Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T-5HlDq-E-OFVqc8KBuQ41SSN9w.cer
File: T-5HlDq-E-OFVqc8KBuQ41SSN9w.cer (raw, json)
Hash identifier: TapPMXf7mj1cX3J9qwP011SRzkShbbb4ZdSBA+tS5C4=
Subject key identifier: 4F:EE:47:94:3A:BE:13:E3:85:56:A7:3C:28:1B:90:E3:54:92:37:DC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E2D5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BF4A1/0F587A88B1CC11ED85F25A3DC4F9AE02/T-5HlDq-E-OFVqc8KBuQ41SSN9w.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BF4A1/0F587A88B1CC11ED85F25A3DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 04 Mar 2024 22:26:04 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 133329
IP: 103.163.208.0/23
IP: 2001:df6:2680::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123605 (0x1e2d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 4 22:26:04 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A91BF4A1/serialNumber=4FEE47943ABE13E38556A73C281B90E3549237DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b9:61:4e:63:0a:4e:86:82:80:d4:c6:7f:22:
eb:34:7d:a5:f3:e2:ba:63:20:20:10:25:ae:41:76:
37:b4:46:b8:53:0b:26:3b:f8:9f:03:d4:18:13:ba:
e7:37:44:3b:6f:f3:b2:98:7a:8e:8b:8b:45:0a:6d:
d2:f8:29:d0:74:3b:48:3e:15:06:70:26:05:81:ab:
20:ff:8b:9e:c8:f2:60:f0:fe:be:b6:f7:fc:8f:3e:
0a:85:0d:d2:8f:70:e8:81:3f:e4:8b:9b:81:3a:3f:
4e:3e:cc:a8:52:37:9b:a1:26:3a:64:6b:ad:99:a4:
87:ba:24:ce:60:fd:d3:b3:36:60:c0:23:63:90:28:
0f:4c:8e:16:49:f6:5f:1f:41:bc:33:cc:74:98:13:
17:24:00:f8:cd:c1:0c:40:ac:9d:46:11:c6:5b:c8:
37:eb:88:e4:a4:ee:ff:57:32:47:2d:4e:1f:9e:ae:
b3:34:ce:82:88:7c:0c:6a:35:49:34:29:98:c8:45:
ce:80:14:70:37:55:0f:9b:7a:ae:65:31:86:c5:7c:
06:0e:be:10:28:1b:8b:92:37:c7:73:b0:d6:ff:2b:
13:f6:ff:fe:8b:c7:43:c2:64:6f:9c:ae:9d:4b:89:
b7:93:7b:4c:e4:2b:a6:1f:76:1e:4e:29:9c:1e:b8:
30:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:EE:47:94:3A:BE:13:E3:85:56:A7:3C:28:1B:90:E3:54:92:37:DC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BF4A1/0F587A88B1CC11ED85F25A3DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BF4A1/0F587A88B1CC11ED85F25A3DC4F9AE02/T-5HlDq-E-OFVqc8KBuQ41SSN9w.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133329
sbgp-ipAddrBlock: critical
IPv4:
103.163.208.0/23
IPv6:
2001:df6:2680::/48
Signature Algorithm: sha256WithRSAEncryption
0a:0f:fb:8f:75:9f:ce:4c:e9:f7:03:e7:3d:d9:5a:b5:fe:36:
91:bb:0c:55:6d:a0:6c:ca:d9:33:04:63:45:94:03:44:6d:67:
b3:52:f9:75:83:83:69:92:76:fd:2b:f1:8a:9f:b9:c9:a7:c0:
f3:ff:38:9c:11:8c:7d:23:07:bd:ec:f6:e9:38:80:0e:c1:63:
6a:d1:2c:89:8a:aa:9c:e2:a6:fa:77:4f:73:ab:0b:23:c9:4c:
28:06:de:c5:28:47:df:a6:c1:57:56:17:12:9b:7c:3d:4d:27:
f5:cc:dc:53:59:a6:62:d7:e5:62:ce:7b:47:38:f6:9d:8a:5b:
69:04:13:7d:e7:1c:c0:0f:d9:81:e4:a6:9d:23:9f:9b:70:6c:
1b:7f:6b:31:99:d9:24:be:01:b0:8b:5d:01:f4:63:ba:85:20:
0c:10:ee:b1:d3:88:f6:ee:2f:86:62:f0:2c:2b:7e:e1:3e:10:
b5:d8:17:d1:70:69:89:d8:c4:b3:d6:1d:a9:09:59:6f:37:28:
2c:a7:d1:39:3c:b2:d5:e5:70:a4:81:eb:cd:47:da:18:49:b4:
01:b9:6f:23:cb:13:64:d2:6b:0d:5e:32:fd:d2:1f:34:6c:1f:
02:49:22:4e:af:75:8f:92:8c:b3:d2:b4:a1:18:aa:01:83:dc:
f2:7d:59:43
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 9 15:09:33 2024 by rpki-client on console-ams.rpki-client.org