Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64sK0sB2YghSy8N4kOZK1Aa0ieg.cer
File: 64sK0sB2YghSy8N4kOZK1Aa0ieg.cer (raw, json)
Hash identifier: bHLOY/G0uFKnjGu6sqGL4cmWpH0SHBwYZrZnr7kjK6M=
Subject key identifier: EB:8B:0A:D2:C0:76:62:08:52:CB:C3:78:90:E6:4A:D4:06:B4:89:E8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C995
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C72B1/2A45F980DEC911E9AAA7EC33C4F9AE02/64sK0sB2YghSy8N4kOZK1Aa0ieg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C72B1/2A45F980DEC911E9AAA7EC33C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 07 Nov 2023 19:37:16 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 139675
IP: 103.143.126.0/23
IP: 2001:df1:8680::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 06:28:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117141 (0x1c995)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 7 19:37:16 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A91C72B1/serialNumber=EB8B0AD2C076620852CBC37890E64AD406B489E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:85:4c:0a:ec:3c:a1:50:5e:da:56:a0:e2:d9:
a2:a3:5f:6d:ef:1c:9f:10:3d:ca:69:95:2f:08:2d:
33:7d:c3:3c:5b:36:c0:8a:1c:5a:f5:13:c5:af:84:
39:43:de:84:a6:14:62:cd:cc:fb:fa:d7:57:7e:9c:
89:69:ef:28:34:64:ac:07:0a:09:fa:f1:14:3e:11:
a0:90:30:1b:b9:46:99:a6:79:8a:a6:3e:f1:83:80:
1b:9f:2b:9c:fc:af:9f:6a:0b:81:66:ba:a3:e5:c1:
4f:15:8f:c0:b9:b3:c9:3a:c6:6e:68:83:5e:eb:9e:
f4:13:48:4e:a0:3b:a0:e4:3b:d2:37:54:6f:fb:e4:
2d:26:71:a0:70:e0:1e:46:fa:89:0e:31:bc:48:4a:
a5:3f:be:e4:cd:d5:36:06:78:8e:87:05:cb:3e:5c:
c7:eb:ba:eb:00:3a:df:12:52:f9:e5:bd:f8:37:19:
b7:d6:b1:35:de:f1:83:9d:4d:a7:39:6a:93:f1:89:
b5:12:eb:12:71:d8:c5:3a:10:8f:71:4a:65:60:2f:
0b:8b:27:38:0e:54:a9:a3:1b:7f:68:2d:cb:34:ac:
1a:da:5c:52:a0:0b:50:e8:e2:77:72:95:19:07:a1:
01:ed:f3:ff:ff:0e:eb:0c:5e:25:c4:a8:ee:1b:d6:
09:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:8B:0A:D2:C0:76:62:08:52:CB:C3:78:90:E6:4A:D4:06:B4:89:E8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C72B1/2A45F980DEC911E9AAA7EC33C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C72B1/2A45F980DEC911E9AAA7EC33C4F9AE02/64sK0sB2YghSy8N4kOZK1Aa0ieg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139675
sbgp-ipAddrBlock: critical
IPv4:
103.143.126.0/23
IPv6:
2001:df1:8680::/48
Signature Algorithm: sha256WithRSAEncryption
b2:04:1b:0f:80:d8:7c:14:68:b4:e5:06:4d:88:d9:e4:9a:87:
09:af:c3:a8:31:52:1d:97:9a:6b:6d:51:64:21:3f:fa:ef:30:
41:c5:0e:1d:7d:8b:4e:49:a4:57:56:07:7f:5a:38:e1:8a:93:
1c:e0:35:7c:a9:ef:d5:43:0b:c1:c3:22:47:41:6c:a0:34:3e:
41:92:ae:a7:f6:3a:94:18:e5:20:a7:bc:56:5d:ac:f2:3f:ff:
d0:f9:b0:04:d1:ef:1e:51:78:5c:71:a5:a7:ca:7c:95:71:cd:
a9:64:4c:db:01:51:58:35:51:76:ff:af:e7:e9:73:4e:54:9c:
45:1c:aa:7e:f1:65:9c:7a:90:a1:b3:9a:92:c9:92:6c:33:41:
06:66:92:d4:5b:ff:4e:0c:c0:0f:6e:89:44:62:25:5d:03:2c:
1e:b1:dc:fe:17:53:fb:1b:21:6a:dd:84:25:f1:bf:65:15:53:
d3:b4:35:8c:0f:15:d5:25:0c:3a:39:3e:92:16:81:48:90:a1:
09:eb:e5:2a:61:40:f7:95:7a:1c:15:f0:fb:18:81:fd:28:5e:
22:bb:37:0f:d4:a9:69:d2:c6:8b:fe:03:95:ec:d1:4d:6f:3b:
3d:1b:96:9e:48:b0:57:e1:ae:f2:a8:9e:37:80:70:4d:96:27:
0d:52:10:f3
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Apr 25 07:18:41 2024 by rpki-client on console-fra.rpki-client.org