Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kMQsvCHnfS9mDmhTI4_u7bx6_E.cer
File: 2kMQsvCHnfS9mDmhTI4_u7bx6_E.cer (raw, json)
Hash identifier: 0Ol3JxrAxE2CMWNL4CClrWF4CU4HNektujEidM78oOE=
Subject key identifier: DA:43:10:B2:F0:87:9D:F4:BD:98:39:A1:4C:8E:3F:BB:B6:F1:EB:F1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C6DE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918A56A/26FA1818772411EEA1674E1FC4F9AE02/2kMQsvCHnfS9mDmhTI4_u7bx6_E.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918A56A/26FA1818772411EEA1674E1FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 30 Oct 2023 12:59:32 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 151049
IP: 103.121.64.0/23
IP: 2400:efa0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 08 May 2024 20:59:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116446 (0x1c6de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 30 12:59:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=A918A56A/serialNumber=DA4310B2F0879DF4BD9839A14C8E3FBBB6F1EBF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:72:0b:17:3c:8b:fb:99:df:44:8a:16:da:06:
98:43:c9:8c:50:73:7c:1a:3d:54:7c:7f:74:e0:bc:
c1:a4:f3:a8:d1:16:13:9e:40:c6:8f:39:b4:01:cf:
b5:93:ac:05:03:fd:a0:ce:4d:3e:a0:88:7a:b5:95:
d3:8a:4c:81:73:96:6d:79:32:1f:28:52:47:70:55:
af:49:44:ab:0a:f6:9c:4a:ad:3e:f2:6c:d3:da:5f:
57:6a:74:08:8d:b9:ec:96:f4:25:4f:bf:21:48:34:
79:76:e0:e3:21:97:4c:10:48:76:f7:e5:87:07:c7:
e0:54:54:1e:e9:4e:83:7f:cf:04:61:9c:ca:9b:12:
e4:e7:4d:b5:d0:74:8e:e9:87:9b:86:bd:87:bc:90:
86:9e:fc:0e:9e:1f:7e:cf:cc:9b:1f:d0:4f:97:93:
4f:d0:53:f4:c0:5b:91:12:00:40:f5:39:49:33:03:
70:89:b0:8e:ff:8c:4b:0d:89:ad:03:5d:3f:42:ff:
54:9d:82:c9:85:fd:5c:ae:bb:9e:b4:8f:26:e1:b1:
4d:85:b2:dd:a9:a9:c9:d1:9d:76:fe:fa:63:5c:67:
9b:4d:99:8c:5a:7d:3e:25:a6:e5:c9:db:27:65:64:
10:9c:5f:60:42:ef:d8:07:6d:47:f1:13:69:e3:07:
af:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:43:10:B2:F0:87:9D:F4:BD:98:39:A1:4C:8E:3F:BB:B6:F1:EB:F1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918A56A/26FA1818772411EEA1674E1FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918A56A/26FA1818772411EEA1674E1FC4F9AE02/2kMQsvCHnfS9mDmhTI4_u7bx6_E.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151049
sbgp-ipAddrBlock: critical
IPv4:
103.121.64.0/23
IPv6:
2400:efa0::/32
Signature Algorithm: sha256WithRSAEncryption
0a:fe:a3:e0:e3:87:55:5e:92:83:fe:51:05:c5:4d:d7:f4:3a:
d9:cc:08:df:91:32:a6:2d:ca:b4:d0:45:8f:93:c8:31:4d:bb:
84:c6:63:b4:50:9c:c0:f6:69:7a:fd:55:06:8b:0a:3b:90:a1:
08:c4:88:28:af:9b:d0:08:ef:12:32:4e:7a:7e:56:5f:5a:84:
2f:22:78:75:d4:20:90:3f:56:44:cb:68:ef:78:23:26:7d:78:
bf:82:70:5e:16:f9:3b:42:17:c0:bb:37:ca:71:33:c9:90:5a:
1f:c3:64:34:81:9b:b7:c2:35:69:f8:74:eb:c7:4a:b0:cb:39:
c4:1c:13:25:1e:e1:92:72:05:54:03:9c:3a:87:2c:49:93:34:
3a:b2:7a:8c:7b:fb:75:d0:28:78:fb:49:16:01:be:1c:d3:7e:
81:e9:c7:1f:1a:6d:21:03:19:71:9e:0f:37:93:23:64:fd:0e:
38:ca:14:d8:f7:6b:57:a2:0b:3c:15:d6:55:ef:77:d6:ba:c1:
25:01:fa:4a:e1:c0:94:9f:9e:94:bc:14:2c:82:20:07:9a:d9:
76:4a:f2:ef:d8:69:4f:41:ce:bf:6c:cb:6b:cf:00:ef:4b:55:
1e:b8:9a:48:9c:30:23:07:2d:14:1d:6e:3b:9e:66:52:a3:ac:
e5:bc:99:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 22:07:46 2024 by rpki-client on console-fra.rpki-client.org