Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lyPJyhAj-74JW4gOI3rlgHltRA.cer
File: 2lyPJyhAj-74JW4gOI3rlgHltRA.cer (raw, json)
Hash identifier: J0WtACFrY3fsLQSFJwElFXZYql+lyJWRkaP+YiSl6XI=
Subject key identifier: DA:5C:8F:27:28:40:8F:EE:F8:25:6E:20:38:8D:EB:96:01:E5:B5:10
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A2FD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91546FB/1E5C938A01E511EDBA7BA90EC4F9AE02/2lyPJyhAj-74JW4gOI3rlgHltRA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91546FB/1E5C938A01E511EDBA7BA90EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 12 May 2023 14:46:43 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 59333
IP: 103.227.156.0/22
IP: 2001:df3:c800::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 11:34:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107261 (0x1a2fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 12 14:46:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=A91546FB/serialNumber=DA5C8F2728408FEEF8256E20388DEB9601E5B510
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:96:b5:13:36:57:05:a2:d2:bd:14:20:3f:eb:
f5:d0:61:2f:b2:d2:01:b1:1a:e6:b4:ed:03:bb:ef:
47:5e:41:94:9c:19:bb:20:cf:b0:99:8e:ea:b5:84:
4d:6e:04:ae:8f:3c:0e:7d:cc:26:37:bb:60:c7:83:
b1:38:e2:ad:d5:c9:b5:23:93:29:12:45:a1:ed:e3:
ed:05:61:15:36:f7:64:51:07:41:81:28:f4:da:96:
5b:73:4b:87:3a:79:6d:ad:22:47:4d:14:0c:8e:ba:
a3:d0:0a:35:94:d8:c9:b0:e7:fe:d8:bd:d8:71:76:
f6:87:30:91:a2:63:30:1a:7f:4b:4b:21:9e:87:da:
14:56:82:9b:ea:7c:8e:81:b8:f5:34:f1:6d:7d:86:
3d:40:c2:79:30:09:35:9d:45:3d:9b:b3:e5:64:91:
6a:d4:07:89:16:3c:f1:d7:0d:ea:e3:01:4b:9b:90:
9d:5e:74:ae:aa:b2:9c:d7:17:6d:f0:b3:ba:0b:bf:
71:20:04:7d:3c:bd:12:52:95:8f:ba:8a:ac:d6:bf:
a3:fd:96:16:02:b7:1e:b8:8b:fc:33:22:62:37:bc:
1c:2a:03:e8:51:fd:b2:09:2f:1a:6f:8a:b2:0a:30:
1c:8f:e8:ab:a4:f2:64:fe:e4:8f:30:c4:08:c7:cc:
79:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:5C:8F:27:28:40:8F:EE:F8:25:6E:20:38:8D:EB:96:01:E5:B5:10
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91546FB/1E5C938A01E511EDBA7BA90EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91546FB/1E5C938A01E511EDBA7BA90EC4F9AE02/2lyPJyhAj-74JW4gOI3rlgHltRA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
59333
sbgp-ipAddrBlock: critical
IPv4:
103.227.156.0/22
IPv6:
2001:df3:c800::/48
Signature Algorithm: sha256WithRSAEncryption
83:cc:aa:6b:a1:1d:51:88:21:22:b9:6f:d7:2d:09:32:06:e7:
5d:75:0c:62:50:41:79:6d:07:3a:f5:44:da:0d:40:f6:d3:aa:
6e:7a:7f:76:34:e9:86:38:35:3d:c7:51:6e:cf:a0:c0:f4:da:
c0:88:27:d7:ab:3b:ed:88:db:ee:79:cb:84:40:15:6f:c2:93:
58:bc:53:15:8f:5b:09:f0:59:1b:fb:43:95:9d:84:0b:47:05:
24:fd:25:07:c5:85:c4:f7:16:79:69:fc:c7:88:65:3e:6b:4e:
12:bf:99:98:9e:ef:e5:1c:b0:d4:e8:cb:ee:fe:33:61:6a:02:
06:4f:22:8f:7b:8f:93:91:bb:67:cf:65:0e:0f:8e:c4:f4:50:
de:73:e9:2a:18:71:56:8d:94:71:fd:2f:76:36:8d:1a:79:99:
6f:ac:39:55:24:15:01:37:70:d0:42:22:23:9f:ee:fc:0b:e1:
f1:62:3e:87:ba:3a:35:6b:dd:1e:e8:fa:dc:c8:58:d0:db:77:
4e:0d:99:7b:5e:e0:58:00:79:51:be:fc:2e:6d:9b:c8:39:d0:
19:fb:10:17:6a:ad:36:f4:a6:26:00:ac:89:3c:03:73:17:fd:
3c:47:78:f2:62:6c:c9:4d:c0:1c:2e:89:d7:a0:f6:d3:69:d5:
dd:b5:5c:cb
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 19 13:18:15 2024 by rpki-client on console-ams.rpki-client.org