Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer
File: iV-zzi-cLke5FLsqa2bHfVOXpAo.cer (raw, json)
Hash identifier: 2zGGudpZm8Yq6+T/015ZbuaKqUYP8h2zCeO0BWBegDA=
Subject key identifier: 89:5F:B3:CE:2F:9C:2E:47:B9:14:BB:2A:6B:66:C7:7D:53:97:A4:0A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D536
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 31 Dec 2023 04:15:09 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 132136
IP: 103.247.116.0/24
IP: 2001:df7:6a00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120118 (0x1d536)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 31 04:15:09 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91E6419/serialNumber=895FB3CE2F9C2E47B914BB2A6B66C77D5397A40A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:73:8d:fc:ed:37:fb:c9:f7:ef:28:4c:36:74:
82:42:04:bc:ba:b2:19:ed:40:e9:5c:35:23:7c:21:
b5:f0:c7:0d:e2:b4:13:e7:83:dd:66:ae:69:e8:fa:
dd:1f:bb:ce:9c:bd:2c:69:e2:8a:a6:ff:c4:6e:4f:
ce:6a:8a:71:43:e0:92:f4:b4:43:4e:be:46:35:56:
f0:8b:91:1c:1a:71:30:9e:10:ee:f6:a0:c7:32:db:
4b:69:9f:c4:58:1b:f9:fb:c5:43:7d:9e:40:78:f2:
7e:a1:0f:32:ba:13:66:64:8f:7c:a9:ab:59:7b:43:
28:7b:54:b0:86:0e:c9:06:af:43:a3:1c:18:3c:f7:
5c:a2:1a:32:46:dc:d7:10:72:61:54:c4:ec:ee:20:
54:8c:f9:60:1e:30:1c:4b:55:62:c2:1b:00:61:16:
40:38:b8:4c:7e:81:7c:20:48:52:9e:ac:c0:75:28:
fd:3a:5e:a4:4d:01:9b:96:0b:46:d5:74:af:dc:1a:
c0:5d:3d:2e:af:0f:9a:91:51:f2:ad:20:40:ef:a0:
6d:c8:00:00:09:70:ce:5f:7d:ab:a7:e7:6b:5c:fb:
84:7a:52:05:f8:f4:a1:2c:e4:20:12:6c:fd:72:e2:
e9:fc:ef:ee:f4:c9:fb:c8:7f:80:6e:2d:20:f4:db:
fb:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:5F:B3:CE:2F:9C:2E:47:B9:14:BB:2A:6B:66:C7:7D:53:97:A4:0A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132136
sbgp-ipAddrBlock: critical
IPv4:
103.247.116.0/24
IPv6:
2001:df7:6a00::/48
Signature Algorithm: sha256WithRSAEncryption
46:6c:61:37:ac:89:67:5b:42:13:df:a9:e6:d8:02:26:8f:af:
4f:25:08:b6:b6:4a:d7:95:60:fd:8a:18:10:92:2d:40:ce:c9:
0d:1c:8f:3a:04:66:47:bf:a4:3f:c5:e0:1b:37:87:f8:bf:c2:
84:68:cb:bd:30:ec:19:85:3a:4d:77:2f:e2:bc:ac:46:c8:c6:
7c:1c:f1:aa:1b:92:17:b2:84:5a:01:af:c6:92:9b:28:da:98:
7a:87:8d:04:3f:fa:26:11:fd:7d:4a:95:76:b5:f7:dd:8f:5d:
f8:da:a8:49:e1:67:c5:dc:65:65:61:7e:11:74:f6:f7:51:a2:
8b:e4:f4:0d:ec:8c:af:a5:14:10:61:41:ed:8d:ce:c0:1a:77:
03:0c:98:b6:33:f1:c4:3d:18:e1:44:46:f5:c5:df:2b:86:97:
8f:94:73:c9:84:4e:99:cc:ae:6f:16:a7:f6:c4:14:87:2b:fa:
63:c1:2b:d4:04:72:74:81:de:97:f7:5c:c1:ac:0b:f7:a1:4a:
11:e4:da:21:ea:7c:0a:e5:ba:f9:84:c5:48:b2:6c:d1:ca:48:
19:70:34:b3:d7:0c:15:01:45:9c:0e:36:52:f0:fd:7a:03:14:
ae:9e:aa:50:e9:06:fd:22:63:15:e1:0c:74:d3:a8:db:ba:15:
c4:bb:9a:cb
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 9 10:24:33 2024 by rpki-client on console-fra.rpki-client.org