Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vm0ktlTs43LnCp4-0K3-F34bhM.cer
File: 2Vm0ktlTs43LnCp4-0K3-F34bhM.cer (raw, json)
Hash identifier: WSGf5qqhC/T3uF8C5oLFESD4Ueum1LivKsX3DjW+yjU=
Subject key identifier: D9:59:B4:92:D9:53:B3:8D:CB:9C:2A:78:FB:42:B7:F8:5D:F8:6E:13
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B271
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914A947/2EFC7994826711EABBD3080AC4F9AE02/2Vm0ktlTs43LnCp4-0K3-F34bhM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914A947/2EFC7994826711EABBD3080AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 27 Jul 2023 14:29:21 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 138024
IP: 103.120.36.0/22
IP: 2403:5240::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 03:41:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111217 (0x1b271)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 27 14:29:21 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A914A947/serialNumber=D959B492D953B38DCB9C2A78FB42B7F85DF86E13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:05:c9:5f:f5:74:93:3a:d8:f5:27:32:77:06:
50:2f:23:76:cb:4d:d3:54:5d:00:ce:9a:2f:83:07:
b3:6f:5e:32:ff:5b:75:b5:fe:45:75:d2:b4:47:0e:
bb:f3:bc:5f:80:4c:dd:0d:f2:df:9c:72:ca:16:c6:
f4:e2:14:18:8b:83:2b:57:04:0a:41:6c:11:af:b2:
8a:d2:0c:ba:12:68:1a:0e:50:ff:7d:4f:2b:18:2a:
ed:a9:44:66:cf:cd:52:5f:ff:46:ad:cb:8a:38:ad:
80:68:00:3f:22:e7:bc:21:f8:84:f3:f0:50:2e:b1:
ad:96:09:84:bb:40:ca:3e:f5:ff:ef:75:c8:04:8b:
79:6d:ce:fc:16:c3:d5:fb:51:8f:41:71:5b:a4:94:
81:0e:82:92:0a:26:12:10:b8:a9:87:be:d8:c5:cb:
a9:57:68:46:a0:47:d4:bb:95:f4:78:9f:47:cb:b2:
c3:f0:5b:30:53:e8:85:aa:fb:ac:48:f0:8b:6f:00:
f9:e1:91:5c:35:44:0d:9d:7f:ab:3f:bc:79:84:80:
5e:43:91:24:e0:1e:fb:e9:b6:c9:af:13:83:e4:45:
79:71:c5:bd:d7:cf:dd:ab:30:06:ee:09:a6:f9:b7:
0c:15:0c:0a:fc:f5:22:af:d1:86:67:f0:3c:e3:fc:
39:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:59:B4:92:D9:53:B3:8D:CB:9C:2A:78:FB:42:B7:F8:5D:F8:6E:13
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914A947/2EFC7994826711EABBD3080AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914A947/2EFC7994826711EABBD3080AC4F9AE02/2Vm0ktlTs43LnCp4-0K3-F34bhM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138024
sbgp-ipAddrBlock: critical
IPv4:
103.120.36.0/22
IPv6:
2403:5240::/32
Signature Algorithm: sha256WithRSAEncryption
d8:93:55:22:cc:00:a9:f2:a2:09:0f:f4:6c:85:74:e7:3f:17:
ce:cb:27:e0:ce:0a:b9:7c:ff:6e:f4:3c:9e:60:f3:6e:2e:59:
a7:d4:a5:8d:9b:ab:7d:af:a5:8c:77:b2:42:a4:c7:16:43:21:
68:2f:07:09:59:99:ab:19:58:90:cf:48:1d:09:8c:58:e2:9c:
48:91:4c:47:fa:29:15:6c:1e:8d:af:64:da:86:6e:77:32:97:
50:60:b4:5c:1c:c2:58:42:8d:86:9d:ae:30:90:7f:13:e7:6e:
28:e5:88:c6:77:e3:ee:12:1b:be:20:56:61:5b:27:a7:fb:f3:
c2:7e:6e:f9:96:25:0e:f3:af:85:c8:e4:e4:0b:8e:3e:8d:a7:
a7:84:71:6d:ba:81:af:8c:ff:6b:a8:9e:00:e7:f6:ed:68:ee:
f9:21:39:df:fb:ba:17:ff:b7:5f:b4:07:c0:97:a8:6a:6b:5c:
26:37:2b:a4:19:c1:18:75:94:97:30:01:db:21:71:fb:c8:19:
85:07:8e:c3:d3:fe:a3:41:cc:58:70:d5:32:31:84:31:56:f3:
a7:74:44:e2:a3:67:e4:69:69:1c:44:7a:d1:e4:8a:b5:04:52:
74:eb:67:ea:b0:b7:23:6b:5a:5f:44:07:a1:1a:d5:d3:c1:78:
60:a7:c9:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 06:09:17 2024 by rpki-client on console-ams.rpki-client.org