Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-unC9P4gRTvpL8qxgsCVgcgTLfE.cer
File: -unC9P4gRTvpL8qxgsCVgcgTLfE.cer (raw, json)
Hash identifier: Zt39J0F3u5oLiY3OCNsZyJmAHGMTWDWluz8fmqZiq4Y=
Subject key identifier: FA:E9:C2:F4:FE:20:45:3B:E9:2F:CA:B1:82:C0:95:81:C8:13:2D:F1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FA43
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919103F/F8B4BCDCF06611ECA54C3742C4F9AE02/-unC9P4gRTvpL8qxgsCVgcgTLfE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919103F/F8B4BCDCF06611ECA54C3742C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 20 Jun 2024 17:22:49 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 140646
AS: 152600 -- 152603
IP: 103.189.212.0/23
IP: 2400:88e0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129603 (0x1fa43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 20 17:22:49 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A919103F/serialNumber=FAE9C2F4FE20453BE92FCAB182C09581C8132DF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:22:fa:9c:af:40:f9:ae:21:70:4b:9c:1b:2e:
ed:6a:8a:dd:42:54:b9:95:cd:07:e3:7f:f3:4e:bd:
94:ea:da:ef:53:5c:5e:5f:7f:21:20:0d:84:b2:37:
c4:b6:62:43:99:d6:a0:90:0a:3d:ce:a4:81:04:7c:
fe:87:15:b5:11:33:16:6e:cd:dd:e0:28:65:23:a1:
d6:5f:c4:13:30:b6:dc:16:3e:15:14:85:a4:db:6f:
8f:dd:45:9b:2d:70:e8:62:17:50:de:cb:b2:c5:5e:
00:34:34:13:7d:2a:05:8e:e9:eb:d0:c2:be:b6:a0:
24:28:85:b2:e0:42:0f:6d:37:be:b0:6b:0e:99:e0:
ad:8e:4a:fb:e2:25:17:7a:43:8d:02:28:2b:cb:55:
9c:aa:3c:fc:b4:a3:a9:a8:fc:c3:c1:15:d2:c7:93:
76:05:00:f6:ae:a0:6c:b5:e4:bb:6d:fe:cc:65:51:
87:d3:6a:6b:0a:6a:e2:da:b9:a2:95:05:e0:39:24:
d3:af:34:3b:41:45:8d:30:86:30:78:4e:77:35:c1:
f5:b9:80:5c:18:74:a7:45:f4:42:98:0f:b7:dc:57:
c6:ed:b3:e7:7f:54:58:1c:21:c9:2a:3b:e5:58:56:
cc:75:fb:5e:32:3b:2b:75:ff:fe:20:d6:d5:93:92:
26:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:E9:C2:F4:FE:20:45:3B:E9:2F:CA:B1:82:C0:95:81:C8:13:2D:F1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919103F/F8B4BCDCF06611ECA54C3742C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919103F/F8B4BCDCF06611ECA54C3742C4F9AE02/-unC9P4gRTvpL8qxgsCVgcgTLfE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140646
152600-152603
sbgp-ipAddrBlock: critical
IPv4:
103.189.212.0/23
IPv6:
2400:88e0::/32
Signature Algorithm: sha256WithRSAEncryption
54:dc:d6:8a:22:33:d4:7d:74:b2:21:89:31:d7:03:eb:3d:7e:
a8:c3:9f:43:f3:1e:4e:17:79:8d:9c:d2:ea:f5:1f:89:e1:22:
0e:f2:3c:b4:41:be:da:5a:2e:55:03:25:5f:df:46:55:2d:60:
ff:6d:d4:17:db:d6:95:1a:2c:4c:6d:70:6c:2f:02:8d:ad:78:
ce:24:b1:f6:cb:f9:f1:b7:e6:90:d5:6d:22:88:3c:32:0a:69:
4a:d0:33:ef:98:d1:cc:a4:42:8b:b6:5c:28:8c:e4:eb:6e:43:
97:92:ec:21:35:68:ae:06:8e:3d:f2:5b:26:b1:63:05:7c:1f:
c2:7d:40:dc:14:b3:69:d9:89:80:f8:6b:33:c7:9c:f1:69:34:
1a:8c:9e:36:d1:f9:48:6a:b3:51:97:0a:66:1e:84:73:c4:51:
14:1d:c5:a6:3b:a2:fa:93:89:a6:d4:14:16:e7:f7:0c:32:d6:
5e:34:fe:7d:f9:97:67:aa:a8:f0:a8:5a:3e:87:31:1c:da:5d:
e7:1a:ec:c9:f0:d0:98:62:c0:ec:b2:d7:b4:53:ce:eb:31:b6:
58:0e:be:41:e1:a8:14:f7:88:bf:62:72:99:4b:a3:bb:b9:3b:
a6:2f:9c:44:3a:ea:99:92:d2:03:71:f5:ed:83:0a:b5:b6:d9:
8d:0b:6c:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:07 2024 by rpki-client on console-ams.rpki-client.org