Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0xR9jSeprR3LgjR_FEsIVeBV4aA.cer
File: 0xR9jSeprR3LgjR_FEsIVeBV4aA.cer (raw, json)
Hash identifier: erGidrNMnB3eYYsPbd9nqgae8NG66JyOeiN78sRXqMk=
Subject key identifier: D3:14:7D:8D:27:A9:AD:1D:CB:82:34:7F:14:4B:08:55:E0:55:E1:A0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BBEC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91402E0/AA6BF4402B5811EE9FD2F01EC4F9AE02/0xR9jSeprR3LgjR_FEsIVeBV4aA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91402E0/AA6BF4402B5811EE9FD2F01EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 06 Sep 2023 14:23:39 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 134093
IP: 103.97.220.0/22
IP: 2401:8ec0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 08:07:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113644 (0x1bbec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 6 14:23:39 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91402E0/serialNumber=D3147D8D27A9AD1DCB82347F144B0855E055E1A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:45:89:9c:b5:cd:8e:5c:66:d1:ce:72:d3:5a:
75:57:48:16:5b:d5:b9:97:8a:3e:6d:0c:3d:86:56:
aa:1f:cf:69:b5:2b:9e:d8:0d:f9:d0:08:58:52:ee:
fe:12:c6:d0:4e:8d:b9:e7:7d:ca:e2:57:58:ea:a3:
54:31:f5:d6:30:a9:5b:fd:f2:e4:74:3c:8a:32:66:
ce:cc:64:f9:44:cc:43:ea:52:ae:a3:55:e9:54:5f:
49:26:7e:c7:29:93:7c:10:ce:09:33:f2:b3:78:ba:
17:78:b7:63:f3:9a:40:7a:57:ee:2f:e7:58:bb:da:
47:42:14:56:45:3f:e5:bf:55:db:93:00:38:76:e0:
42:46:b0:af:04:fc:b6:76:18:58:37:7c:be:e8:32:
1c:55:08:43:64:46:d7:44:6b:6b:6c:dd:ca:68:ab:
fe:3d:80:4f:d3:bf:e0:2f:f6:03:fe:5d:5c:31:c2:
e9:9c:e1:30:2d:48:63:7c:2b:1d:9f:c4:2a:62:53:
b0:66:a8:d6:5b:a3:1d:10:73:42:4c:29:20:f5:0d:
a2:eb:4b:5b:65:f3:7a:47:df:e9:6b:fd:ad:9c:66:
0e:be:82:47:92:db:81:78:28:d6:6c:01:f6:1c:f1:
40:f6:02:dd:28:b8:73:92:77:31:23:7f:37:ce:ef:
fd:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:14:7D:8D:27:A9:AD:1D:CB:82:34:7F:14:4B:08:55:E0:55:E1:A0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91402E0/AA6BF4402B5811EE9FD2F01EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91402E0/AA6BF4402B5811EE9FD2F01EC4F9AE02/0xR9jSeprR3LgjR_FEsIVeBV4aA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134093
sbgp-ipAddrBlock: critical
IPv4:
103.97.220.0/22
IPv6:
2401:8ec0::/32
Signature Algorithm: sha256WithRSAEncryption
b3:5e:ef:3d:01:86:00:bf:7b:39:90:0b:43:15:47:0a:56:2e:
ca:ed:ff:c8:6f:16:e3:21:ac:7c:4c:74:bd:af:63:fd:a2:48:
fb:73:78:23:e9:43:2c:34:b6:6a:11:ab:53:1c:54:41:e8:65:
21:93:50:05:ab:73:e6:ac:59:bc:d6:03:36:ec:8c:6e:61:ab:
68:a6:71:64:94:11:7b:0f:f2:59:c2:31:2c:72:c6:b8:1c:d0:
d2:76:de:0e:13:14:ad:27:a5:83:3c:78:90:32:fc:8d:05:af:
66:e4:b7:e5:3f:8f:a6:d4:50:0a:54:44:e7:44:f9:93:dd:91:
59:8e:2f:0d:57:a6:d3:b6:5f:1b:65:d9:c5:1a:a6:45:6e:ab:
b4:de:d5:a8:0b:96:6c:3e:cf:10:78:1d:fb:03:b7:ff:94:2e:
37:01:0f:5d:6d:39:5c:8f:8b:aa:d1:96:95:2a:ff:ab:4f:43:
03:76:0a:f3:d4:f4:60:49:22:37:7c:d4:4f:01:16:f2:69:69:
52:1a:b3:90:58:db:d7:10:64:1a:d4:ae:09:94:2c:35:84:28:
ea:25:2e:13:07:d4:01:1a:ae:33:d6:85:14:ca:8c:07:02:3b:
9b:a9:d0:2f:7c:52:83:59:f4:e3:33:fb:c2:d4:e9:7c:05:66:
b2:c9:92:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 10:18:07 2024 by rpki-client on console-ams.rpki-client.org