Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.cer
File: 4Om5OZuKSl_c3iCfxb7AeK-Vz3s.cer (raw, json)
Hash identifier: 0PbFJAlyF51pluAL+Zojl4i+KJjhN2grhLQPqBCaS0I=
Subject key identifier: E0:E9:B9:39:9B:8A:4A:5F:DC:DE:20:9F:C5:BE:C0:78:AF:95:CF:7B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01AC9D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E1887/84EE8B60355111EB9F41950EC4F9AE02/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E1887/84EE8B60355111EB9F41950EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 28 Jun 2023 19:49:40 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 135509
IP: 45.251.104.0/22
IP: 103.220.72.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 06:28:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109725 (0x1ac9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 28 19:49:40 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A91E1887/serialNumber=E0E9B9399B8A4A5FDCDE209FC5BEC078AF95CF7B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:bc:99:b7:38:c3:0e:a1:ef:23:c7:9e:d4:0e:
df:79:2f:e8:1a:7d:8d:a9:fc:85:81:a5:cb:b9:3f:
83:ba:27:2e:b4:39:48:17:6c:6b:f7:1b:8e:c1:5e:
08:91:5b:89:87:7e:56:a9:b9:88:a4:5c:4d:6f:7b:
18:f1:db:d0:8d:72:fc:a3:27:31:15:bf:98:89:31:
7b:46:9a:bd:ef:dc:bc:b0:1c:99:9e:0c:30:1d:d5:
1e:7f:c1:4f:b2:b7:7d:75:24:23:6b:99:2e:72:2b:
7a:48:49:96:bf:8e:0f:27:ab:b2:36:d9:fe:af:9f:
12:39:07:cf:cc:4b:04:06:64:6a:fa:e6:ca:53:a1:
77:7b:b2:9b:c7:d1:0f:e6:5a:29:26:3d:c6:e3:e8:
0f:28:61:db:5f:35:9d:ed:35:29:52:55:0e:1d:91:
4e:c2:72:00:8e:5b:4a:af:c2:cf:37:2b:f5:e2:c7:
3b:1b:ec:9a:6c:76:a7:72:0f:a6:33:f7:1d:f4:63:
79:18:34:b1:1b:ac:12:6f:0a:af:a7:96:38:55:2b:
89:1a:7f:05:a8:9f:2e:49:06:3d:70:58:28:32:11:
e4:e3:1e:49:1b:05:82:fe:15:f8:1b:45:f4:d6:7d:
84:24:6f:b9:ca:58:37:21:45:fc:cb:62:09:19:23:
13:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:E9:B9:39:9B:8A:4A:5F:DC:DE:20:9F:C5:BE:C0:78:AF:95:CF:7B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E1887/84EE8B60355111EB9F41950EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E1887/84EE8B60355111EB9F41950EC4F9AE02/4Om5OZuKSl_c3iCfxb7AeK-Vz3s.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135509
sbgp-ipAddrBlock: critical
IPv4:
45.251.104.0/22
103.220.72.0/22
Signature Algorithm: sha256WithRSAEncryption
da:98:53:bf:59:d7:64:bf:6e:67:6c:0a:98:0c:bb:52:a8:33:
4f:5a:58:3b:6d:f4:0d:20:ea:7a:68:13:85:9e:a5:bc:3f:bc:
06:b9:54:42:38:3a:74:a0:e6:e3:d3:09:0e:90:86:79:e7:24:
aa:19:89:f3:d4:a8:7f:67:8a:19:49:84:0e:02:d3:4c:79:cc:
d0:69:69:4e:77:01:fc:d4:1a:ff:cd:98:5a:23:f9:41:e8:10:
2e:a5:58:07:ad:c6:18:28:c5:d3:0c:d4:e1:d7:c0:3d:64:d6:
55:d9:dd:65:e3:cd:95:a6:50:b8:5e:c4:f7:e7:c2:a4:fd:a9:
cb:7f:65:35:fa:3f:ca:0d:67:8a:52:12:2b:6b:f0:05:cf:71:
0a:90:a1:45:78:70:00:97:3e:e8:54:d7:60:bf:d7:af:a1:e7:
de:d5:a1:74:5c:45:12:6c:36:35:6b:a6:ec:83:3e:e4:28:02:
92:96:b1:11:92:be:d6:cf:4e:a5:97:56:4b:a2:ae:6f:04:fa:
1e:6e:69:b8:1c:76:24:38:f8:4e:f3:c8:05:e7:01:da:38:b6:
65:96:39:34:da:f5:ba:62:d8:ec:5c:8a:57:f7:07:11:ab:c6:
93:ec:79:4e:91:b9:21:9d:ce:bf:02:0b:ea:19:77:1f:20:df:
5f:46:b4:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 07:21:07 2024 by rpki-client on console-ams.rpki-client.org