Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3BtgUfXeSB9ma-a053V8t_lneQ.cer
File: z3BtgUfXeSB9ma-a053V8t_lneQ.cer (raw, json)
Hash identifier: kwrmmEJB0WqG58mc/nvtaJChmUpkPdeuuk1kI4GLuqY=
Subject key identifier: CF:70:6D:81:47:D7:79:20:7D:99:AF:9A:D3:9D:D5:F2:DF:E5:9D:E4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BC20
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/z3BtgUfXeSB9ma-a053V8t_lneQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 07 Sep 2023 13:19:15 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 10120
AS: 138450
IP: 203.143.128.0/19
IP: 2401:3460::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113696 (0x1bc20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 7 13:19:15 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91C9350/serialNumber=CF706D8147D779207D99AF9AD39DD5F2DFE59DE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:6c:06:f8:e4:0d:61:b2:2e:38:f2:ce:47:d1:
6a:73:90:1e:eb:83:40:a8:7b:08:0f:53:4b:2e:69:
c1:80:cc:2e:73:0e:b3:8d:5d:f5:f3:82:6e:7e:03:
cd:07:ca:7f:d9:8b:4c:0a:2d:97:56:de:9a:ad:f6:
4a:f4:46:fe:8f:ff:26:ad:b4:f2:0e:ba:b9:fe:21:
e2:fc:54:47:20:74:04:02:13:de:f1:96:a3:27:06:
79:b4:35:f3:97:ef:67:e8:f3:06:08:80:6f:f1:4e:
b7:64:a3:f8:f3:05:e2:35:ed:bc:77:58:03:52:08:
12:e9:47:35:06:b6:18:0e:74:f0:46:f1:f1:e7:a1:
01:ca:57:ff:4d:79:75:82:79:c7:00:8e:d8:7e:4f:
e5:6e:2d:f5:9d:82:c4:e0:81:cf:87:be:b0:0c:23:
61:59:21:e9:ee:ac:15:8f:a2:ea:22:28:b6:7b:fe:
7f:fa:2e:14:94:a5:1d:3e:03:6a:f1:59:1b:fc:04:
c6:e3:d7:e6:46:3d:6d:1b:d0:94:1a:83:11:b1:e3:
1b:3f:47:2c:12:3f:41:7f:2f:4b:1c:fd:82:0f:eb:
98:f9:53:d5:49:fa:80:5a:2b:e1:fd:3e:e3:96:93:
77:e3:28:f8:19:51:33:89:66:b2:10:ac:89:7a:b2:
48:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:70:6D:81:47:D7:79:20:7D:99:AF:9A:D3:9D:D5:F2:DF:E5:9D:E4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/z3BtgUfXeSB9ma-a053V8t_lneQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
10120
138450
sbgp-ipAddrBlock: critical
IPv4:
203.143.128.0/19
IPv6:
2401:3460::/32
Signature Algorithm: sha256WithRSAEncryption
bb:ac:0b:b4:ad:57:f4:64:80:6d:bf:be:3c:e0:54:64:42:a1:
3d:ed:d5:15:a9:e7:e9:e3:40:18:35:00:a7:9c:d4:ef:96:34:
44:9a:a7:18:81:db:4f:32:f9:85:b0:3d:88:7c:d2:94:2d:2b:
c5:de:22:f5:0b:af:a0:be:d4:72:08:87:76:31:a6:40:29:72:
91:87:c1:c2:2e:18:ba:49:52:f4:45:47:65:18:bd:a7:82:bf:
cd:17:12:f3:5d:e0:9a:a3:3d:10:11:4f:85:08:67:af:93:f6:
db:ec:47:79:02:95:69:bd:bf:ed:bb:35:c0:6c:f4:c2:79:e9:
b3:ad:c0:2d:8d:e4:88:c9:f3:a3:27:0f:e4:75:8e:72:aa:a6:
44:37:4a:84:9f:b5:6e:8f:5c:63:75:24:7e:88:b5:ef:05:bc:
6e:fd:59:1a:7c:d4:a8:71:b9:31:d7:fc:66:c8:1e:0e:71:6e:
ef:5c:fc:6f:00:f4:e2:b7:64:ef:90:c1:a3:01:92:c2:8a:e3:
57:56:59:c9:ed:b3:99:e6:90:39:25:84:2c:c2:08:cf:ca:db:
6f:cd:76:bb:de:d6:d0:c6:ff:41:6e:4a:f9:a6:db:4e:37:14:
de:a8:91:54:4f:ff:b3:08:6c:b5:06:49:c8:d8:f4:83:0a:f2:
d5:01:78:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 21:05:05 2024 by rpki-client on console-fra.rpki-client.org