Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer
File: UoaLCQH1W0B4uRpzRRym0iMSyKs.cer (raw, json)
Hash identifier: Id7ofK1/CRbwkdRx/nG14IaGsS1Xg9oJJmIS02WeDdE=
Subject key identifier: 52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E755
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 30 Mar 2024 13:41:36 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 138608
IP: 103.134.152.0/22
IP: 2404:6740::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124757 (0x1e755)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 30 13:41:36 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A913E2B3/serialNumber=52868B0901F55B4078B91A73451CA6D22312C8AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:58:e8:b6:81:99:8d:40:28:8d:ed:7f:b5:31:
38:a3:c8:e3:9e:68:24:a2:b8:64:11:d9:71:de:a7:
f9:78:bc:eb:7d:57:69:a5:34:6a:a9:c0:a9:6d:95:
36:5b:7d:54:d7:8d:7a:64:6f:2c:b9:db:35:6d:0b:
d9:4e:86:cf:51:06:32:0e:fd:5b:06:a9:0f:94:6f:
9c:90:00:1c:37:9e:db:e9:39:eb:fd:e0:ec:c5:85:
05:b5:f2:87:0a:3f:40:3c:2b:60:54:85:dd:58:60:
e8:f4:5a:a9:27:9e:c3:74:75:6e:d7:f2:6f:5a:3d:
78:4e:4c:4c:f9:42:46:24:eb:34:cd:7d:c6:6a:9a:
5d:3c:79:5f:e0:bf:b2:8d:e1:61:a7:ff:16:6a:ce:
02:dd:01:ab:bd:57:b0:8c:ad:6b:3e:18:a7:f2:7a:
72:35:e0:1b:1c:9f:6d:35:b1:41:25:b1:4d:7d:b7:
6a:e4:3d:be:ba:70:96:40:6f:31:2d:b6:ea:6b:6b:
ad:91:1d:a7:8a:69:7e:0c:ef:e3:73:ea:79:d7:4a:
31:a9:a6:9f:a9:75:15:63:d3:cf:87:6d:99:cc:50:
0d:ad:5c:32:8a:02:ce:96:71:d3:c4:57:72:25:bc:
d1:5e:4e:3d:c3:d2:17:31:e8:8d:28:20:23:23:09:
b2:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138608
sbgp-ipAddrBlock: critical
IPv4:
103.134.152.0/22
IPv6:
2404:6740::/32
Signature Algorithm: sha256WithRSAEncryption
8a:57:58:a9:5e:91:31:b7:8f:8c:a8:5f:b8:6d:cc:95:39:31:
37:05:a5:43:a6:e8:fe:ce:ea:10:10:7a:37:f4:0c:12:18:57:
1a:a4:cc:2b:86:4c:d6:51:b7:33:93:c0:4c:f4:4e:7f:47:b7:
9d:82:99:35:37:53:d4:01:5a:0f:95:dc:47:1d:46:32:b6:20:
c4:99:f4:51:40:fe:18:30:0b:cc:a6:a9:a4:41:dd:a2:81:a2:
be:a7:e8:e3:c8:54:ca:e6:66:b5:2c:42:d4:6d:11:bd:8e:d4:
86:43:65:da:16:4b:e1:78:70:5e:16:27:46:e7:ab:98:c2:7f:
28:a5:55:4b:51:ba:e5:ad:f4:db:c7:78:11:59:14:d5:30:49:
d9:6c:0f:b0:78:7b:8f:ab:e7:34:98:fa:65:59:84:d4:5b:8b:
1e:7f:69:d3:02:00:05:63:b1:c5:db:6d:6f:79:86:12:53:c1:
cc:9f:b9:43:07:00:70:08:df:b7:6d:51:6f:90:78:eb:45:8f:
c7:a6:24:cf:c2:62:27:f2:ca:97:20:98:e3:cc:1c:a7:80:c2:
ac:90:7b:76:37:02:65:50:ad:88:e8:f8:ad:b1:93:c2:b1:ac:
d3:3d:e7:05:4d:9c:76:f0:83:f0:66:40:43:5b:be:1d:64:d1:
89:fa:2e:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 03:38:29 2024 by rpki-client on console-ams.rpki-client.org