Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer
File: 446z9aUQfjDwynHd6nWxcNCwMlY.cer (raw, json)
Hash identifier: YyYtHONpuZehhq8Chqrn390GHXJHXJQULRtSsGTUPU8=
Subject key identifier: E3:8E:B3:F5:A5:10:7E:30:F0:CA:71:DD:EA:75:B1:70:D0:B0:32:56
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F6C1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 03 Jun 2024 06:05:44 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 139318
IP: 103.108.174.0/23
IP: 2001:df1:1840::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 14 Sep 2024 20:15:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128705 (0x1f6c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 3 06:05:44 2024 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91A5560/serialNumber=E38EB3F5A5107E30F0CA71DDEA75B170D0B03256
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:8b:b8:33:ac:9b:cc:9b:3d:89:46:a2:64:32:
70:ec:ec:f7:e2:bf:8d:09:da:0e:25:a9:b6:a8:b8:
b5:84:8e:0d:40:4f:bc:96:ad:43:09:9c:a4:3d:1d:
2e:66:52:0f:c4:ad:39:f5:79:c8:10:89:4b:1e:0b:
4f:74:41:25:ee:f7:84:c1:82:b6:98:ca:a9:de:97:
b3:a6:b6:e8:cf:de:2f:b2:9d:cd:4d:53:27:b3:1a:
ba:4f:22:3c:b3:73:ea:46:b2:db:24:e5:ee:39:d0:
c7:85:8e:9a:e4:d1:9d:c4:62:df:32:ea:8e:d5:93:
f1:95:1e:3a:04:dd:45:85:24:49:60:9c:4d:18:b5:
76:57:86:04:03:82:e9:ec:fe:a1:6a:54:08:7a:f0:
e3:c1:ef:65:d9:5b:c2:13:bd:8f:64:40:f7:8e:16:
41:94:15:41:55:da:b2:c8:43:09:69:f1:d6:87:fb:
f2:e8:3e:87:6d:bc:fe:a5:71:7b:d0:49:a6:71:31:
78:b4:6c:74:e1:ca:8a:61:32:94:a9:a5:55:46:c0:
24:81:d1:ad:60:db:ae:6a:c1:e8:76:3e:cd:65:b4:
62:54:20:c2:f4:c4:41:1f:9e:18:f7:cb:fd:f0:78:
d2:c6:1e:69:53:c8:8d:8a:00:3c:1b:dd:11:4f:4f:
0f:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:8E:B3:F5:A5:10:7E:30:F0:CA:71:DD:EA:75:B1:70:D0:B0:32:56
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139318
sbgp-ipAddrBlock: critical
IPv4:
103.108.174.0/23
IPv6:
2001:df1:1840::/48
Signature Algorithm: sha256WithRSAEncryption
15:b8:c5:55:ad:d4:8d:7b:bc:3a:e2:f3:05:b7:12:27:c3:a8:
4a:77:c2:a8:d4:6f:91:ae:8b:b8:ef:e1:e5:e1:be:3b:3a:0a:
8d:a8:5b:41:4a:96:2c:94:3c:7a:a9:d3:80:13:c4:7e:dc:0d:
0c:b1:f9:fa:a6:16:56:fd:7e:05:41:2f:ce:76:a4:fc:4c:92:
3d:42:97:6a:f0:3a:85:a0:7b:d3:09:b1:ce:64:d5:c9:7d:02:
38:09:84:4f:17:29:cd:4c:b1:ee:3e:93:89:72:d2:4c:30:90:
6b:48:4a:98:96:62:ef:77:c4:17:ec:a0:99:3b:90:fa:bc:c0:
b8:10:30:f6:0b:7f:6f:5d:5f:7f:03:3c:c4:2a:f3:d3:dd:da:
e9:72:22:56:e6:1f:0e:de:00:22:06:01:3b:8f:20:2e:5a:52:
61:cf:a9:58:7e:51:fd:b9:c3:db:43:8b:64:98:e5:2b:62:55:
4c:05:b0:fd:90:e6:2c:cc:03:4a:a6:2b:c5:96:4f:71:8c:a9:
29:c3:8b:d8:9f:64:d3:00:c5:41:14:45:ea:6a:9f:44:3b:d4:
34:c7:97:15:b7:71:2e:f9:4e:bc:21:20:48:49:75:a4:b1:99:
10:53:06:7a:76:d1:68:eb:29:45:df:d9:ff:ce:36:dc:cf:ff:
58:26:2f:49
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Sep 7 22:41:19 2024 by rpki-client on console-ams.rpki-client.org