Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer
File: YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer (raw, json)
Hash identifier: CI45se3UW2sEiWkFpo24zsocI7bZuHXy2qdv+hGifcE=
Subject key identifier: 62:C6:B1:A0:B2:C3:A6:14:F3:CB:43:FA:BB:31:BF:81:61:6B:54:B4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D7C0
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 10 Jan 2024 19:00:36 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 58768
AS: 151353
IP: 103.140.116.0/23
IP: 203.190.8.0/21
IP: 2400:fa40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120768 (0x1d7c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 10 19:00:36 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A9120FD4/serialNumber=62C6B1A0B2C3A614F3CB43FABB31BF81616B54B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:5b:42:69:06:ec:4b:de:6b:ba:74:44:7c:b7:
a2:10:55:36:d0:c8:f7:a2:be:78:35:99:f8:a5:23:
2e:2b:cb:91:5c:37:b5:35:ed:80:29:94:ea:db:ec:
76:4f:5b:53:53:4f:74:33:2e:b9:8b:c1:dc:49:f1:
5d:d1:2c:06:3a:2b:82:d2:00:c4:4e:32:2d:62:c2:
a3:0c:e2:b7:70:57:a9:d6:b1:39:52:58:5e:f3:40:
1f:7a:6c:7b:9c:c4:69:3b:22:6c:a3:01:df:26:3e:
46:c2:55:e5:92:27:c5:dc:40:84:0c:ff:0a:c9:22:
c8:79:61:bf:11:bb:95:d3:8c:f2:e6:94:ce:10:98:
1e:77:88:b3:f7:fc:94:4b:8f:b6:58:64:c6:35:5a:
d5:5a:72:3f:ff:d2:7a:73:d7:e8:6a:3f:46:14:f5:
f2:4e:bb:74:c2:6b:4b:cb:5b:14:f7:13:b5:47:aa:
23:f7:53:74:c0:3a:89:10:f7:74:a4:25:00:4a:10:
65:8f:5d:f2:78:21:71:c8:8e:40:da:dc:8e:59:96:
1d:39:71:a7:02:e4:9e:37:62:b7:e1:06:80:3c:31:
63:c6:44:88:20:a3:2f:a9:90:09:a6:43:cc:52:b0:
e9:6f:e9:fe:d4:12:3e:66:1a:fb:90:2e:d9:b1:53:
7e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:C6:B1:A0:B2:C3:A6:14:F3:CB:43:FA:BB:31:BF:81:61:6B:54:B4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58768
151353
sbgp-ipAddrBlock: critical
IPv4:
103.140.116.0/23
203.190.8.0/21
IPv6:
2400:fa40::/32
Signature Algorithm: sha256WithRSAEncryption
0e:03:4e:38:ff:2e:32:2f:8c:f3:36:6e:de:b4:a6:60:1b:a2:
08:03:ab:ff:b3:95:3f:2c:c1:73:aa:46:72:c6:c3:80:a2:55:
6a:16:ce:4a:c2:94:ee:e7:a8:4a:14:83:1e:90:2c:3f:67:b9:
3f:37:26:3d:a3:e3:1c:d0:46:54:91:d3:91:a6:da:af:90:60:
df:0a:2b:71:41:53:ef:bc:49:5e:20:bd:9f:b3:6c:4d:59:cc:
40:8f:6d:17:e2:cb:61:1c:2f:04:9e:8e:b3:33:99:7f:3c:d0:
fc:4d:ee:8e:f5:30:2a:87:c0:ef:05:e2:3f:1c:44:c2:3a:82:
00:1e:45:9a:4a:a6:4c:5d:95:a5:f6:5c:ad:76:23:f8:ff:ab:
b2:f6:1f:30:56:4f:be:1a:76:f9:38:92:ed:4f:1f:06:b1:7d:
66:90:46:02:24:41:21:21:73:3b:b3:fa:94:3b:2e:9d:45:d1:
9a:0a:5a:dd:00:31:c6:ad:22:7c:bc:3d:00:78:1d:4d:f4:b7:
84:6e:b5:50:55:8d:c9:60:5d:b8:6f:b0:74:ed:3a:1c:08:ad:
25:45:15:cf:9e:bf:a4:93:63:53:21:f3:f3:59:0a:ed:50:2a:
fd:10:e9:5f:d1:22:26:7b:2f:d8:7e:85:5c:58:c0:e3:63:bc:
da:06:33:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 10:24:23 2024 by rpki-client on console-fra.rpki-client.org