Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer
File: 1O0zil4gh9gu9ML2RZm0ERJy5eA.cer (raw, json)
Hash identifier: aYbj/ZrRZfU5l60dY6NYg8xXBrAz2AE/TZC+eLIOi5A=
Subject key identifier: D4:ED:33:8A:5E:20:87:D8:2E:F4:C2:F6:45:99:B4:11:12:72:E5:E0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CE37
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 30 Nov 2023 18:15:20 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 141420
IP: 103.158.226.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 21:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118327 (0x1ce37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 30 18:15:20 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A914ECA4/serialNumber=D4ED338A5E2087D82EF4C2F64599B4111272E5E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:2a:50:fa:6b:23:14:59:dd:d5:9d:dc:ee:73:
54:fd:51:70:69:dd:85:3b:24:64:21:5e:ae:8d:7f:
30:d9:91:ea:bd:92:92:b8:b4:48:10:f2:6b:9c:ba:
0d:04:92:be:6c:48:82:5e:cb:9c:33:56:6d:a8:32:
b1:f6:da:ec:ed:f8:61:ad:89:8b:67:af:aa:98:f3:
da:27:cb:4b:63:9f:8c:1d:cc:e7:99:51:b9:f0:06:
e6:e4:0b:c4:d5:44:71:48:05:03:da:f1:cb:61:fa:
47:8d:63:02:a8:90:c1:b5:d6:84:7e:42:89:0a:a7:
4e:e0:dc:e4:9f:9c:a2:2a:7b:93:64:72:4a:f3:39:
5e:51:6a:0f:56:b8:fc:27:bd:a2:91:ff:c6:bb:16:
9f:40:63:a6:7e:ef:61:8e:a3:2d:2e:ec:27:f3:3e:
e2:31:2b:43:3a:20:82:53:d4:65:3c:0c:24:5d:03:
c4:44:89:0b:eb:e5:7d:16:44:63:46:ea:a7:ba:29:
3c:70:6a:be:55:6a:2a:18:00:3c:e2:42:6c:99:12:
45:e5:4a:e7:48:da:21:27:87:38:cf:01:c4:fc:02:
c8:d9:76:88:f5:21:db:41:56:a7:31:e9:28:1c:68:
25:50:03:fb:37:29:dd:fc:bd:ef:59:75:cd:45:dc:
7d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:ED:33:8A:5E:20:87:D8:2E:F4:C2:F6:45:99:B4:11:12:72:E5:E0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141420
sbgp-ipAddrBlock: critical
IPv4:
103.158.226.0/23
Signature Algorithm: sha256WithRSAEncryption
13:cd:fb:e3:f9:e5:9a:b8:ee:8e:b7:bf:e1:05:32:d8:54:30:
7a:15:26:a6:9a:11:28:38:40:8b:dc:14:97:f0:62:9b:c7:41:
ee:1c:ba:f0:7a:67:df:18:a0:7d:17:8e:91:39:8b:d4:eb:7c:
61:78:02:25:f1:86:d0:a7:e6:be:16:8c:87:85:2a:e7:e6:35:
d9:47:65:61:0a:de:95:bb:27:ae:31:0e:dc:fe:d5:72:ce:07:
ce:65:1d:a5:9e:64:45:4f:ed:8d:ac:67:5b:d3:c4:e9:30:50:
0d:3f:6c:ff:e0:6e:69:af:68:f1:83:94:aa:a0:ed:e1:17:f9:
ac:b5:0e:09:59:61:f7:65:48:60:3e:bc:47:6f:96:99:f7:28:
d1:cb:8f:a2:d2:ed:a1:f4:70:ec:c6:c0:40:ea:17:64:30:39:
9d:46:b8:89:56:ab:22:b9:10:de:7c:15:33:96:c3:64:16:c8:
c7:32:bc:39:45:cd:8d:70:65:9f:df:4f:ce:f8:d1:4f:52:e0:
e3:74:4d:4d:85:65:81:3c:37:78:1d:db:f3:dc:e0:4b:18:09:
61:4e:c0:30:57:06:7d:d8:27:89:0c:fa:2c:1e:61:8f:69:cc:
39:2d:53:30:1a:a9:3a:f1:fe:57:4c:2c:a8:a5:5a:6b:43:66:
d7:1c:3d:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 22:18:11 2024 by rpki-client on console-ams.rpki-client.org