Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6AKchCosGw6rjSFi239_RN4ccCg.cer
File: 6AKchCosGw6rjSFi239_RN4ccCg.cer (raw, json)
Hash identifier: eSpNK5hWDDSdTLkGMV+jiQeEUCSttqG4wqPnGjaGJco=
Subject key identifier: E8:02:9C:84:2A:2C:1B:0E:AB:8D:21:62:DB:7F:7F:44:DE:1C:70:28
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DE90
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919C355/22E76B442F5911EEB957EA72C4F9AE02/6AKchCosGw6rjSFi239_RN4ccCg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919C355/22E76B442F5911EEB957EA72C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 12 Feb 2024 18:59:18 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: IP: 103.61.70.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 10:14:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122512 (0x1de90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 12 18:59:18 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A919C355/serialNumber=E8029C842A2C1B0EAB8D2162DB7F7F44DE1C7028
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:22:d9:d9:5a:42:0b:34:05:e2:2b:98:d4:62:
89:37:e7:8b:2f:07:60:c8:75:35:76:c0:c4:80:7a:
8f:be:51:50:a6:52:d7:89:4e:f8:fb:02:93:57:04:
6a:ef:70:66:cb:47:ba:6b:1c:70:58:87:2d:26:13:
63:18:da:32:46:6c:ec:f4:64:b0:9e:66:56:54:c7:
28:80:a4:97:66:c1:85:a4:5b:92:a5:a1:22:02:17:
a4:cb:93:8f:b2:66:e5:31:c0:dc:80:80:23:f5:45:
ad:46:1c:4e:64:77:43:3c:b5:e4:b0:45:b0:7f:a3:
1c:00:04:6f:3c:c0:c5:05:00:a3:f6:bb:af:7e:4c:
d8:61:b1:26:eb:65:e3:82:54:92:27:3a:c0:a1:6e:
fe:fd:7e:5d:b6:37:7b:10:76:34:89:3a:8a:64:a9:
01:37:c0:64:c2:50:28:4a:f9:0e:c0:b9:39:ab:ee:
4f:21:88:c5:2a:12:13:15:06:92:9f:68:84:6f:93:
ef:e3:85:09:a2:13:4a:2c:25:78:1b:91:28:e0:62:
6e:77:bf:dd:43:79:e2:a5:dc:86:f1:37:09:9a:b0:
f2:27:a4:93:1e:f6:9b:10:f5:f2:5f:05:7a:24:3a:
03:66:c4:b6:14:b6:a5:c8:be:ce:85:0a:dc:43:60:
13:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:02:9C:84:2A:2C:1B:0E:AB:8D:21:62:DB:7F:7F:44:DE:1C:70:28
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919C355/22E76B442F5911EEB957EA72C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919C355/22E76B442F5911EEB957EA72C4F9AE02/6AKchCosGw6rjSFi239_RN4ccCg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.61.70.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:97:21:2c:ca:14:30:8d:a8:7d:bf:83:4b:79:34:ac:bc:a8:
74:86:89:9a:a3:d0:30:e1:d7:4c:6f:28:58:e1:1c:d7:f7:b7:
22:67:91:f9:ef:5d:41:5a:a7:23:89:40:a5:14:cd:6b:5e:4f:
3a:05:ca:fe:5a:0a:92:ab:e6:31:0b:f0:60:64:af:93:60:bd:
dd:49:93:11:de:f0:02:ee:30:3c:30:0f:13:6f:82:02:33:69:
d6:1a:52:01:60:35:7a:b5:93:3e:6f:f3:2c:94:3b:68:1f:c1:
c1:58:fc:1f:e3:e1:4f:28:45:3a:2f:c0:18:cb:f0:1b:0c:c4:
e8:8a:4b:26:62:80:6c:c4:f4:c5:71:90:7e:f6:93:86:df:28:
db:7b:8a:6e:06:ad:34:75:cf:1e:fe:c7:77:60:6f:f7:a4:bb:
f3:81:4a:81:9d:06:74:7f:f0:e6:f0:e7:49:27:23:d7:11:59:
14:8e:ab:52:ea:bc:83:1f:95:6b:7c:12:ac:ad:73:5c:ee:9a:
9d:66:d1:80:09:9b:9f:3d:50:9a:90:9a:4e:bd:38:fb:67:77:
0c:39:37:af:b6:92:7a:0d:f1:e4:c1:ca:f6:b6:52:4e:b4:4b:
7f:32:50:a5:cf:05:d9:18:69:42:1b:3f:26:5a:fc:f4:a0:1e:
44:d2:24:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 12:24:18 2024 by rpki-client on console-ams.rpki-client.org