Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0jmSiWbYmE6i-kU_xT-YhrWty5U.cer
File: 0jmSiWbYmE6i-kU_xT-YhrWty5U.cer (raw, json)
Hash identifier: WVM5+wTvQGXi7XFE4eN/YPrHQMy5WTQvWLfqg+U6utQ=
Subject key identifier: D2:39:92:89:66:D8:98:4E:A2:FA:45:3F:C5:3F:98:86:B5:AD:CB:95
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 019669
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917B6E8/D8E0DD3E01DA11EDA2AE1545C4F9AE02/0jmSiWbYmE6i-kU_xT-YhrWty5U.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917B6E8/D8E0DD3E01DA11EDA2AE1545C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 05 Apr 2023 15:54:58 +0000
Certificate not after: Wed 29 May 2024 00:00:00 +0000
Subordinate resources: AS: 59329
IP: 103.226.228.0/22
IP: 2001:df3:4800::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Apr 2024 15:38:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104041 (0x19669)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 5 15:54:58 2023 GMT
Not After : May 29 00:00:00 2024 GMT
Subject: CN=A917B6E8/serialNumber=D239928966D8984EA2FA453FC53F9886B5ADCB95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a8:81:cf:90:48:12:97:63:8f:1c:ae:a2:1e:
b5:a2:6a:dc:1e:e4:2f:ae:ef:ed:a7:54:5b:95:f5:
5e:f1:9b:8a:24:b7:1f:5b:70:60:34:8b:89:5c:bd:
ec:0d:e1:28:3d:ea:ab:8b:0a:00:86:1b:28:dd:67:
53:33:e6:35:31:46:c9:16:49:23:39:1c:44:bb:08:
96:59:d9:9e:f9:13:04:b4:49:95:d1:db:cd:d3:c7:
be:f5:38:5b:73:0b:3f:0b:09:af:ba:62:75:a6:d1:
46:1b:d8:17:4d:da:9d:04:52:f8:65:c1:b3:a0:22:
60:24:79:a4:61:12:4e:4a:08:b4:5a:75:b5:f2:04:
88:88:d8:4d:b2:39:51:61:16:19:a8:64:4a:33:43:
0d:ab:b9:a7:9c:6c:1d:64:15:28:ca:4f:c4:97:1d:
27:b6:06:d5:0e:0f:25:aa:de:9d:6b:ee:a1:24:e7:
dd:d3:ca:d0:0a:62:2a:93:68:cc:45:58:cd:94:43:
de:24:7a:f4:84:db:a1:a8:bd:90:4f:fc:9e:dd:fd:
aa:a4:74:80:f9:b9:ac:ef:3d:0f:a1:f6:48:51:e6:
ec:f0:ca:13:4d:52:9b:b1:dc:61:6c:93:0d:1a:c1:
f7:a3:db:cd:dc:07:b4:bb:b1:ce:89:6c:91:38:55:
f2:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:39:92:89:66:D8:98:4E:A2:FA:45:3F:C5:3F:98:86:B5:AD:CB:95
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917B6E8/D8E0DD3E01DA11EDA2AE1545C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917B6E8/D8E0DD3E01DA11EDA2AE1545C4F9AE02/0jmSiWbYmE6i-kU_xT-YhrWty5U.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
59329
sbgp-ipAddrBlock: critical
IPv4:
103.226.228.0/22
IPv6:
2001:df3:4800::/48
Signature Algorithm: sha256WithRSAEncryption
05:41:e0:93:46:1b:e7:9d:b7:b9:d4:66:4b:b8:fd:90:29:47:
d1:f2:a1:03:67:cd:85:3f:d2:b8:ed:1e:a3:72:0d:bd:b8:84:
d3:1f:72:e8:68:20:b0:94:5b:16:78:c8:46:ec:0a:c5:9c:f4:
d9:11:fc:de:b2:03:0b:75:a7:b6:8b:87:10:8c:5a:e1:74:b4:
d8:a7:f7:8b:28:85:49:5a:17:43:b9:f3:06:ab:e0:c9:9b:57:
30:ec:36:80:49:2b:22:bb:5e:e6:e6:2c:30:cf:e4:cb:87:ad:
59:c7:e7:8c:fa:e9:2d:f1:dc:1b:9c:25:aa:94:27:b7:2e:67:
48:cc:db:b7:d7:22:ec:d6:7a:ce:44:ae:8f:2e:2a:0f:48:bf:
a6:d9:fc:6f:11:2b:af:f4:88:59:36:32:cd:0d:fa:30:2c:9e:
24:57:38:7a:ad:ec:5e:84:02:2f:0d:b0:10:0f:3a:98:91:1b:
55:3f:78:d5:57:cd:4e:88:9e:9c:46:47:d6:a1:c5:a4:40:a4:
be:92:3d:c4:8c:a8:4c:fc:28:c7:2a:25:fc:14:2b:aa:47:0a:
a0:f7:f4:37:30:15:74:de:18:ab:14:3b:e7:53:cf:df:ea:a1:
27:88:fd:1d:eb:e9:9a:87:be:55:29:eb:97:22:dc:c2:f1:c8:
14:b5:cd:31
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Apr 18 16:11:20 2024 by rpki-client on console-fra.rpki-client.org