Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BACs3wmuXCZFSZ2ZvRJAMATHi4.cer
File: 4BACs3wmuXCZFSZ2ZvRJAMATHi4.cer (raw, json)
Hash identifier: Q9RBwqrK4fEDgjxndi4fGjKOwISjl2/hJlAZUkUFdFM=
Subject key identifier: E0:10:02:B3:7C:26:B9:70:99:15:26:76:66:F4:49:00:C0:13:1E:2E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B446
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F9FCC/22CD79DE0DCC11EBB81BA431C4F9AE02/4BACs3wmuXCZFSZ2ZvRJAMATHi4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F9FCC/22CD79DE0DCC11EBB81BA431C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 02 Aug 2023 02:42:00 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 7595
IP: 103.3.164.0/22
IP: 117.120.0.0/21
IP: 2400:ed00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Apr 2024 15:38:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111686 (0x1b446)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 2 02:42:00 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91F9FCC/serialNumber=E01002B37C26B9709915267666F44900C0131E2E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:92:e1:9f:2e:84:fe:1c:88:45:9b:70:3f:06:
05:40:a3:61:aa:52:ae:cf:7a:cf:d3:56:7c:95:88:
86:c8:8e:8e:75:37:10:fd:75:03:e8:10:e4:52:74:
08:9d:3f:05:ca:b9:00:70:bb:3b:64:41:52:5b:cf:
e9:5c:c9:78:ba:75:5a:ef:63:bd:c0:af:56:29:22:
64:1a:9b:0c:31:3d:77:c1:5b:7e:1b:39:13:a6:5c:
85:ed:12:20:30:7c:86:b0:ef:58:92:0d:eb:60:8f:
ed:c3:45:c8:e3:57:df:49:54:24:18:6a:88:80:6c:
36:07:78:f2:7c:72:55:ea:85:01:0f:5c:cc:8b:76:
be:6a:37:f1:23:c9:73:48:ea:fd:78:18:88:30:f0:
be:4e:41:9d:ef:59:4b:0d:eb:e8:b9:e1:ec:31:1d:
c1:da:9a:e2:05:0d:fd:be:a3:88:4a:51:e8:2f:d3:
5f:8a:06:1c:a4:97:1e:08:1f:8d:39:9a:3d:86:00:
8b:c0:0c:08:7b:1e:64:f3:ed:2d:da:db:24:a1:e8:
d9:ce:55:27:fe:8c:20:8d:f9:1b:aa:69:89:5f:9b:
25:a4:1c:a0:03:43:c3:6a:12:37:99:c8:37:c1:c0:
3f:ca:f2:67:d3:67:90:5a:6d:49:9c:09:ec:b1:6d:
cd:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:10:02:B3:7C:26:B9:70:99:15:26:76:66:F4:49:00:C0:13:1E:2E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F9FCC/22CD79DE0DCC11EBB81BA431C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F9FCC/22CD79DE0DCC11EBB81BA431C4F9AE02/4BACs3wmuXCZFSZ2ZvRJAMATHi4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
7595
sbgp-ipAddrBlock: critical
IPv4:
103.3.164.0/22
117.120.0.0/21
IPv6:
2400:ed00::/32
Signature Algorithm: sha256WithRSAEncryption
4a:f8:a2:6b:b7:4c:61:87:bd:a9:9e:75:84:61:43:57:91:6c:
b1:fd:05:8b:1b:b5:43:bc:8c:63:7e:9f:af:a3:30:9a:1f:e9:
b4:14:39:79:b8:f6:dd:4e:f4:78:f5:8d:d3:2c:fc:04:d3:b9:
f2:1d:f9:9f:28:0e:da:7e:f3:df:55:62:13:f7:42:6c:ac:a3:
50:8a:9a:cf:6e:dc:61:ad:c6:2d:af:15:e5:57:aa:e2:7b:aa:
29:82:09:2a:83:f9:44:5a:e3:75:d1:2d:ae:dd:a2:9b:b6:83:
a5:d5:f5:60:c8:96:de:40:78:e3:0e:16:49:ff:12:ab:84:aa:
81:08:90:30:54:66:46:5d:f7:bd:37:e0:f5:40:45:44:26:a8:
2d:fa:63:c6:6a:6c:d2:05:cf:52:d8:29:f6:41:81:d3:c5:6f:
68:be:fc:1b:dd:5c:25:44:2d:6c:82:96:7b:a1:83:be:25:ba:
11:90:18:48:78:40:82:14:73:c0:c4:84:51:af:36:1b:77:36:
12:d8:8c:89:c2:7d:69:67:aa:a1:5a:b5:b8:36:28:b4:82:f9:
93:7d:52:24:96:5a:26:59:0a:aa:d5:51:e3:d5:59:bd:cc:80:
fe:f2:6f:37:94:21:32:56:dd:f2:03:aa:98:e6:7d:bf:8c:eb:
d8:b1:80:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 16:51:34 2024 by rpki-client on console-ams.rpki-client.org