Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-GGkJMXdlLdB2BgJtff_OVVjdl4.cer
File: -GGkJMXdlLdB2BgJtff_OVVjdl4.cer (raw, json)
Hash identifier: RdjtJ2OtaLu2Q1k963JhCCGbiYbT9ClfmgxRZeTwvoA=
Subject key identifier: F8:61:A4:24:C5:DD:94:B7:41:D8:18:09:B5:F7:FF:39:55:63:76:5E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DC50
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915B6E9/0A16919C858E11EC9C028454C4F9AE02/-GGkJMXdlLdB2BgJtff_OVVjdl4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915B6E9/0A16919C858E11EC9C028454C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 01 Feb 2024 02:57:28 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 149496
IP: 103.180.244.0/23
IP: 2001:df0:6340::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121936 (0x1dc50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 1 02:57:28 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A915B6E9/serialNumber=F861A424C5DD94B741D81809B5F7FF395563765E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:a4:37:e8:88:c1:00:1a:b7:8d:82:8d:87:ba:
51:76:dd:43:5d:c8:04:3b:35:c3:84:51:15:ac:5c:
f6:7f:7f:03:b3:47:80:96:72:70:2d:b8:d5:40:fd:
be:4c:0b:fd:a0:c4:81:fc:57:2b:cc:82:ca:92:3a:
4f:dd:d6:c5:71:8c:0f:30:e9:63:fa:7a:36:f5:81:
9a:8e:9c:b0:00:00:55:51:15:9e:b2:b6:76:1a:b6:
a0:b9:6c:99:0f:0a:56:02:37:62:a5:f0:0a:28:2d:
a3:cb:08:38:26:d0:29:bc:3d:39:b6:70:e4:1f:dc:
45:8d:37:ee:1e:88:af:57:da:6d:b0:68:bd:bd:29:
c6:b6:fb:1e:e5:43:3b:63:6d:5c:ac:91:fa:04:fe:
19:1d:75:ab:18:43:1f:a3:88:2a:9f:28:e8:86:fe:
bc:6f:37:6d:30:2c:b8:e1:9a:b9:32:b4:8c:af:ef:
d7:34:d9:85:76:26:03:f2:f4:a6:b7:97:c6:51:12:
e0:49:c0:59:b2:1b:b1:25:47:93:18:e9:71:ab:b4:
5c:ac:32:1b:0c:6e:ed:d9:ac:8e:45:e3:2a:e4:11:
20:58:fb:e4:ce:07:15:11:f8:5c:7e:df:34:44:5b:
a7:f1:01:07:f9:f6:76:d9:98:f3:83:03:09:d2:56:
81:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:61:A4:24:C5:DD:94:B7:41:D8:18:09:B5:F7:FF:39:55:63:76:5E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915B6E9/0A16919C858E11EC9C028454C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915B6E9/0A16919C858E11EC9C028454C4F9AE02/-GGkJMXdlLdB2BgJtff_OVVjdl4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149496
sbgp-ipAddrBlock: critical
IPv4:
103.180.244.0/23
IPv6:
2001:df0:6340::/48
Signature Algorithm: sha256WithRSAEncryption
43:1c:cd:99:83:b1:35:96:00:89:30:8d:ca:d2:dd:52:94:e7:
a1:4d:ed:c9:be:66:a2:c4:72:8a:2d:b3:8f:69:71:8f:fd:7e:
82:68:fb:84:6f:e5:fe:e9:c8:8a:2d:d3:cd:51:06:46:3c:76:
11:1d:47:a9:26:b7:77:7a:05:ec:f4:5e:ce:2d:4a:22:45:aa:
4e:2b:09:90:29:ee:88:c2:ff:79:dd:0b:4a:54:95:f1:ae:a0:
29:22:1c:94:9d:38:dc:11:f5:0a:83:9f:95:83:ad:50:d3:2c:
8d:38:6a:7b:f9:f8:4b:64:8f:83:bc:59:24:80:5b:39:5a:92:
08:e0:12:28:ca:76:a0:11:7a:35:68:61:8e:e0:f6:23:15:7f:
7e:ec:2f:ee:51:c4:86:a6:de:da:a2:76:75:70:d9:11:4e:e5:
c1:c3:ad:70:10:2e:7a:df:6f:65:a0:a3:ee:f1:68:f2:14:dc:
4f:90:39:67:8b:5e:f1:79:b8:da:c3:3a:71:37:28:8e:6f:11:
18:d7:a2:e2:e7:e7:ee:92:9b:37:4b:6a:a7:0c:33:39:34:bd:
41:69:25:4c:39:64:a1:63:ca:4a:42:ba:b8:d9:d8:50:be:77:
1d:ea:49:9a:c8:c0:a2:4c:72:0c:9a:75:90:cb:8d:29:15:e5:
a3:e3:51:bb
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:08 2024 by rpki-client on console-fra.rpki-client.org