Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.cer
File: zRhBtsW-98R4Lmf2Y_PBl0YZk4M.cer (raw, json)
Hash identifier: w9iDcRBXYwv7VMup2Ki7A2oLtVryKn8qm6yvLY39dO4=
Subject key identifier: CD:18:41:B6:C5:BE:F7:C4:78:2E:67:F6:63:F3:C1:97:46:19:93:83
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B503
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 04 Aug 2023 05:29:24 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 7720
AS: 139247
AS: 151364
IP: 103.213.4.0/23
IP: 2401:5a0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111875 (0x1b503)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 4 05:29:24 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A911710E/serialNumber=CD1841B6C5BEF7C4782E67F663F3C19746199383
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:b8:ef:8e:1f:f8:8a:90:7d:6d:7a:d4:51:de:
5b:32:34:a6:9d:30:bf:e7:87:9f:c0:fd:49:f9:b5:
85:e0:55:ab:4e:99:bf:ed:0f:dd:67:b4:54:3f:25:
e3:41:be:65:61:73:f4:37:25:d7:ef:ff:7d:fc:de:
74:e2:ce:66:bf:d7:e2:54:5c:3c:8b:1f:b2:86:b1:
8e:b8:50:ce:b0:35:74:d5:79:1c:0b:ec:71:af:fb:
d8:4d:5e:ca:70:bd:cb:d6:9d:fe:b1:0a:f8:c7:46:
0e:98:36:ef:ae:c5:08:f3:7a:9c:da:c4:46:52:81:
f3:b7:aa:98:2c:59:ad:27:ff:cf:9f:ee:c9:a2:6c:
47:45:24:70:c2:ac:3f:cb:dd:7a:c7:c3:d2:ce:65:
63:32:79:1f:70:6f:d5:3b:12:2a:15:eb:54:1e:80:
98:df:e7:74:77:2d:a8:76:23:01:8c:8c:27:34:d1:
55:22:1c:7d:d8:df:6d:4f:7b:30:41:26:3f:0e:bb:
49:7a:e2:a2:25:6d:c9:c9:b0:f1:45:a6:55:8a:5d:
f6:76:29:8d:3a:57:86:fe:41:01:f1:3c:5f:8f:47:
28:0f:62:ba:b1:16:19:18:74:2d:bf:52:e1:67:64:
30:61:c5:62:b9:44:95:50:5d:7e:c6:5e:42:e0:5c:
44:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:18:41:B6:C5:BE:F7:C4:78:2E:67:F6:63:F3:C1:97:46:19:93:83
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
7720
139247
151364
sbgp-ipAddrBlock: critical
IPv4:
103.213.4.0/23
IPv6:
2401:5a0::/32
Signature Algorithm: sha256WithRSAEncryption
45:ec:de:5f:5d:ab:4e:60:5e:52:28:bc:09:42:b3:56:f5:00:
9d:c7:57:29:49:9d:17:95:60:5d:fd:e6:00:31:a3:de:85:6a:
cc:77:3b:76:a5:b6:56:4f:00:9a:7e:6b:83:83:29:c9:7a:1d:
b9:59:8f:02:cc:6f:a6:e2:88:ef:71:f3:8e:13:e8:1d:44:db:
0a:03:f9:3f:43:b4:85:dd:52:b3:eb:78:7d:a7:6b:cc:d0:2a:
ac:99:f9:d9:81:44:f8:c1:39:54:21:e6:12:81:92:d8:fa:f5:
c7:65:40:91:d3:2f:f0:49:9f:8e:99:3d:77:65:71:42:42:5e:
8a:a6:37:a1:b4:9b:24:8c:86:12:c6:40:b7:7b:ff:0e:2f:0b:
89:e7:c1:2c:72:c6:a3:23:e5:e0:aa:15:ed:51:37:8b:18:ad:
fd:f9:d7:3b:de:fb:df:42:ca:8a:24:03:72:fa:6a:cb:bd:0e:
5e:38:81:2a:1f:74:85:5b:c2:11:a7:a2:80:52:3f:42:9e:d7:
fd:20:99:34:a2:f4:eb:a0:6d:7e:8e:e6:08:97:b6:0d:0b:73:
f0:60:73:19:b8:84:3f:0c:3c:9b:9e:52:10:c8:81:8f:75:78:
38:98:35:b4:9c:61:25:81:4b:7f:09:1e:61:2c:28:bb:be:40:
84:87:64:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 07:43:25 2024 by rpki-client on console-ams.rpki-client.org