Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6VE3HeTcsQAlSE0vFP3NosZFW5E.cer
File: 6VE3HeTcsQAlSE0vFP3NosZFW5E.cer (raw, json)
Hash identifier: kuU8kDdaP8pf46cNXlsobkYT1dDsRB6p9P8AKx3z0gY=
Subject key identifier: E9:51:37:1D:E4:DC:B1:00:25:48:4D:2F:14:FD:CD:A2:C6:45:5B:91
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D2C5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9195FCB/880E634022A711EBB406CE7CC4F9AE02/6VE3HeTcsQAlSE0vFP3NosZFW5E.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9195FCB/880E634022A711EBB406CE7CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 18 Dec 2023 22:55:11 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 141398
IP: 103.158.62.0/23
IP: 2406:b240::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 13:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119493 (0x1d2c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 18 22:55:11 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A9195FCB/serialNumber=E951371DE4DCB10025484D2F14FDCDA2C6455B91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:f6:c4:f2:d8:2c:3e:8a:8d:70:ff:e9:79:3b:
5b:af:5b:c8:ea:eb:54:b4:64:e9:46:2a:72:9d:04:
1e:a7:3e:25:f0:7a:40:04:ce:d2:01:c1:56:a7:bc:
85:a4:bb:25:89:ef:0f:11:47:62:6c:c3:0f:cb:7c:
fa:d6:7d:09:57:fb:bc:52:f6:eb:e0:05:cb:ac:28:
ff:ec:80:92:fe:9e:35:5b:26:3f:9c:42:84:95:d3:
35:df:46:ea:74:2f:f3:d6:99:d6:76:c2:23:56:79:
56:7c:09:c8:ac:a3:ce:7a:08:3d:3c:9c:58:dd:7b:
22:13:2c:eb:19:37:c9:38:73:0c:eb:25:48:62:6d:
cb:de:fa:59:fb:e5:88:0c:f9:d0:ef:0c:fd:e2:1a:
09:47:c8:3f:5e:ce:13:4b:00:8b:cb:b9:ea:52:a8:
12:fd:54:eb:a0:c7:00:c4:09:42:28:8d:06:b5:5e:
7a:03:a1:bf:e1:de:e3:a7:81:d6:3a:ca:f2:15:e1:
72:37:f3:6a:aa:cf:fb:62:22:27:7d:41:43:5a:9b:
a3:01:ad:74:f0:3a:06:9a:4e:0c:83:99:da:01:3d:
51:0e:7c:8b:f0:65:91:c9:d1:d2:32:d7:97:4b:f6:
70:e5:52:44:7a:2d:38:1d:9f:82:e1:4f:67:b6:1a:
39:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:51:37:1D:E4:DC:B1:00:25:48:4D:2F:14:FD:CD:A2:C6:45:5B:91
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9195FCB/880E634022A711EBB406CE7CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9195FCB/880E634022A711EBB406CE7CC4F9AE02/6VE3HeTcsQAlSE0vFP3NosZFW5E.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141398
sbgp-ipAddrBlock: critical
IPv4:
103.158.62.0/23
IPv6:
2406:b240::/32
Signature Algorithm: sha256WithRSAEncryption
72:08:b9:17:e4:fa:4b:e0:1d:cb:49:fd:44:ef:cd:30:67:82:
0a:7d:14:e6:02:02:01:ca:76:4b:17:ec:45:5f:98:c4:61:94:
a3:e3:5b:01:75:9e:4b:6f:04:c7:a1:64:9f:85:32:4a:0c:29:
88:d6:7d:87:f5:2c:92:5f:ca:2a:1c:c4:7e:0c:94:ff:f3:8a:
f9:32:14:27:37:f3:c2:ba:cc:9a:36:44:60:17:37:5c:11:06:
62:df:e6:6e:1f:ab:c7:a2:a5:29:dd:56:72:9a:e8:b0:c9:06:
e2:81:2e:61:66:83:7a:42:48:43:22:6f:87:fc:b5:77:76:e8:
14:c9:fe:9e:a5:1b:72:3c:56:14:c3:58:a2:aa:c5:1c:28:ea:
5e:c6:26:ae:0a:01:ae:29:84:9d:66:47:b3:31:76:18:37:af:
3e:fc:6b:25:8f:44:08:87:a0:05:98:21:ae:39:c4:23:73:07:
ab:0b:36:68:b3:f1:70:8a:2b:29:72:8e:1f:ca:9e:90:63:bc:
17:c8:19:4c:2d:7c:d6:3a:12:39:81:23:aa:d9:2e:7a:8d:10:
78:c3:de:c8:ef:8b:3d:51:0f:6e:45:62:bd:10:cd:9a:18:ab:
49:d9:26:03:b7:4a:b3:56:aa:ce:0b:ec:fd:9f:d9:78:35:90:
ed:4c:c4:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 14:08:22 2024 by rpki-client on console-ams.rpki-client.org