Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V5ly5g6m9GOEiRrQ4_QXkMgIBfE.cer
File: V5ly5g6m9GOEiRrQ4_QXkMgIBfE.cer (raw, json)
Hash identifier: 6lv5pC0pgQBjOIe2HNqqZ+fM/rJy6ykU66PkBDI3+LU=
Subject key identifier: 57:99:72:E6:0E:A6:F4:63:84:89:1A:D0:E3:F4:17:90:C8:08:05:F1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D349
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919C1A2/474CD84446DD11ED92402320C4F9AE02/V5ly5g6m9GOEiRrQ4_QXkMgIBfE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919C1A2/474CD84446DD11ED92402320C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 20 Dec 2023 18:16:37 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 137221
IP: 103.105.74.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119625 (0x1d349)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 20 18:16:37 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A919C1A2/serialNumber=579972E60EA6F46384891AD0E3F41790C80805F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:23:ee:da:90:cc:3c:19:39:31:1c:c7:84:86:
ba:40:e3:28:c0:53:8a:a6:73:9e:41:31:bc:91:83:
98:ee:8e:3b:d7:36:44:3b:83:45:0f:ee:ea:21:06:
83:49:9d:b9:b8:77:66:9d:12:b5:13:f7:2f:c9:f1:
96:44:af:54:76:66:61:88:4f:77:4e:9f:39:99:91:
3f:64:b8:68:06:06:7e:f1:0b:65:de:1d:c9:5a:39:
cf:09:ec:26:82:ca:af:bb:d5:08:58:b0:e9:23:48:
ee:81:71:83:d5:5a:8b:8e:65:8d:1f:21:db:5c:06:
41:d9:83:f4:d6:6c:45:ed:84:eb:67:b4:6d:55:dc:
bc:bd:07:27:ec:80:5e:39:cf:86:d7:f0:e7:0a:0d:
a4:42:ce:c6:1b:9a:3a:6c:20:f8:17:e2:55:0d:7b:
c7:2c:4a:67:84:a5:d3:7e:86:a3:41:5d:84:11:ab:
7d:0b:25:af:6e:c6:84:14:63:f7:95:da:87:52:19:
35:85:2f:57:1b:70:09:f6:8e:87:6f:b9:09:ff:5f:
cb:79:65:cf:1f:24:b5:d4:bb:b8:d3:8c:09:fe:3b:
ef:c5:15:cf:f3:26:f9:dc:d3:cc:d5:84:d4:c0:eb:
90:47:4a:cd:71:8a:a1:f4:f6:4d:08:e6:d0:cf:9f:
7a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:99:72:E6:0E:A6:F4:63:84:89:1A:D0:E3:F4:17:90:C8:08:05:F1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919C1A2/474CD84446DD11ED92402320C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919C1A2/474CD84446DD11ED92402320C4F9AE02/V5ly5g6m9GOEiRrQ4_QXkMgIBfE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137221
sbgp-ipAddrBlock: critical
IPv4:
103.105.74.0/23
Signature Algorithm: sha256WithRSAEncryption
24:21:16:e6:74:98:5c:8d:33:e1:20:42:86:ba:5e:5f:25:29:
04:39:70:44:84:4b:70:c7:f4:d0:76:36:a0:e3:e1:d6:21:a8:
3f:12:63:67:10:17:fb:b8:75:11:b1:3a:3a:3e:b1:38:34:57:
b3:61:be:32:67:9c:b9:17:fa:a4:18:55:4e:cc:cb:9d:32:f1:
86:0c:2c:2e:93:d0:cb:bb:96:66:de:ef:b3:fd:8a:9d:07:f1:
2d:ba:90:74:45:bf:a8:d2:da:37:83:b8:dc:da:4c:e3:30:bf:
b2:a8:10:fc:66:3a:a5:9d:51:ca:06:75:6e:cc:c7:d8:9d:6b:
96:31:9f:65:43:0e:99:ba:52:0e:95:69:5f:57:ae:aa:ef:17:
b5:a4:54:60:40:5d:47:b7:47:54:39:fd:64:a4:4f:09:d9:f9:
58:b7:93:fb:3c:f1:15:70:7f:ea:b5:02:f4:67:34:2d:64:44:
2d:98:b2:e5:cc:ec:0c:d1:00:fb:a1:85:8e:92:b1:fd:d1:d4:
66:d6:77:c5:d5:03:a9:fb:93:07:fc:23:62:55:9f:eb:df:88:
a7:b6:85:49:20:61:1e:21:c9:db:06:9e:21:89:c9:85:ef:2b:
db:72:d3:ee:75:11:67:75:21:91:e0:12:01:8f:bf:d9:89:0a:
88:37:a4:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 07:43:01 2024 by rpki-client on console-fra.rpki-client.org