Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer
File: 2gE-F4NYyzWot2XJvAkK6c8cT74.cer (raw, json)
Hash identifier: a1ho4Fxx+gyTaZ8TQ1qirL7CutfwL+nYZQw7C+VW/is=
Subject key identifier: DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C892
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 02 Nov 2023 21:07:04 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 23936
IP: 103.229.96.0/24
IP: 180.178.72.0/21
IP: 2402:4400::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Apr 2024 08:35:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116882 (0x1c892)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 2 21:07:04 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A91B2C88/serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:90:48:a0:3e:e7:44:a9:c2:63:eb:69:c3:26:
df:4f:03:c3:18:a7:a6:68:fc:88:aa:a0:1a:64:72:
32:e3:59:c5:e9:3e:ea:e8:fb:4a:40:6a:f3:14:1f:
38:5b:cd:ad:49:4c:0d:4c:80:3e:29:a8:39:65:d3:
5b:eb:e2:5d:62:74:eb:54:85:f7:8d:09:15:d5:6d:
77:32:e2:cc:c7:a3:a7:03:c8:da:52:51:c4:3c:03:
e6:00:b6:4c:fe:96:89:d9:c5:2f:84:d5:56:d3:95:
02:c5:7d:79:3b:98:4b:22:2b:36:97:22:be:57:a0:
0a:32:06:e8:cc:2d:c4:4f:a2:fc:b9:9f:b8:40:bc:
99:44:0e:77:69:22:1d:ca:3b:57:31:fe:8e:e0:a5:
d5:01:4a:d1:59:38:a9:77:eb:f8:b3:c3:63:42:3d:
ce:99:59:29:ec:86:3d:a6:d5:e2:dc:be:4e:dd:28:
76:c3:62:6e:10:d1:f4:df:10:0e:25:f1:13:aa:39:
9c:4e:51:6a:7d:09:49:3c:e0:b2:5a:63:6f:6c:2a:
f2:b9:52:df:8f:fa:72:09:8f:e5:be:fe:72:f6:17:
e5:3c:65:28:5a:ed:47:12:8c:88:c3:ce:db:c6:7d:
ab:53:ab:3f:8f:a0:4f:ba:ba:19:46:0a:08:0e:de:
ca:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
23936
sbgp-ipAddrBlock: critical
IPv4:
103.229.96.0/24
180.178.72.0/21
IPv6:
2402:4400::/32
Signature Algorithm: sha256WithRSAEncryption
04:70:fe:36:4a:91:b4:71:b5:67:51:51:ef:f1:18:97:ee:6d:
7f:de:6a:21:19:33:30:22:01:1b:59:ad:9e:61:9d:a5:54:7c:
05:88:e0:43:55:98:d5:a7:6f:e3:1e:44:3e:8e:85:c5:86:84:
bd:f5:ee:fe:43:d5:e2:a2:7f:5c:06:a8:40:71:6b:bf:fe:39:
0a:b6:49:64:9d:bc:de:92:5c:24:1e:6d:53:22:d8:57:47:a0:
23:5d:58:8d:4c:eb:1d:89:cb:28:d8:9b:74:7a:3f:d8:eb:2c:
8f:cf:5e:8c:79:a8:9a:7b:ce:d4:69:be:59:d7:e0:6d:e7:6a:
2c:2d:46:2a:38:df:4c:d0:80:29:c9:61:e4:85:05:df:ce:e6:
1f:4d:30:c1:98:3f:df:8b:48:52:ce:6e:02:68:ff:1a:cf:07:
db:0f:b5:6c:83:3f:dc:bf:93:b7:21:a7:54:59:8b:a0:5d:57:
a6:25:66:1e:0b:6b:34:9f:5a:68:e5:15:d2:3c:c3:d1:48:39:
0d:63:50:36:52:31:f9:7a:23:d7:c6:11:90:3e:17:08:e6:6d:
d6:f4:61:46:7f:5c:5c:49:49:c8:cf:8a:f7:46:b0:2f:7b:f2:
03:36:3d:15:b9:26:52:d2:78:01:0c:35:67:ed:b9:a6:9d:38:
4a:69:00:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 11:21:46 2024 by rpki-client on console-ams.rpki-client.org