Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vyfu6NouLMefq6Da0ZyISCvRWdw.cer
File: Vyfu6NouLMefq6Da0ZyISCvRWdw.cer (raw, json)
Hash identifier: 3heRb3BKHUFRkewdOy5bDjngiZoEtyvDDOHGhziiEwY=
Subject key identifier: 57:27:EE:E8:DA:2E:2C:C7:9F:AB:A0:DA:D1:9C:88:48:2B:D1:59:DC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E8D3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9125C3D/F8029A46A5CC11ECB75EC52DC4F9AE02/Vyfu6NouLMefq6Da0ZyISCvRWdw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9125C3D/F8029A46A5CC11ECB75EC52DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 02 Apr 2024 14:13:32 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 136964
IP: 103.183.142.0/23
IP: 2001:df0:8840::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125139 (0x1e8d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 2 14:13:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A9125C3D/serialNumber=5727EEE8DA2E2CC79FABA0DAD19C88482BD159DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:7a:b6:a8:f4:4c:18:9d:3b:8b:64:95:4e:59:
73:f2:87:a7:02:8d:ef:4d:1f:ff:ce:64:72:7d:7e:
39:1e:75:ce:d8:d4:3b:06:d3:c7:04:17:95:61:40:
cf:95:50:42:16:f1:32:44:3b:a5:e6:52:44:df:4d:
7d:05:75:2f:12:ca:dc:49:f3:f8:fc:f9:75:1e:66:
dc:2d:a5:96:dc:0f:57:cd:2b:65:78:09:17:1d:16:
fa:91:34:00:5c:ac:e0:78:98:04:e3:7d:c5:2f:3a:
f8:e8:17:24:e9:32:27:9c:4f:d5:28:be:40:a4:cb:
63:5f:3b:51:5d:f0:e3:63:fc:ec:de:2e:c4:b3:ec:
10:17:64:12:c7:8d:78:2c:bd:a1:ee:41:14:ef:29:
eb:5f:f2:a2:ef:0c:52:04:53:63:84:4b:5c:a9:19:
a8:8e:6e:65:2d:dd:34:cd:9c:a5:6c:20:ea:6c:f3:
ea:5c:cd:35:60:2a:66:b5:5a:92:59:cb:46:1f:02:
d3:29:b3:55:06:dd:1a:c3:1e:ec:84:d7:c5:a4:63:
9c:5b:c3:22:7f:a1:f5:f5:9b:5a:4a:0e:e4:4d:41:
4b:0a:58:db:90:68:e8:c5:83:bf:4c:6f:13:ab:f2:
1c:f6:14:62:11:2d:46:f1:2e:5e:39:6a:92:79:8c:
6d:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:27:EE:E8:DA:2E:2C:C7:9F:AB:A0:DA:D1:9C:88:48:2B:D1:59:DC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9125C3D/F8029A46A5CC11ECB75EC52DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9125C3D/F8029A46A5CC11ECB75EC52DC4F9AE02/Vyfu6NouLMefq6Da0ZyISCvRWdw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136964
sbgp-ipAddrBlock: critical
IPv4:
103.183.142.0/23
IPv6:
2001:df0:8840::/48
Signature Algorithm: sha256WithRSAEncryption
bd:a1:4c:5d:86:c6:c4:ae:b1:8f:a8:07:3e:56:59:45:df:ca:
80:4d:e3:44:51:74:27:09:80:f4:de:20:b3:e7:08:e4:c0:f5:
3c:b6:2a:6f:f9:04:97:85:62:f8:8c:4f:9e:e1:ec:77:b5:f9:
6d:1f:8e:8a:49:60:77:ed:11:c3:a6:ed:30:94:d3:dc:28:8b:
40:87:27:e2:c2:34:8d:15:b9:26:49:cc:48:40:2a:41:49:08:
c7:cf:a0:1d:55:5f:f6:5f:59:5d:98:2c:33:7d:84:6f:4d:a4:
ef:28:eb:cb:bb:05:a6:e4:3e:5d:07:98:8e:c4:88:f5:b5:8f:
e1:31:b6:43:30:d3:48:36:e5:99:5b:4e:ad:c6:5e:3d:eb:9a:
39:18:98:27:bf:d9:ed:db:10:d1:c4:3b:9e:d5:51:19:24:ab:
f2:fd:a7:43:c1:66:c5:8a:43:65:57:13:72:c3:1b:6b:e3:90:
55:b9:78:2a:a9:5a:d8:a7:f1:6a:4d:4d:4b:a4:34:75:21:40:
5b:33:9b:90:25:15:46:21:db:c5:5f:d7:68:f3:a7:d3:5f:e2:
09:a6:c3:f0:95:54:12:e0:60:d6:2f:c1:c4:b5:41:f3:72:40:
34:fa:80:ca:f9:e4:f4:09:1f:3b:a1:a1:d7:d0:bc:45:40:a3:
cf:2b:36:12
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 9 15:21:15 2024 by rpki-client on console-fra.rpki-client.org