Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer
File: 1FLGfvaHRDivqZOoStCrwYUWkhs.cer (raw, json)
Hash identifier: SqKmf0a6Ft0vaodTwCJl6cNv5o3tmMBwjUxx/iaNDgo=
Subject key identifier: D4:52:C6:7E:F6:87:44:38:AF:A9:93:A8:4A:D0:AB:C1:85:16:92:1B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C3F4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 13 Oct 2023 14:26:41 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 150316
IP: 103.5.216.0/23
IP: 2400:aaa0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 13:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115700 (0x1c3f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 13 14:26:41 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A915FD27/serialNumber=D452C67EF6874438AFA993A84AD0ABC18516921B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:51:db:b1:86:76:30:84:79:89:35:00:6a:49:
f6:98:93:e5:fb:8f:df:a9:ef:d2:51:fb:dd:50:44:
f6:f1:61:1e:20:84:24:ea:fc:e6:db:d1:11:6a:01:
65:be:04:a5:5a:d3:23:c4:69:52:42:ff:b1:d4:11:
b8:b7:0a:cb:44:86:6a:9c:bf:14:be:43:35:f5:8f:
27:c8:f4:54:a1:76:0c:10:f6:97:5f:11:d9:15:13:
8e:ba:12:1b:a7:0c:4d:a8:76:a8:30:cd:0d:e8:db:
d0:f4:03:ad:61:63:bf:d0:19:84:2c:fb:f9:ed:57:
81:f5:ba:bc:8d:55:fe:57:0f:a4:41:b0:2a:1e:e5:
21:00:5e:e2:64:76:ee:8a:ab:b6:7b:da:8b:96:c7:
a2:b5:0c:d9:94:a1:a3:14:77:5b:1e:71:ff:4d:a5:
08:5d:d5:67:93:50:5b:bb:ca:38:85:f1:a8:fc:3c:
49:4b:9a:33:f5:92:d8:a9:50:a5:e6:10:bf:1f:b1:
21:75:cd:3a:dc:9d:af:9f:0a:06:2b:89:86:67:01:
ba:33:49:15:83:a7:60:f4:8e:c9:55:63:a5:fc:ea:
0d:51:72:66:b3:f5:9c:b3:de:e4:2a:26:37:7b:cf:
36:a5:f3:15:47:31:db:f5:bf:44:87:1e:d7:dd:e9:
a4:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:52:C6:7E:F6:87:44:38:AF:A9:93:A8:4A:D0:AB:C1:85:16:92:1B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150316
sbgp-ipAddrBlock: critical
IPv4:
103.5.216.0/23
IPv6:
2400:aaa0::/32
Signature Algorithm: sha256WithRSAEncryption
39:d4:b6:3d:b3:d3:e6:99:cf:af:95:a7:dd:c8:46:73:e4:3a:
2e:e6:d7:73:1f:5b:3d:f2:a5:01:77:79:88:6c:55:e7:dc:f9:
6f:e6:58:63:2d:9b:b6:e4:25:ff:a4:23:75:25:fe:0e:8b:c5:
c9:f1:17:3e:79:f7:99:7c:07:4e:3d:f0:67:fc:a5:44:17:c4:
52:40:98:84:d8:b1:05:d0:f7:a9:99:83:2e:98:ea:b3:92:b6:
43:d5:9a:22:37:3d:99:92:9a:10:f4:01:64:93:65:42:00:0d:
e8:70:76:b6:ea:63:09:cf:da:a0:9b:1a:7d:d7:af:dd:6c:63:
1b:7f:d1:5b:3a:ac:3f:77:8e:9d:ea:26:53:59:de:b1:4f:4d:
0a:ff:ca:bb:9e:26:48:fb:d0:7c:60:1b:af:f6:b2:3f:71:36:
93:1f:f5:29:d8:43:aa:b4:b8:a2:5f:5e:81:44:cd:bc:37:d2:
50:3c:62:06:15:aa:c3:c2:f2:6b:17:fe:51:68:50:f3:4c:ca:
78:a4:8d:5c:44:19:bd:76:70:7f:40:63:46:fd:06:51:f1:c2:
cb:1f:68:eb:b5:d3:39:34:d3:d4:f2:06:9c:a1:9b:66:e2:34:
aa:5d:53:72:24:04:71:7b:01:03:48:25:71:ce:99:bf:ca:7f:
4a:37:0b:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 14:08:19 2024 by rpki-client on console-ams.rpki-client.org