Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vn-asrLHlpJoXAMFWvlp5gtmuAA.cer
File: Vn-asrLHlpJoXAMFWvlp5gtmuAA.cer (raw, json)
Hash identifier: JJvOk3bgJ+UL42XB86skD154c2LGUCsheaaZzecOtaI=
Subject key identifier: 56:7F:9A:B2:B2:C7:96:92:68:5C:03:05:5A:F9:69:E6:0B:66:B8:00
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E769
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91ADB98/E2DA8518492111EDABD59C53C4F9AE02/Vn-asrLHlpJoXAMFWvlp5gtmuAA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91ADB98/E2DA8518492111EDABD59C53C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 30 Mar 2024 18:42:45 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 45867
AS: 132621
IP: 203.17.185.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124777 (0x1e769)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 30 18:42:45 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A91ADB98/serialNumber=567F9AB2B2C79692685C03055AF969E60B66B800
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:06:44:c5:77:c2:4b:1b:fe:b0:0a:ea:c8:37:
9c:dc:ef:6d:8e:6b:04:6d:ed:83:e3:f2:c5:0d:75:
e8:04:eb:c8:02:50:06:c0:dd:f3:dc:38:5e:65:11:
ff:d7:ce:ad:77:ec:31:5a:d7:9b:b9:6a:59:c3:7d:
d9:82:86:22:a9:88:ec:c5:16:2c:a7:85:33:57:e9:
d9:70:a6:a7:fd:a2:97:aa:db:10:fd:7b:a4:f9:d0:
b8:c2:c8:0f:4c:63:51:bf:61:e2:8f:83:69:ab:1b:
28:11:34:10:a6:d3:34:81:a4:13:a1:53:80:7b:6b:
92:b2:31:ee:e1:bb:1a:c7:f9:7b:af:38:d3:7a:62:
ed:4e:b3:57:81:f2:25:28:2e:99:eb:7d:08:4b:48:
bb:10:2d:9c:36:9e:39:31:da:2e:8c:16:8d:4e:90:
27:1d:47:51:e5:bd:66:aa:9d:c0:9d:34:6a:a5:bd:
44:bd:42:5d:38:59:5f:f6:64:ae:40:b7:aa:dc:9c:
fa:34:3c:9a:e5:d4:02:9e:53:d0:f3:53:ff:e3:64:
83:99:59:51:94:86:b8:bf:b2:b7:31:0a:62:df:b6:
9f:37:3f:3d:7f:89:de:64:3f:73:a2:5a:ab:e5:b4:
21:6b:81:f7:50:44:1d:35:07:cf:42:be:39:e2:f6:
03:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:7F:9A:B2:B2:C7:96:92:68:5C:03:05:5A:F9:69:E6:0B:66:B8:00
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91ADB98/E2DA8518492111EDABD59C53C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91ADB98/E2DA8518492111EDABD59C53C4F9AE02/Vn-asrLHlpJoXAMFWvlp5gtmuAA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
45867
132621
sbgp-ipAddrBlock: critical
IPv4:
203.17.185.0/24
Signature Algorithm: sha256WithRSAEncryption
99:29:95:4b:d0:63:ff:9c:e0:a1:51:f7:30:a6:7f:74:e0:cf:
74:6a:84:1e:cb:a2:89:49:03:7b:f0:32:b2:05:03:0a:d8:d7:
58:70:cb:2e:80:d2:7b:aa:51:81:8a:34:2b:94:b8:77:45:9f:
56:d5:7d:45:69:c4:f5:5b:2f:50:d3:51:cc:27:84:ab:fa:10:
38:dc:71:2e:bd:54:e1:b2:1b:b5:24:b7:cb:a2:1e:b3:96:06:
c1:14:4c:c0:6c:12:f1:5f:8e:d2:a6:c3:97:6a:fe:92:b0:ba:
9d:3c:05:5b:c3:dc:c2:93:6b:aa:f8:ef:cf:e5:63:0f:3d:f4:
be:1f:f7:a7:ad:cb:17:d9:a6:dc:ca:9b:68:ce:09:fc:b1:9f:
17:30:0e:48:06:cf:1c:90:d9:b6:6d:ed:23:11:b0:0c:7b:6c:
c7:99:95:e2:49:2d:69:c8:16:cf:6e:ef:7c:ea:ba:9f:f7:d6:
83:7c:7c:fb:c4:50:cf:df:13:57:43:68:3e:79:c1:75:86:68:
70:bd:cd:06:c2:4c:09:70:e7:13:b9:b2:48:b5:b1:f2:b3:67:
db:36:29:8a:21:ed:75:dd:29:9b:51:85:ae:c4:66:4f:a9:91:
1b:94:7f:4a:00:37:bd:8c:83:e4:48:44:1d:cb:8b:ec:8a:e0:
b8:7d:60:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 03:30:05 2024 by rpki-client on console-fra.rpki-client.org