Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1cBKCsLVKt_nBVZHjcsOHYHtENo.cer
File: 1cBKCsLVKt_nBVZHjcsOHYHtENo.cer (raw, json)
Hash identifier: //WlJjJxhoVvaOxh6+vZwv3LAHmbDBcSt75eFQG1a78=
Subject key identifier: D5:C0:4A:0A:C2:D5:2A:DF:E7:05:56:47:8D:CB:0E:1D:81:ED:10:DA
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A1D4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91284EC/EBF601FC48CF11ECA666B03EC4F9AE02/1cBKCsLVKt_nBVZHjcsOHYHtENo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91284EC/EBF601FC48CF11ECA666B03EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 06 May 2023 12:58:39 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 58909
IP: 103.24.200.0/22
IP: 124.150.136.0/24
IP: 203.215.49.0/24
IP: 2400:c6c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Apr 2024 19:33:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106964 (0x1a1d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 6 12:58:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=A91284EC/serialNumber=D5C04A0AC2D52ADFE70556478DCB0E1D81ED10DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e7:84:78:7b:01:65:f1:8a:a2:46:57:a7:8c:
8d:ca:c8:32:55:f9:6d:49:20:95:31:9f:38:f2:b4:
28:bc:46:3b:f2:ee:19:57:fc:14:75:4b:d3:f8:b6:
da:8e:04:f8:9f:20:64:54:34:c5:6a:71:d8:2e:d0:
7f:8c:24:52:1f:54:cd:a0:ee:d4:ea:4a:2d:85:f7:
0e:4c:5f:d2:28:72:b4:b5:f7:8f:76:a6:f1:ce:e5:
b0:1d:71:35:3e:3f:34:4a:a2:e0:6f:7c:55:6d:ea:
bf:8b:64:dc:fa:ba:9d:16:31:66:8f:ea:7f:62:5a:
9f:ba:65:3a:29:02:04:1d:b0:8c:d8:79:be:f2:d1:
00:b7:8b:81:67:91:f4:4e:09:fd:f5:f8:a8:8a:bc:
59:58:a8:dc:bb:da:e8:29:ad:96:6c:19:74:1f:37:
f1:93:ff:ee:c9:f7:84:5e:c2:1b:30:9f:72:ed:f9:
c3:7d:55:d8:1e:3f:ef:14:8a:74:dc:f8:7d:d8:84:
40:f0:a1:67:a8:73:c1:ab:f1:e6:0e:be:e2:45:78:
af:31:d7:ca:b4:b3:44:47:89:7d:18:62:d4:e1:45:
a6:45:9b:46:ef:02:61:a3:f9:f9:62:71:f6:34:23:
67:93:c8:0d:fe:85:54:d9:b8:4a:dc:e0:16:2e:c4:
47:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:C0:4A:0A:C2:D5:2A:DF:E7:05:56:47:8D:CB:0E:1D:81:ED:10:DA
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91284EC/EBF601FC48CF11ECA666B03EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91284EC/EBF601FC48CF11ECA666B03EC4F9AE02/1cBKCsLVKt_nBVZHjcsOHYHtENo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58909
sbgp-ipAddrBlock: critical
IPv4:
103.24.200.0/22
124.150.136.0/24
203.215.49.0/24
IPv6:
2400:c6c0::/32
Signature Algorithm: sha256WithRSAEncryption
2e:f0:25:cc:87:4f:be:28:6b:2d:13:1a:a2:4f:ca:c1:22:a7:
42:e2:43:f4:c4:e6:71:36:b9:e8:85:11:21:f8:b3:59:56:3f:
00:9d:c1:67:09:94:25:36:53:c1:5c:28:59:b0:7b:1d:e5:2d:
b4:46:8e:1a:61:d6:c1:34:2d:13:14:0d:84:cf:24:b4:b7:60:
d0:0e:0b:22:a4:7a:ef:8d:9a:3a:8c:76:3b:ea:b7:2f:3f:ed:
d2:65:61:cf:a8:ba:8b:15:24:d5:79:91:22:38:de:6d:31:d6:
50:22:d1:8f:66:41:74:a2:de:ce:34:03:70:1c:7d:76:a3:29:
e2:4f:ce:d2:7f:ba:55:f8:4c:30:5d:a1:9a:f7:08:53:bd:47:
fb:a2:90:6d:76:72:65:3a:60:a0:e6:cf:a2:1f:f0:5e:d5:6b:
28:95:af:4e:60:3d:82:c5:66:12:de:b3:12:d6:3e:f8:b7:7e:
9e:a1:ad:81:6c:e3:02:46:20:da:6e:ef:38:67:58:72:71:8f:
ca:b2:46:fc:2d:b0:c8:af:3c:48:75:81:b9:3a:23:a8:e1:2c:
0f:1a:11:15:3e:99:84:eb:28:bc:2a:96:87:ca:8a:4a:65:6c:
07:f2:c8:08:83:ee:68:67:6e:3a:20:a9:c4:d6:95:2d:b3:ac:
86:02:57:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 20:34:48 2024 by rpki-client on console-ams.rpki-client.org