Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eWpEzxtw9Kn55qX_sAm7eGDzVYA.cer
File: eWpEzxtw9Kn55qX_sAm7eGDzVYA.cer (raw, json)
Hash identifier: giu61QVZt3K3ZxqozY/K3vBINLozQVspUdvA2MI88/Q=
Subject key identifier: 79:6A:44:CF:1B:70:F4:A9:F9:E6:A5:FF:B0:09:BB:78:60:F3:55:80
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EFC8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9182B6F/F7F9476EC8B011ECA8847949C4F9AE02/eWpEzxtw9Kn55qX_sAm7eGDzVYA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9182B6F/F7F9476EC8B011ECA8847949C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 03 May 2024 16:46:04 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 134242
IP: 103.111.16.0/22
IP: 2402:9340::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126920 (0x1efc8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 3 16:46:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A9182B6F/serialNumber=796A44CF1B70F4A9F9E6A5FFB009BB7860F35580
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a0:82:4b:a7:31:a7:67:6b:b3:6c:bc:f5:79:
35:95:e3:c6:1b:57:3d:f5:5c:48:6e:6e:79:1f:9d:
7b:2b:fc:1b:91:97:fc:3f:43:19:5f:9a:7c:12:c0:
54:57:d3:d2:df:8e:74:50:03:b3:22:d7:0d:ee:4d:
70:dd:b3:31:da:ae:14:7a:50:71:e3:66:0a:5b:8c:
fc:d5:da:1b:52:5e:0b:e0:86:c3:7e:4c:6f:e9:21:
1a:c0:91:8b:69:d9:ab:33:13:38:fe:1e:ae:e1:58:
26:0c:e1:bc:0c:e2:ce:34:49:4c:52:22:06:92:e4:
8c:00:19:ae:68:c3:3d:af:e4:49:2e:52:1d:85:ae:
56:27:61:11:6b:7b:95:26:d0:f5:50:25:26:fb:0a:
0d:4f:74:88:35:aa:59:37:a0:6a:f0:5b:06:6b:3a:
e3:df:77:ac:49:79:da:a1:5e:c7:8f:17:29:1b:62:
b0:5f:63:45:93:25:f5:ab:eb:c5:44:84:50:2f:d0:
ee:2c:82:ab:7f:5a:97:e4:cb:41:e6:c0:c6:c2:f5:
44:57:06:4f:a9:bf:30:9e:35:60:24:7b:37:71:ac:
de:23:cd:3f:67:1c:ae:82:be:70:44:f9:68:7c:9d:
88:b9:40:72:83:6f:fa:f0:37:5a:3a:49:35:30:52:
2e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:6A:44:CF:1B:70:F4:A9:F9:E6:A5:FF:B0:09:BB:78:60:F3:55:80
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9182B6F/F7F9476EC8B011ECA8847949C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9182B6F/F7F9476EC8B011ECA8847949C4F9AE02/eWpEzxtw9Kn55qX_sAm7eGDzVYA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134242
sbgp-ipAddrBlock: critical
IPv4:
103.111.16.0/22
IPv6:
2402:9340::/32
Signature Algorithm: sha256WithRSAEncryption
d3:dd:a2:89:55:b0:01:af:f6:3b:84:5e:f5:43:fc:da:a0:a9:
08:18:e7:c8:b2:d2:c5:0e:3f:fb:3a:af:36:71:8d:ab:8c:9d:
b4:39:5d:3c:db:eb:de:cb:8a:fe:9a:6f:27:07:2e:ca:18:6f:
a6:20:1f:33:17:e5:6b:53:0e:d7:0e:9c:ae:02:e1:64:02:b2:
c4:07:45:42:36:06:9b:f6:35:f6:4c:34:fe:60:41:57:8b:b7:
f8:94:bd:f5:f7:78:fb:4b:a3:25:58:44:04:7e:30:cf:c9:c6:
2f:e7:de:fd:fd:c5:bf:aa:89:f8:64:8d:94:7e:c6:41:6b:3f:
b6:a8:72:2d:35:cd:03:8b:a9:a4:61:61:07:d0:0e:70:3d:fa:
ea:90:f6:f6:c5:e5:d4:3c:03:da:b3:4c:c3:12:cb:46:77:e2:
7d:4d:cd:4f:90:e8:2b:2e:e4:fe:d5:3e:34:f3:99:05:b2:2d:
c7:8a:40:d4:35:89:f5:ea:47:24:7e:9a:93:1e:ed:33:69:5f:
b0:99:9e:d8:7b:a1:c6:3c:be:29:3f:79:e2:8e:59:6a:4f:ea:
78:ff:4b:da:91:a7:69:48:54:26:2e:79:3a:45:3c:2a:ae:39:
d3:6a:9e:2e:e6:78:47:63:18:d2:29:b5:5d:91:6f:e3:d7:94:
48:8d:f0:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 15:09:45 2024 by rpki-client on console-ams.rpki-client.org