Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/30PPMfEc2OafGltFHUP2ixRHa0c.cer
File: 30PPMfEc2OafGltFHUP2ixRHa0c.cer (raw, json)
Hash identifier: o2jnk2N9JfKBGTcUwV2SOtyad2J0eB+jY/al0TrtFKU=
Subject key identifier: DF:43:CF:31:F1:1C:D8:E6:9F:1A:5B:45:1D:43:F6:8B:14:47:6B:47
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A3DF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E3D4D/ED6A19929AE711EB8A045626C4F9AE02/30PPMfEc2OafGltFHUP2ixRHa0c.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E3D4D/ED6A19929AE711EB8A045626C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 17 May 2023 21:18:42 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 142050
IP: 103.165.186.0/23
IP: 2407:4d40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107487 (0x1a3df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 17 21:18:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=A91E3D4D/serialNumber=DF43CF31F11CD8E69F1A5B451D43F68B14476B47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:87:85:5c:0b:76:12:80:13:c7:92:fc:16:11:
cd:32:73:d1:2a:c9:c0:17:4c:0c:ed:c5:e7:b6:b4:
69:5d:8c:c3:ae:55:38:24:07:d5:ec:1d:89:68:7e:
38:8e:a1:08:9e:ae:cf:38:d3:9a:dc:6f:03:d2:e0:
0b:4c:1a:1b:0d:fa:a9:ff:4b:82:bc:9d:87:df:ba:
c9:73:3f:84:5e:80:e4:4c:60:50:20:e1:b0:4a:43:
8b:ba:3e:32:62:8f:b0:e8:a7:e2:e5:d3:70:4f:7e:
87:c6:35:0e:8f:23:06:36:0e:f5:43:9b:ff:39:37:
2f:11:3b:23:e7:c3:09:a0:1e:c2:67:b6:ae:8a:de:
53:b5:df:6c:98:93:49:aa:ac:f4:c9:ef:73:bf:39:
84:53:d8:08:10:49:3d:d7:7d:b9:91:a6:d7:1f:29:
1a:34:50:ba:ee:fc:fa:30:c5:5d:6e:1d:9f:1d:09:
09:e1:d6:1b:c1:5b:c4:f5:83:33:ce:0b:15:3f:b9:
ce:6d:dc:32:52:5a:39:a0:d5:ff:74:5f:13:38:af:
b5:78:20:34:86:45:1c:75:56:84:73:09:5e:76:b2:
bf:62:2a:37:27:f8:01:b6:af:bd:26:d7:3c:42:9d:
6f:f7:45:c8:58:ef:0e:06:d8:01:22:89:7d:84:7a:
4b:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:43:CF:31:F1:1C:D8:E6:9F:1A:5B:45:1D:43:F6:8B:14:47:6B:47
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E3D4D/ED6A19929AE711EB8A045626C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E3D4D/ED6A19929AE711EB8A045626C4F9AE02/30PPMfEc2OafGltFHUP2ixRHa0c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142050
sbgp-ipAddrBlock: critical
IPv4:
103.165.186.0/23
IPv6:
2407:4d40::/32
Signature Algorithm: sha256WithRSAEncryption
6f:9b:0d:e2:2f:80:f1:3c:44:fa:9c:06:99:59:fd:84:e8:b3:
27:ee:3b:71:e2:15:7e:2c:22:57:47:e4:c4:fd:c9:c3:01:84:
de:71:18:a7:88:ff:ea:e7:75:5c:72:09:3c:17:16:c2:cc:1b:
d3:ac:54:0a:3c:60:65:99:c3:22:f6:0e:4d:34:3d:65:a8:79:
6f:2e:26:d4:20:8d:81:13:54:f1:0c:2c:5e:43:42:16:5c:92:
b0:bd:87:0c:ce:65:b7:14:e9:a5:4f:b2:17:86:02:9c:e8:31:
aa:f1:87:6e:10:9d:9e:b1:f9:57:01:51:5b:7a:74:3b:9c:a6:
5b:57:a2:44:19:34:e1:d8:7d:ce:92:98:8e:4a:67:e2:d3:22:
d3:31:5c:38:fc:ed:97:f4:01:f8:ec:da:b8:80:1d:5f:93:3c:
00:16:4e:bc:5e:78:8a:0c:0e:90:1e:f6:71:f9:d4:22:ee:84:
43:21:33:34:e9:c1:c4:a2:12:a8:c0:8d:2d:1b:fc:e0:ef:c5:
c4:6c:ce:db:94:af:e2:73:14:6d:11:31:25:b4:12:9d:32:36:
c9:2c:83:61:cb:60:eb:6e:c2:cf:ea:38:9b:51:5e:ed:dc:12:
95:41:95:69:ab:12:bb:db:f2:87:e4:36:a4:24:47:9e:fb:67:
53:17:65:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:02:41 2024 by rpki-client on console-ams.rpki-client.org