Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NzsWVobtnOJciNlasY5uVNS3XM.cer
File: 5NzsWVobtnOJciNlasY5uVNS3XM.cer (raw, json)
Hash identifier: 9o4JUl+HkhWQ9f56LcyKySHLX2YFkhb77+U4DQxCELk=
Subject key identifier: E4:DC:EC:59:5A:1B:B6:73:89:72:23:65:6A:C6:39:B9:53:52:DD:73
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01AC60
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/5NzsWVobtnOJciNlasY5uVNS3XM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 27 Jun 2023 19:12:55 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 135517
AS: 149297
IP: 103.221.52.0/22
IP: 2400:f8c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 13:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109664 (0x1ac60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 27 19:12:55 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A91D604E/serialNumber=E4DCEC595A1BB673897223656AC639B95352DD73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:8f:b1:bf:ed:2a:ba:69:5f:c5:ec:2b:57:87:
18:f6:06:6f:84:0a:8e:c5:16:95:47:27:85:26:a4:
2c:12:f3:5b:48:9d:f3:a5:ee:29:2a:82:de:c1:0a:
42:0b:78:63:a5:92:f1:83:cf:37:ed:76:c1:b3:19:
c7:9a:3b:0b:47:88:a2:6c:99:fa:a5:ee:31:81:fd:
d9:06:d6:8b:e6:3b:13:fa:4c:96:78:97:5c:9c:07:
c4:70:83:15:ea:6e:7d:77:03:0d:c1:bd:54:a2:7f:
a9:19:50:6b:7d:e2:b9:2f:dd:dc:31:fc:15:81:a6:
e4:bb:37:5e:d1:8a:e8:86:b4:ab:13:01:c0:d5:80:
b9:39:fb:3b:58:ba:20:1a:d1:cf:8f:3a:10:59:18:
11:6b:f5:c5:ba:96:a6:16:61:4f:44:6e:c2:03:cf:
71:ea:6e:f4:52:ff:e1:d3:04:48:b2:2e:c6:6c:93:
80:8a:70:70:11:e6:9b:f7:d7:04:73:ff:2c:5f:27:
23:de:b1:3f:cc:3d:81:48:8c:33:91:42:76:29:17:
38:55:20:2a:7b:4c:bb:19:1e:21:ed:fc:19:e5:78:
9b:11:f1:c2:1b:a2:50:cd:13:76:88:75:cf:9a:32:
a8:d0:65:16:2a:94:6f:d5:78:97:93:1b:fc:d7:9f:
28:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:DC:EC:59:5A:1B:B6:73:89:72:23:65:6A:C6:39:B9:53:52:DD:73
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/5NzsWVobtnOJciNlasY5uVNS3XM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135517
149297
sbgp-ipAddrBlock: critical
IPv4:
103.221.52.0/22
IPv6:
2400:f8c0::/32
Signature Algorithm: sha256WithRSAEncryption
da:8b:a1:df:90:12:c5:2f:bb:0a:4d:9e:08:f0:ba:c5:52:38:
0c:e0:59:58:ba:4c:a4:33:13:6a:0c:30:1f:e0:5a:4e:4c:15:
ae:bd:e2:3c:c0:1b:06:1e:67:03:5f:6e:f6:18:a4:72:c9:a1:
9a:a0:62:72:20:09:9b:27:97:e8:91:24:6d:c4:bf:49:98:4f:
c0:a2:4e:3a:71:cb:30:20:17:5b:99:72:ef:c4:0f:6b:ca:84:
00:07:f2:de:1a:df:48:e0:bb:d6:92:3c:50:da:e1:9a:26:86:
fd:dd:29:ad:76:66:90:e3:4b:27:b9:b1:d6:3a:72:f6:7a:6a:
cd:44:46:41:e3:32:ec:b1:86:fa:42:ed:81:57:9c:71:cc:1f:
dd:c4:08:5e:16:6c:c8:cd:9f:eb:08:09:1b:63:5f:bd:d5:b7:
7f:d9:b5:b2:2c:9d:13:45:61:5c:43:d8:ed:90:2d:7b:59:5e:
44:54:82:2d:ed:d5:90:99:4e:0a:e0:03:ce:88:51:02:f8:76:
49:30:e0:7a:28:bc:69:f1:06:38:58:28:96:0c:e3:bc:ed:33:
54:97:34:db:03:01:0a:dc:2c:2f:05:d3:86:e2:65:61:d5:40:
46:21:5d:a3:ee:70:a0:da:2f:18:c4:82:c3:5f:be:4f:40:fb:
f5:43:e2:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 14:08:22 2024 by rpki-client on console-ams.rpki-client.org