Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0VLfcuXWwcb-QrZCN3w7CIEobec.cer
File: 0VLfcuXWwcb-QrZCN3w7CIEobec.cer (raw, json)
Hash identifier: 7+5WTBOCMZzwiS13rTvfyXZkDfwXiM1sdsXCHQSJiAc=
Subject key identifier: D1:52:DF:72:E5:D6:C1:C6:FE:42:B6:42:37:7C:3B:08:81:28:6D:E7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02056C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 06 Aug 2024 20:52:31 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 146957
IP: 103.172.44.0/23
IP: 2001:df7:5f80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132460 (0x2056c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 6 20:52:31 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91C0FAC/serialNumber=D152DF72E5D6C1C6FE42B642377C3B0881286DE7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:86:c2:2b:ba:8a:ce:9b:c5:92:3c:30:30:0f:
fc:71:c1:ee:01:f7:6d:c0:be:b1:3d:48:42:30:fc:
8e:34:83:f7:76:f6:83:49:18:f2:9f:5e:5c:ee:e6:
f0:fe:9a:a4:d7:47:47:99:fc:16:b4:d4:7c:03:ea:
a3:52:92:a5:87:98:9f:db:5f:8b:8b:e2:93:f4:bb:
d0:b8:fa:9c:c4:8d:e4:d9:6d:d8:87:07:f0:a9:ba:
01:79:9a:29:1c:22:0d:ed:38:1f:b7:2e:0c:37:fc:
1c:75:90:f5:68:1f:68:32:86:74:c1:25:c9:36:c0:
3c:63:c2:38:ec:cf:8a:c2:b4:e3:fe:6f:3d:e8:0e:
e3:7f:ce:8e:93:41:70:ac:fa:a4:c0:6e:d6:d1:40:
94:d8:2b:fc:70:6f:6a:d3:0a:12:dc:b8:b9:f6:dc:
a7:5a:32:0e:bc:7a:0b:8d:7f:da:aa:5d:c6:64:03:
7b:67:08:41:82:b0:4a:d9:15:51:6a:2f:9f:86:90:
f8:d0:31:5b:a1:54:f0:a2:54:c1:82:1c:a4:be:0f:
a0:c6:bc:14:f6:b8:9b:c4:de:62:75:49:51:bb:0b:
7b:ae:42:2f:7f:a3:71:77:8d:92:6d:6f:80:35:53:
3d:c7:9e:f8:91:39:e4:cd:0e:b7:1b:61:d8:64:f2:
7e:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:52:DF:72:E5:D6:C1:C6:FE:42:B6:42:37:7C:3B:08:81:28:6D:E7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
146957
sbgp-ipAddrBlock: critical
IPv4:
103.172.44.0/23
IPv6:
2001:df7:5f80::/48
Signature Algorithm: sha256WithRSAEncryption
a0:7b:59:ba:dd:85:f8:d3:4f:63:59:5b:ce:af:c7:7f:26:fd:
b3:25:94:b0:66:42:24:f9:9a:34:a6:12:dc:15:bb:e5:7e:ee:
97:c9:43:6d:28:8b:f9:54:75:21:86:8b:e3:57:1c:22:73:72:
65:ef:7d:ac:79:28:bc:83:d6:bd:77:9b:53:fc:3c:1c:da:f8:
47:49:ea:12:6f:fa:ad:11:f7:4b:b1:f2:16:57:9a:de:f8:4c:
56:30:73:31:52:27:56:ba:52:24:1e:ec:10:f7:7a:bc:bf:f0:
4c:d6:d2:17:0b:63:99:11:3b:08:4c:78:15:b3:34:3b:8b:3d:
7a:a7:c2:79:48:cd:0f:4a:27:a7:bd:a8:9b:55:87:84:18:f4:
0e:66:90:da:fa:cd:c3:b3:bf:16:1f:bd:1c:30:0c:7e:5c:99:
b3:f3:5a:ca:b4:3f:ba:05:76:81:e5:14:28:a8:05:82:ce:d1:
ae:bb:ca:aa:54:b2:c5:7e:d3:c5:8b:eb:5a:d6:c4:ce:ce:8f:
70:bc:ac:4a:0e:f6:1b:de:0e:76:2b:bc:6d:ce:18:1f:73:2a:
b5:0e:9e:13:36:6a:7e:1d:16:fe:45:47:f3:53:80:79:34:79:
58:28:32:f2:08:66:ca:1f:4d:85:81:9b:bb:9f:f5:ff:3b:1c:
b9:70:02:aa
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:05 2024 by rpki-client on console-fra.rpki-client.org