Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kdUAUEh0yaH2X05LZBgSagU_MM.cer
File: 2kdUAUEh0yaH2X05LZBgSagU_MM.cer (raw, json)
Hash identifier: KGdfKIZ4IXVtnoGBO16wTlQIx2JKFV5nuKHqZqNu9Yk=
Subject key identifier: DA:47:54:01:41:21:D3:26:87:D9:7D:39:2D:90:60:49:A8:14:FC:C3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B833
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 22 Aug 2023 15:58:58 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 149428
IP: 103.190.58.0/23
IP: 2400:8e20::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112691 (0x1b833)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 22 15:58:58 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91777A6/serialNumber=DA4754014121D32687D97D392D906049A814FCC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:24:33:06:76:88:2c:df:a8:ff:ee:0c:ff:c0:
15:77:1d:af:d7:71:0c:57:d6:10:f6:e6:06:2f:02:
a3:be:99:25:b1:a4:e0:7b:06:55:70:36:a1:c2:3a:
ff:6b:79:5c:db:9d:95:42:30:2c:8f:49:d5:ed:ee:
c2:e3:f8:e7:43:20:79:a1:25:c3:ce:9f:ad:f4:4f:
d2:a3:36:2a:c6:e8:9f:e5:5b:28:34:76:56:27:48:
f9:95:cb:83:0a:a8:5f:7f:28:3e:3c:d7:d9:1d:49:
c7:61:c8:80:25:ab:ea:61:cc:b4:4e:f3:b3:f4:50:
6b:e4:87:62:3a:cc:76:2c:73:f5:49:d5:2d:0b:04:
0a:5d:7c:d6:84:fc:75:09:9d:14:75:8f:fc:3d:20:
55:f6:04:72:83:74:a0:63:67:16:34:38:32:90:18:
86:6f:c3:7a:86:0a:fc:1e:c2:fa:c1:e5:80:f3:e7:
cb:ff:9f:93:44:6e:ad:02:65:27:18:eb:bd:73:62:
76:27:a5:06:b2:81:d4:79:8f:88:3f:b2:1b:b6:2a:
5d:e3:75:39:ba:d4:33:ca:f3:7a:d5:03:89:ff:f1:
99:e6:98:1c:3f:af:7e:d2:a8:7e:75:97:ae:2c:15:
5d:6f:a9:9b:23:6e:f5:14:e5:ed:ec:75:e7:60:82:
d4:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:47:54:01:41:21:D3:26:87:D9:7D:39:2D:90:60:49:A8:14:FC:C3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91777A6/C8A799D2244711EDB1655053C4F9AE02/2kdUAUEh0yaH2X05LZBgSagU_MM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149428
sbgp-ipAddrBlock: critical
IPv4:
103.190.58.0/23
IPv6:
2400:8e20::/32
Signature Algorithm: sha256WithRSAEncryption
5c:54:10:94:66:81:16:04:76:2d:b7:d9:bc:48:33:53:39:b3:
31:43:42:02:f3:4f:53:96:59:b2:08:78:84:6c:94:2b:80:79:
a1:65:28:14:e6:33:ca:1f:30:50:f3:88:fd:1a:62:5d:11:dc:
6e:89:e5:66:a2:60:97:bb:54:5f:73:71:39:61:78:2b:44:ef:
f1:73:68:91:64:26:9e:91:31:9b:85:2c:95:a8:87:c0:0a:c9:
8a:d8:8c:20:c5:0a:fd:41:1e:82:23:e7:1d:92:5f:b5:c9:34:
e7:31:13:3e:9e:55:71:bd:67:cd:75:9f:af:45:06:79:23:94:
d6:f9:e7:30:83:af:3d:3a:ea:0e:70:e3:de:45:2a:c3:34:45:
1a:c1:85:d5:6b:0f:ad:58:67:7d:f1:18:86:7d:ef:4f:a3:b1:
d2:41:be:22:49:de:a8:08:26:2c:ef:a8:98:a1:99:51:20:13:
d5:06:3f:bd:ca:6b:bc:36:7c:bc:11:18:92:6c:6f:27:0d:a9:
f1:cd:b2:9e:9e:0f:42:79:c7:38:b4:dd:81:c0:e4:f8:29:54:
46:35:c5:1d:74:cb:fd:a2:af:47:dd:a3:ae:dc:14:4d:21:d2:
8b:54:53:9e:b9:da:28:d5:d6:a4:4c:01:e6:7b:3e:a4:5c:74:
ab:0f:00:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:02:41 2024 by rpki-client on console-ams.rpki-client.org