Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rg-o-v_IvkCewr34RjcFhjpF6Og.cer
File: Rg-o-v_IvkCewr34RjcFhjpF6Og.cer (raw, json)
Hash identifier: Ue4OfufPxiNBkAcG6iVsG4kjNi54kYPoBAfKeQjGRBA=
Subject key identifier: 46:0F:A8:FA:FF:C8:BE:40:9E:C2:BD:F8:46:37:05:86:3A:45:E8:E8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EE8A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9111F34/F960D1B401E311ED812E500BC4F9AE02/Rg-o-v_IvkCewr34RjcFhjpF6Og.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9111F34/F960D1B401E311ED812E500BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 30 Apr 2024 12:24:11 +0000
Certificate not after: Thu 29 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 133427
IP: 103.227.56.0/22
IP: 2001:df3:8800::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126602 (0x1ee8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 30 12:24:11 2024 GMT
Not After : Aug 29 00:00:00 2024 GMT
Subject: CN=A9111F34/serialNumber=460FA8FAFFC8BE409EC2BDF8463705863A45E8E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:0e:80:06:07:95:28:64:de:f8:c4:9a:b8:57:
28:ea:8b:fd:41:76:6a:d6:05:4e:c8:a4:44:29:42:
45:5a:fa:b4:9e:d1:af:f1:11:36:a5:d2:c2:11:f0:
75:48:1d:c5:58:b2:2c:29:86:86:44:7a:eb:df:e2:
84:4c:99:76:fc:5d:fe:80:db:b7:d6:3b:59:22:84:
ae:de:a8:24:86:ba:b9:3e:bc:4b:f0:35:ac:cb:53:
3d:8a:e1:11:bc:6b:7f:45:88:47:14:b2:07:02:9e:
12:d2:9f:ef:2e:e5:63:42:e9:32:d1:5e:c5:80:72:
59:85:f9:53:79:15:82:9b:91:1f:ea:e1:bd:1c:5b:
42:e1:64:08:aa:03:f4:4e:58:a8:98:88:d6:e3:22:
72:b4:cc:b7:77:88:c5:ac:ea:dc:19:74:18:6e:fb:
e2:d0:95:ee:c6:c0:f2:c3:b1:88:13:88:a7:99:7e:
c0:dd:8e:a4:ff:23:f3:59:29:d8:5a:f5:a6:44:3d:
72:c4:e0:a0:db:30:95:6f:28:95:0f:70:8e:12:67:
16:e1:c4:a8:57:c8:29:f2:e4:6a:f2:5e:6c:5d:ed:
3b:b2:04:82:dd:8d:86:f3:6c:cc:50:0e:e0:22:7e:
84:1c:5a:9c:10:9a:7e:29:2f:5c:74:d5:d5:b2:2d:
c9:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:0F:A8:FA:FF:C8:BE:40:9E:C2:BD:F8:46:37:05:86:3A:45:E8:E8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9111F34/F960D1B401E311ED812E500BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9111F34/F960D1B401E311ED812E500BC4F9AE02/Rg-o-v_IvkCewr34RjcFhjpF6Og.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133427
sbgp-ipAddrBlock: critical
IPv4:
103.227.56.0/22
IPv6:
2001:df3:8800::/48
Signature Algorithm: sha256WithRSAEncryption
95:12:6f:18:ef:a3:5b:86:32:9c:9b:a8:2d:86:de:c0:87:45:
99:92:cc:75:1a:ee:9f:e3:73:8e:94:97:9b:0a:75:8b:99:da:
44:03:02:0c:65:b8:27:fc:be:00:c8:b2:42:ee:b0:f1:a6:b6:
30:83:98:1f:26:3a:99:65:0b:a8:30:7d:9e:7e:66:0e:31:f5:
3d:08:17:0f:6d:b6:0e:65:71:1c:56:fd:f1:f3:2c:11:7e:2b:
34:16:d1:3e:9a:4c:42:30:48:05:73:7a:a0:69:98:c6:55:78:
86:7d:ee:84:07:17:ff:e0:c7:33:d1:20:f4:e1:fb:24:e2:4d:
c1:31:9d:c2:0b:06:68:69:e6:1d:26:e9:15:60:ed:f4:72:91:
a1:f0:69:2f:a3:30:2e:14:a6:69:ad:c0:a1:38:61:8c:ca:f3:
d2:6b:21:8e:72:1b:15:7e:04:cb:8f:46:43:62:83:ac:9e:2f:
ad:24:8a:59:13:51:5d:51:bb:39:e6:95:68:32:97:30:b1:eb:
30:c6:49:33:43:09:df:0d:85:4f:4b:e2:6f:90:95:0b:82:db:
a0:2e:c4:3c:96:fe:04:b2:93:24:40:6c:99:8c:b1:94:8d:91:
a1:45:dc:63:3a:7f:9c:23:79:76:ab:b3:89:cf:54:7a:8a:7e:
49:0e:8d:98
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 9 10:24:17 2024 by rpki-client on console-fra.rpki-client.org