Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4uBDqTLs4EOeKo7x3EBk0yFMJ-Y.cer
File: 4uBDqTLs4EOeKo7x3EBk0yFMJ-Y.cer (raw, json)
Hash identifier: deG3OWFqi6A51Fwl247YIujphgni17Uq4J+VUPf2H68=
Subject key identifier: E2:E0:43:A9:32:EC:E0:43:9E:2A:8E:F1:DC:40:64:D3:21:4C:27:E6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A2DB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BAE1C/F07473AEAA6211ECB8E11832C4F9AE02/4uBDqTLs4EOeKo7x3EBk0yFMJ-Y.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BAE1C/F07473AEAA6211ECB8E11832C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 11 May 2023 19:36:24 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 149649
IP: 103.184.94.0/23
IP: 2001:df0:8f40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107227 (0x1a2db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 11 19:36:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=A91BAE1C/serialNumber=E2E043A932ECE0439E2A8EF1DC4064D3214C27E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:08:d1:4c:47:7a:c1:ba:e6:fd:5b:00:4d:aa:
d7:46:41:f2:b4:0d:ce:c0:46:8e:64:ac:e3:0a:bf:
2c:b9:f6:2f:a4:3f:80:90:b9:58:e1:9f:c7:28:8f:
28:76:bf:99:39:3f:79:3f:ed:1f:a1:f9:22:2a:96:
4d:b1:60:11:36:23:dd:a2:3d:c1:a9:10:d4:ea:e4:
52:dd:76:89:b1:20:1b:9d:bc:61:02:cf:2b:37:7c:
99:ba:b9:c1:bc:f9:ac:28:d7:e6:97:5a:77:09:e6:
f7:68:57:8b:77:83:15:6a:03:28:41:bd:1c:a7:0f:
0a:92:ec:33:6e:0d:18:2c:be:2d:53:22:c3:3a:73:
56:7e:38:0c:d7:40:b5:32:11:5d:fe:85:04:6b:0f:
c2:fe:8f:e1:7d:4c:d1:22:33:d3:4c:58:29:67:b4:
13:49:f3:9e:36:1d:1a:07:c9:86:5c:3b:99:f2:dc:
14:1e:c8:60:a5:74:68:d3:9a:83:4f:fe:b5:a1:9b:
42:ad:8f:6d:81:f2:51:9e:2e:ca:09:29:c2:ae:fa:
6d:b7:40:4f:a9:41:8e:8b:6b:c9:58:6a:a1:08:6b:
a2:88:fa:6c:c4:36:0d:0a:3a:a3:1f:67:05:13:1b:
0e:fa:1f:5f:11:5c:8c:36:fb:a9:20:f2:9b:10:52:
77:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:E0:43:A9:32:EC:E0:43:9E:2A:8E:F1:DC:40:64:D3:21:4C:27:E6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BAE1C/F07473AEAA6211ECB8E11832C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BAE1C/F07473AEAA6211ECB8E11832C4F9AE02/4uBDqTLs4EOeKo7x3EBk0yFMJ-Y.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149649
sbgp-ipAddrBlock: critical
IPv4:
103.184.94.0/23
IPv6:
2001:df0:8f40::/48
Signature Algorithm: sha256WithRSAEncryption
73:ee:ee:f5:a0:fe:54:8e:0a:b9:36:77:a2:31:83:ae:7c:20:
e4:2c:e2:bd:c9:d8:c2:bf:94:af:0e:06:6e:3b:eb:d7:f3:2e:
3f:de:a1:e3:f0:04:6d:b0:bb:c7:a4:2a:2f:71:5f:f3:41:3e:
79:f8:f0:f5:c1:04:c3:a9:36:ff:75:36:5a:ad:e7:b8:69:e0:
7d:45:a2:83:95:2a:e9:b9:72:7e:fa:a6:77:57:83:c6:38:05:
8f:75:45:a4:a8:42:96:4e:b5:b9:c7:2e:fe:8d:7d:fa:6b:e3:
5e:14:0a:92:9f:bf:c1:60:1f:74:1c:77:31:1f:60:c1:ec:ec:
81:fe:8a:24:b9:50:8d:83:9b:78:55:b4:1d:3b:08:a3:bc:01:
75:a1:01:2d:c1:55:f5:b3:5d:16:34:d3:a7:be:a1:0e:c9:99:
da:36:c2:86:d4:92:ef:f5:f8:f0:ac:94:fb:ed:b0:40:a3:65:
c6:6b:46:20:4c:01:2d:9c:e1:00:0f:39:d6:6d:c7:03:0d:74:
3c:da:60:9e:ad:c2:11:e3:62:51:5b:df:58:7d:48:c3:ac:39:
46:ea:b8:b5:10:1b:04:77:0c:ad:1d:c6:20:fb:98:d6:1d:00:
d5:69:d6:ee:e2:df:cd:61:7e:7a:27:f9:9a:05:27:82:02:6c:
ec:f2:56:da
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:11 2024 by rpki-client on console-fra.rpki-client.org