Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.cer
File: 6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.cer (raw, json)
Hash identifier: EIs+QvOAAXYX8d6bqDt8m9D7zld/YlcT9I3fWjiPwO0=
Subject key identifier: E8:C2:1B:03:B6:50:83:B2:1B:FA:37:52:6D:12:B3:41:F2:49:CC:8B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021075
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 30 Sep 2024 16:01:07 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 132311
IP: 103.72.100.0/22
IP: 2001:df4:1600::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 06:14:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135285 (0x21075)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 30 16:01:07 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A915EFDF/serialNumber=E8C21B03B65083B21BFA37526D12B341F249CC8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:54:48:1b:41:0d:70:b1:ed:cf:be:44:f1:0e:
76:f8:54:94:69:9c:5b:34:c9:54:d7:20:33:58:51:
53:7c:97:0d:d0:c2:fd:fd:e1:05:29:52:63:1f:c1:
a6:4b:4f:2a:a6:c6:39:96:32:f6:02:82:2e:d0:43:
fe:f9:35:4a:c0:c4:c8:ab:e6:2b:05:03:b1:d1:f0:
0e:47:bd:a8:4b:e5:05:83:39:b9:1c:bd:cb:e3:12:
24:89:6d:29:0c:db:e9:29:d9:8f:1c:af:42:3a:b7:
2c:43:79:83:e8:66:28:6e:bc:28:07:84:ff:22:0c:
97:43:75:93:0b:d6:76:59:8e:bc:eb:11:5c:47:61:
7b:b1:3a:86:61:e5:b1:a1:6f:0d:d2:4b:12:4f:48:
39:fd:7a:94:e0:07:17:f7:01:2f:14:fb:84:20:e4:
c1:10:db:de:e4:dd:44:90:3f:75:7a:cf:10:1d:a7:
ce:d8:13:82:d1:37:aa:83:41:e2:ef:8d:a4:64:2e:
d3:bc:1c:8a:cd:97:4b:4f:2d:4b:aa:61:b0:cd:39:
80:67:17:6b:14:d6:e4:71:47:7c:41:e2:11:3d:a0:
fd:c0:66:96:d1:3f:51:1f:4e:81:7e:7e:87:72:16:
6e:17:99:0e:ec:52:97:5b:6d:b7:57:a7:c1:f9:46:
7a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:C2:1B:03:B6:50:83:B2:1B:FA:37:52:6D:12:B3:41:F2:49:CC:8B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132311
sbgp-ipAddrBlock: critical
IPv4:
103.72.100.0/22
IPv6:
2001:df4:1600::/48
Signature Algorithm: sha256WithRSAEncryption
02:e1:1e:b7:42:13:d1:97:cb:1e:49:b5:cd:71:ac:ea:ab:d6:
29:4f:a3:c7:0c:dd:c0:7d:6e:fe:d9:b2:38:25:ce:d9:2d:ee:
a0:7e:02:95:66:8e:38:0f:0a:f0:fd:90:35:c4:9c:72:a9:03:
22:64:4f:7c:45:d9:33:7f:a6:eb:9d:8f:70:89:b0:66:d3:94:
5b:b1:8f:f0:a2:ed:59:e5:c4:5f:67:b3:88:d9:c1:0b:0e:f9:
41:b6:01:9d:fb:53:b9:82:f4:5b:b9:37:08:d1:6c:ba:20:97:
70:c4:21:28:28:f4:94:ec:f9:ef:db:a9:d6:70:47:ff:a0:2f:
37:52:c0:85:aa:78:4a:b3:cc:27:b2:0f:15:65:f1:2a:bc:1b:
33:05:01:9f:fa:3f:ff:09:dd:85:b0:8c:82:fb:a5:9d:0d:ac:
1b:e0:9b:27:8c:9c:96:23:05:c1:eb:29:ee:b2:3e:c7:a3:16:
97:2e:99:07:41:dc:1f:2c:cc:20:94:29:8d:75:de:ee:20:4f:
56:11:49:08:0a:fb:d7:62:ce:c1:dc:9c:1a:be:2b:04:17:c9:
d1:b5:3f:53:8b:15:c0:65:57:2e:b0:14:ed:a8:89:70:85:85:
41:70:6f:c8:45:5d:aa:fe:78:d9:69:d0:4a:0e:a4:03:5d:3b:
08:a9:8d:94
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Nov 22 06:58:28 2024 by rpki-client on console-fra.rpki-client.org