Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer
File: iV5rynpcNtnzBEctDScTpILJ2yU.cer (raw, json)
Hash identifier: p5Entg42fVYn3MnOo6WDb6hM08h1ZpGU1Nl5z4RbPhs=
Subject key identifier: 89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EDCA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 28 Apr 2024 18:21:53 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 132169
IP: 103.138.202.0/23
IP: 2001:df0:5280::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126410 (0x1edca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 28 18:21:53 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91B829A/serialNumber=895E6BCA7A5C36D9F304472D0D2713A482C9DB25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:82:00:c3:91:03:3a:ae:1b:b9:1b:6f:b8:1e:
05:68:1a:ba:7e:af:8f:1c:72:ba:ed:c9:70:3d:4c:
c6:44:89:0b:8a:d6:80:ec:61:b0:94:f3:d5:f9:29:
80:bc:fe:1e:e0:00:fc:82:5f:0d:b1:40:c3:26:e4:
29:f8:65:7f:ac:28:75:2f:3f:41:e6:59:64:c6:c5:
bc:a3:9b:8b:a4:e5:66:36:a0:a6:51:99:3d:51:5f:
d2:a0:f4:e8:02:1d:2d:ac:17:02:f9:9c:65:22:cb:
61:56:ae:23:4a:87:09:42:6f:e6:8c:38:c9:02:e9:
5d:a8:66:b9:44:51:42:bc:e5:41:70:2c:3e:2d:66:
24:1a:b2:d3:01:60:59:e7:6e:ab:11:32:85:aa:6d:
4b:59:ad:31:e6:96:b0:4c:b2:5f:e4:d0:75:27:0e:
72:73:41:36:0e:f2:be:c9:ae:6f:2e:f5:10:15:4f:
44:c1:fa:fc:d7:ba:15:1e:58:65:e3:5f:3b:1f:4f:
c7:da:74:09:20:29:96:15:78:76:20:7e:34:99:3f:
31:05:3b:ef:83:1b:ca:d8:78:c0:c4:78:c6:8c:42:
73:99:be:12:76:43:7d:fe:ee:0e:8c:bf:60:87:41:
3a:47:1c:03:9f:a7:d4:b7:57:94:d2:42:db:d9:0b:
4e:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132169
sbgp-ipAddrBlock: critical
IPv4:
103.138.202.0/23
IPv6:
2001:df0:5280::/48
Signature Algorithm: sha256WithRSAEncryption
a4:de:6a:ff:1a:66:83:fb:60:ad:0e:0a:ed:ce:8f:fe:f7:3f:
77:17:1b:78:49:c4:e7:35:2c:35:08:35:a7:72:0f:93:8d:37:
4c:1d:ce:56:ec:2b:07:80:53:08:2d:03:f3:4c:d5:24:7e:2e:
f1:5e:68:29:4f:86:b9:ec:86:29:68:89:50:ad:83:4f:b8:93:
42:65:b9:3e:e8:1b:24:18:49:b4:2b:c6:43:67:81:19:66:d8:
42:21:9a:75:76:02:57:bf:0b:47:86:da:95:22:d4:69:fe:41:
a9:89:a0:ad:81:c4:4d:63:2e:a1:05:aa:7e:6c:b9:1f:68:3c:
25:f0:84:99:78:83:fe:be:69:d0:ff:58:8d:bc:32:65:84:73:
ef:1f:21:e9:c5:a2:79:a9:aa:95:2f:3c:18:49:07:b7:19:61:
6d:24:43:0d:26:0c:13:43:73:cf:18:66:e7:41:11:75:94:fa:
1f:90:04:b0:f7:0d:ac:cc:42:3f:15:db:84:1f:1b:6e:2e:e3:
98:28:e7:36:39:bf:a7:bb:46:fd:d2:28:36:80:5b:9f:27:4b:
32:33:57:b6:4f:1f:24:4a:1d:e0:63:d3:6b:40:0b:8f:5b:00:
4a:fa:c7:ba:b2:82:77:70:e0:ea:2f:1b:87:b1:75:77:10:37:
1d:80:6d:1f
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed May 8 20:36:56 2024 by rpki-client on console-ams.rpki-client.org