Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer
File: kIoYD5SUlgetwBExSb6IKuqo6I8.cer (raw, json)
Hash identifier: exluT9rTTuKDIqkbiItRt7zL1YmXjsmAEnSF3JRJpaY=
Subject key identifier: 90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 019CC7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 21 Apr 2023 10:50:31 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 151080
IP: 103.131.100.0/23
IP: 2001:df2:4340::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105671 (0x19cc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 21 10:50:31 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A9173C63/serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:cc:df:cb:73:c7:3f:cb:e0:ce:24:56:c8:a5:
a1:58:7d:52:07:4b:89:57:e1:ff:fa:27:de:6f:f5:
a5:a5:f8:1e:29:5f:1c:85:d8:23:fd:34:cb:ad:ba:
e8:62:b6:fb:43:f8:1f:cc:3b:82:e2:f4:54:86:ab:
73:c0:76:37:e2:5c:b1:57:7d:63:9c:13:98:6b:1e:
f8:b9:c9:f8:85:5f:0f:7f:f8:fa:64:00:d4:fd:01:
12:de:34:60:56:6f:69:bf:7e:68:e7:3e:98:27:cf:
17:9b:7b:1c:63:93:30:36:7e:f6:18:fc:4c:f4:ec:
d4:7f:4b:10:94:41:49:98:72:69:8d:2f:03:ed:bd:
f6:24:05:eb:0e:8c:de:93:0b:da:80:e6:31:4d:99:
a6:3b:44:7f:57:56:47:00:3d:71:d0:36:9d:46:08:
61:5c:b0:04:54:46:6f:70:03:96:b0:f5:e2:ca:4f:
ba:95:b4:bf:3f:06:28:5e:32:56:d5:e0:44:85:5a:
d4:df:c7:2b:05:19:bb:0c:d8:67:10:d0:d7:da:de:
d5:07:1b:de:14:33:93:3e:93:a9:82:06:e6:5b:5c:
63:9f:7f:65:d6:be:3f:ad:f5:c7:04:23:f0:7f:1e:
ba:f8:3d:6f:d0:9c:54:75:ee:4d:85:6a:7b:be:c5:
7a:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151080
sbgp-ipAddrBlock: critical
IPv4:
103.131.100.0/23
IPv6:
2001:df2:4340::/48
Signature Algorithm: sha256WithRSAEncryption
cc:c5:cf:38:d2:57:e4:35:2d:b1:d5:e0:08:37:b1:87:0a:e5:
cc:d7:f6:21:d0:32:3d:b3:88:24:43:25:14:79:03:03:7a:32:
9b:42:08:0e:fb:4c:65:5f:fd:c0:2b:53:6a:6d:54:6f:69:61:
f9:c2:e3:8e:ed:fe:08:e3:82:e1:2d:80:36:d2:ab:75:ea:e9:
6e:30:f9:17:c3:e1:e1:4a:6e:fa:ca:c5:f9:49:c8:2e:7e:1b:
20:f3:66:f6:13:2d:65:56:5b:39:18:24:5b:4b:89:95:6e:c2:
4a:70:3e:db:26:40:f4:f1:54:6c:b7:55:8c:67:cf:30:44:e9:
74:64:5f:7e:77:ea:71:e8:78:f2:e2:5b:4a:57:8e:26:f8:37:
8d:c6:64:bc:aa:1e:de:cc:c5:47:ea:1b:ae:e5:f5:1f:77:d5:
16:8a:2a:7d:ae:9b:b3:f8:4d:36:13:9b:86:d2:72:0f:71:a0:
02:7c:b4:23:18:57:28:41:17:3c:4c:9d:9f:1b:d1:8d:ce:1e:
af:38:b0:99:46:ac:59:e0:d3:ea:39:96:b8:ad:3a:94:5c:8a:
74:a8:83:16:0c:1a:4b:43:07:0f:0e:7c:c0:c4:7d:c5:ee:c9:
03:44:93:2e:62:2a:74:1d:5f:95:97:18:ca:ed:88:1d:2a:01:
12:8e:34:c4
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 9 07:43:16 2024 by rpki-client on console-fra.rpki-client.org