Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXpOCpmvFe8LN5DQ55YeiHUoGYM.cer
File: PXpOCpmvFe8LN5DQ55YeiHUoGYM.cer (raw, json)
Hash identifier: SRDWWZTJE1sNT0S0BIP0qVpW92p8wjYVbgl5lpYru+g=
Subject key identifier: 3D:7A:4E:0A:99:AF:15:EF:0B:37:90:D0:E7:96:1E:88:75:28:19:83
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B90A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/PXpOCpmvFe8LN5DQ55YeiHUoGYM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 27 Aug 2023 15:45:11 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 139301
IP: 103.141.6.0/23
IP: 2405:8c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112906 (0x1b90a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 27 15:45:11 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A915B880/serialNumber=3D7A4E0A99AF15EF0B3790D0E7961E8875281983
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:2a:bb:72:bf:e0:f0:75:e8:4c:ac:32:dd:b4:
f0:d4:09:5f:c1:22:f1:62:e4:19:9e:09:72:17:32:
c6:27:df:f6:91:37:c0:1a:95:33:21:8b:65:0f:56:
fd:3d:50:2a:f5:98:83:22:75:e4:49:76:0b:13:8c:
81:4f:29:a7:9e:16:82:5a:17:f0:f0:f2:6c:d7:15:
8a:85:81:15:6f:d9:7a:d7:ff:71:bb:c0:10:16:a7:
40:2c:33:d8:d9:c9:19:b6:30:9d:d5:69:3b:5e:b1:
ac:21:ae:f4:3d:ea:b4:2e:41:7e:1f:14:b5:82:c6:
23:04:0e:67:f9:57:ad:a7:a2:fc:60:b3:fc:3d:bf:
dd:9d:81:e8:27:67:25:dd:f1:7a:e7:e3:5e:eb:09:
1c:ef:38:aa:ce:b8:05:b5:0f:6d:00:7c:d5:3f:cb:
9d:91:fa:88:3e:94:c7:62:68:7b:8a:21:bf:65:b3:
5c:16:cc:87:c5:9f:79:c0:1c:4c:f4:b9:1e:b6:0c:
d7:d3:87:af:d8:e5:54:b4:b0:3f:3f:31:7d:02:c5:
17:24:63:08:9b:6c:74:68:f0:03:de:b6:db:b5:fc:
35:db:e9:10:de:2c:55:25:82:cc:77:c5:f1:35:d0:
7e:28:20:fa:89:a8:c1:d0:c0:e6:00:30:21:49:82:
05:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:7A:4E:0A:99:AF:15:EF:0B:37:90:D0:E7:96:1E:88:75:28:19:83
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915B880/1F5118A4A2EF11E99D4E0A5BC4F9AE02/PXpOCpmvFe8LN5DQ55YeiHUoGYM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139301
sbgp-ipAddrBlock: critical
IPv4:
103.141.6.0/23
IPv6:
2405:8c0::/32
Signature Algorithm: sha256WithRSAEncryption
aa:13:9b:b2:5e:81:c3:91:67:ab:b0:18:8c:a5:94:b2:af:4c:
cc:fb:6d:56:10:de:64:6e:52:89:42:44:0b:d3:ed:6f:3f:f0:
42:58:2d:b7:1b:5a:8c:72:23:35:f2:15:a0:44:ff:a1:0c:3c:
e3:84:35:ec:73:53:11:18:49:87:3f:62:ad:30:16:3b:42:13:
ae:00:e0:4a:4f:1c:c8:45:0d:be:88:16:47:bb:04:f0:5b:ae:
be:2a:b0:88:6d:c3:e8:37:14:77:65:cb:f7:bc:d3:65:13:02:
9d:37:e5:04:b2:0c:7c:29:4f:c2:7e:ab:67:c4:dd:9e:49:54:
74:ed:b2:65:59:d6:8d:47:14:69:85:a5:17:40:fd:17:ce:75:
67:53:04:33:be:e9:98:a6:1f:33:91:d3:9e:79:00:f6:f3:1a:
f3:f3:e8:01:58:e3:43:da:25:39:b6:7d:12:3d:60:cb:91:b6:
93:48:e8:b5:67:ea:33:84:65:4d:d9:c5:59:78:17:83:e8:90:
ef:dd:8a:59:4a:81:06:23:b1:48:8c:43:87:f5:f0:b2:15:65:
bf:4d:77:c4:77:d8:da:ad:f8:af:14:7c:b9:3b:64:66:4a:ec:
8c:a8:ec:09:28:a5:6a:19:73:f8:7c:4d:fb:80:b1:ab:e7:a1:
3a:a5:55:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 10:24:15 2024 by rpki-client on console-fra.rpki-client.org