Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3eukbMeoktKn_2q2Q3fH7P_Yrbs.cer
File: 3eukbMeoktKn_2q2Q3fH7P_Yrbs.cer (raw, json)
Hash identifier: WTHg3752xyBxrsZYM9xvwfZP880mtsvCavLmguoq2nk=
Subject key identifier: DD:EB:A4:6C:C7:A8:92:D2:A7:FF:6A:B6:43:77:C7:EC:FF:D8:AD:BB
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B693
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91116D1/15AE4B28090111EABD104C83C4F9AE02/3eukbMeoktKn_2q2Q3fH7P_Yrbs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91116D1/15AE4B28090111EABD104C83C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 14 Aug 2023 12:22:27 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 63826
IP: 103.40.82.0/23
IP: 2001:df1:f880::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112275 (0x1b693)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 14 12:22:27 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91116D1/serialNumber=DDEBA46CC7A892D2A7FF6AB64377C7ECFFD8ADBB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d9:9e:b8:1f:e9:ac:3c:ad:71:21:40:0e:aa:
3c:63:15:3b:4f:38:cb:d2:7e:57:e4:ba:dd:41:65:
71:3d:5f:60:53:4d:1b:0a:75:5f:d7:fd:90:61:81:
ed:4f:f4:57:ce:30:17:34:33:14:e2:5b:1a:f9:2b:
60:0b:10:de:68:8c:81:cf:62:53:cc:ee:01:76:a4:
38:75:ee:85:1f:38:4a:49:3a:3a:a8:3b:3d:84:89:
41:19:5e:dc:0e:8b:79:fa:90:1f:42:d9:65:bf:bc:
d5:29:fd:71:0f:cb:1a:a3:86:e8:de:24:87:9b:b7:
0a:d4:71:07:0a:bf:e0:8c:22:bd:f0:7a:79:85:c4:
9e:a3:18:a0:23:d4:9c:af:ba:e1:ec:90:33:fe:7c:
64:4a:3d:e0:11:2b:63:f2:79:2e:ee:15:b4:e1:3c:
01:d9:7b:fc:9f:1e:af:7c:af:35:bf:cc:e4:30:e2:
82:0b:95:58:70:57:17:92:f0:fc:43:ad:11:b2:4a:
bf:24:51:d4:7f:49:2c:64:40:0d:31:bf:fc:e8:6c:
5c:31:31:51:fa:ad:16:ef:38:3b:71:18:9d:f0:54:
99:54:aa:f1:80:e4:27:8f:59:1b:3b:2b:8d:71:02:
82:f6:68:d8:38:7b:82:a6:70:3c:e9:0d:48:85:0b:
2c:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:EB:A4:6C:C7:A8:92:D2:A7:FF:6A:B6:43:77:C7:EC:FF:D8:AD:BB
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91116D1/15AE4B28090111EABD104C83C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91116D1/15AE4B28090111EABD104C83C4F9AE02/3eukbMeoktKn_2q2Q3fH7P_Yrbs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
63826
sbgp-ipAddrBlock: critical
IPv4:
103.40.82.0/23
IPv6:
2001:df1:f880::/48
Signature Algorithm: sha256WithRSAEncryption
d9:14:90:ea:3d:b5:ad:ca:c8:7f:8e:99:72:4e:ed:49:82:c7:
98:e1:ad:c8:e8:96:29:e0:c3:07:6d:54:30:55:0d:ae:06:25:
f5:77:74:a7:dc:ae:d7:07:a5:46:77:29:e0:24:0a:b0:be:56:
18:a9:3f:10:bb:d3:f6:9a:f4:8d:8d:9a:f6:0e:24:98:74:34:
3f:b6:79:e7:3c:c7:36:00:e9:fb:ac:49:80:72:35:66:e8:b3:
27:e2:bf:51:56:20:2a:81:83:27:07:2b:df:d0:3c:f9:69:f7:
2f:61:af:b8:20:22:0c:00:61:6e:a0:92:e3:4c:af:fa:e6:a3:
d0:07:c0:fa:89:fe:aa:e1:58:bf:da:22:aa:f1:a3:1d:2b:24:
ac:93:f4:8b:9b:c2:58:44:63:0d:b4:29:1b:1e:fd:cb:da:a7:
76:8b:9d:7d:29:7c:b2:f8:5f:e6:48:1d:36:89:9c:2d:0f:8a:
c3:2e:89:bf:de:06:72:96:88:2f:d1:54:f7:af:54:bc:a3:72:
26:ce:b8:b9:bc:ef:0b:f5:82:2b:a7:4b:3a:93:25:a2:e3:a0:
e6:ed:5d:33:6d:c2:e3:0a:fc:54:75:3d:a5:ca:f4:46:68:12:
1b:d2:2a:d6:71:e9:45:d9:94:01:a5:11:e7:84:15:8a:0a:e5:
a9:62:35:e0
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Apr 24 04:47:40 2024 by rpki-client on console-fra.rpki-client.org