:df6:6980::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126918 (0x1efc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 3 16:27:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A917FEF3/serialNumber=3840522E056D33751FE796A4395B8D4DFDE58F8C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:33:c6:1d:a7:04:9b:b9:eb:60:de:d2:e6:16:
4f:a9:bd:45:9c:e2:65:f3:78:ad:ee:16:02:09:0a:
97:8c:13:c4:93:a4:ba:f0:58:74:f4:8a:4c:10:7e:
c0:dd:92:6f:40:25:2a:f7:c5:f8:1b:97:6c:d9:7f:
5d:02:b8:dd:20:6a:76:3b:19:5d:40:85:39:71:99:
99:dc:68:c8:f7:0c:94:93:ec:9f:68:79:63:30:df:
99:e2:51:fb:68:16:94:23:8c:ff:d5:4b:50:e4:6e:
6f:be:63:64:41:6b:3d:1c:eb:bc:d2:9c:3f:e8:2c:
60:1a:87:80:1f:73:14:04:0c:2f:ee:e0:07:83:ce:
ff:81:97:26:d1:c4:ad:6c:d4:f7:f4:d3:ee:9c:9e:
4b:a1:56:2d:88:78:15:bb:f3:5a:16:f8:34:7e:a9:
8d:58:b3:61:9d:cd:35:7e:a8:f6:69:4b:db:c1:b1:
a4:e6:af:42:34:c6:18:fd:eb:16:c7:2e:b9:55:4b:
4f:22:a2:22:ec:d5:49:ec:4f:e9:6a:04:b6:a1:70:
71:93:62:4c:f7:1e:30:97:de:ee:89:57:da:1d:63:
e1:b4:7d:9f:ec:9f:85:43:c3:c9:79:3e:b5:1b:1e:
b6:c8:8f:e9:06:1e:d9:51:04:c2:a1:23:0a:40:d3:
ea:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:40:52:2E:05:6D:33:75:1F:E7:96:A4:39:5B:8D:4D:FD:E5:8F:8C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917FEF3/DDDC01EC985411EBBB47964AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917FEF3/DDDC01EC985411EBBB47964AC4F9AE02/OEBSLgVtM3Uf55akOVuNTf3lj4w.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136275
sbgp-ipAddrBlock: critical
IPv4:
103.165.162.0/23
IPv6:
2001:df6:6980::/48
Signature Algorithm: sha256WithRSAEncryption
a1:1f:a2:fc:aa:96:4f:c3:60:83:b3:aa:af:8f:43:8d:41:97:
30:b7:7b:c7:92:ec:fb:7f:32:4a:13:40:72:d9:0d:03:b3:9b:
ae:83:7b:c2:01:af:0c:d5:3e:93:cd:80:87:95:53:82:bb:11:
7e:91:95:53:49:e9:06:2e:ae:ac:92:1d:19:4a:89:a5:29:a9:
09:d0:2a:cb:1c:67:7a:e4:75:fc:74:9f:ce:64:2c:16:b3:11:
a9:73:d0:10:70:2f:cb:be:79:e0:57:b5:46:5f:9f:64:9a:01:
ba:1e:51:2c:0c:fc:f3:02:74:7b:d1:4d:e6:f6:af:0c:5e:1a:
d3:df:d9:3e:e6:e5:18:63:87:c8:e5:2b:b4:aa:7b:3f:3f:07:
a2:66:10:3a:2e:e9:42:13:95:a7:c2:d6:17:a5:8b:6e:a6:dd:
4d:51:ea:ab:75:65:80:7d:fe:8e:2c:d4:4a:8d:57:de:ca:df:
24:ca:7b:e2:f4:38:57:36:cc:fc:d5:7c:74:fd:3e:82:ef:00:
cf:9e:26:c7:d9:a5:57:55:8a:17:91:80:e1:b6:a8:9d:06:19:
18:3b:6e:8b:1b:e4:aa:32:67:f0:54:ce:7b:ef:cf:7e:7c:fa:
c2:9e:20:8f:91:07:c6:aa:71:aa:66:15:66:c0:d2:fa:55:8f:
47:4d:ae:45
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 9 10:24:14 2024 by rpki-client on console-fra.rpki-client.org