Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/788FLZiSks6xBQkSnI3iA9SfaAQ.cer
File: 788FLZiSks6xBQkSnI3iA9SfaAQ.cer (raw, json)
Hash identifier: f7JaWOgyGV2zkpvsvzpJ7VhbE7KVFccn520wCS39AE4=
Subject key identifier: EF:CF:05:2D:98:92:92:CE:B1:05:09:12:9C:8D:E2:03:D4:9F:68:04
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A867
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 05 Jun 2023 23:13:58 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 136379
AS: 149448
AS: 150158
IP: 103.138.192.0/23
IP: 2001:df0:5080::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108647 (0x1a867)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 5 23:13:58 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A91EB9C0/serialNumber=EFCF052D989292CEB10509129C8DE203D49F6804
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:eb:b6:a1:bf:12:c4:5a:94:e3:45:9e:e7:e7:
ed:c9:ca:d6:ba:ed:c6:99:b1:ca:ed:9c:4c:21:7c:
1d:79:4d:a0:d0:76:05:95:8c:7c:92:f2:37:45:56:
b1:14:c4:24:74:9b:bc:b6:fb:ac:3e:b1:b5:ca:b6:
bc:71:b0:b5:88:2a:2e:23:a1:54:b3:a6:15:30:86:
97:5b:10:00:c4:95:7a:5a:6c:93:26:30:74:cf:4f:
b5:6c:4b:b8:ec:64:42:ce:ed:2d:ba:f3:7c:a4:8d:
9a:dd:97:39:0f:00:09:06:43:3a:15:9f:c2:66:c9:
52:03:10:d5:e0:73:94:95:e7:0c:db:3e:38:8e:3b:
55:80:c8:24:8d:38:fd:2a:1d:e0:e0:e4:7a:51:9c:
80:1b:0e:3e:69:eb:0c:d7:64:e1:44:bc:34:b0:83:
0d:2e:29:d2:28:89:0c:5f:5a:0f:38:b4:ea:4c:83:
25:91:88:60:ea:e8:d7:e4:2d:4b:2a:c9:da:b9:c8:
56:ad:03:a4:8f:43:8e:4d:19:07:2d:4f:f3:af:a7:
0b:8d:f9:31:be:23:e9:11:79:47:d8:20:75:e1:d7:
a1:a5:bf:7b:97:01:62:04:89:3f:35:65:af:fb:9c:
c0:da:bb:39:3e:7b:5d:86:12:f3:8b:31:f8:74:f2:
b5:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:CF:05:2D:98:92:92:CE:B1:05:09:12:9C:8D:E2:03:D4:9F:68:04
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EB9C0/D364F0CCD21A11E983F9E524C4F9AE02/788FLZiSks6xBQkSnI3iA9SfaAQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136379
149448
150158
sbgp-ipAddrBlock: critical
IPv4:
103.138.192.0/23
IPv6:
2001:df0:5080::/48
Signature Algorithm: sha256WithRSAEncryption
cc:61:eb:60:b5:3c:8b:36:cb:a9:78:7b:21:fa:25:5e:92:8c:
45:f8:a6:be:77:4b:7a:1c:7c:51:78:f0:10:69:96:87:1b:4b:
ed:b7:b1:b9:7d:06:51:81:10:e2:d5:07:c8:62:3b:1b:02:b8:
ef:bc:86:5f:cb:42:79:3f:48:5c:89:ff:0b:07:cb:f1:87:36:
ee:51:be:e4:bd:19:96:f2:d8:ff:c6:48:40:e4:da:de:0e:4c:
08:5a:b4:7c:2a:98:cb:06:2a:7a:4c:5e:f1:d9:5b:c0:cc:1b:
12:6f:70:a6:32:8b:ef:60:98:8e:59:da:b7:d4:9c:8b:49:0a:
79:df:bb:62:5a:ba:0d:e3:e1:39:4f:78:34:a4:3e:43:e7:5e:
1a:5d:12:d3:60:66:84:76:f9:e2:a1:6d:1f:53:69:c1:b8:64:
ba:a0:e7:12:07:b5:19:5d:8e:7d:33:3d:91:bb:e2:ff:05:d1:
01:3d:98:f2:79:16:c2:8f:b7:ad:81:7a:d3:02:d0:6d:e6:6d:
5b:4e:8b:a6:8f:25:3b:cf:9d:bd:fe:40:be:c6:b9:c0:eb:d9:
01:97:8e:5d:19:9e:ee:87:c4:c9:94:e0:e4:20:93:09:b8:dc:
cf:23:c5:10:b3:fc:2d:2c:04:18:14:fc:03:20:6f:fa:0c:86:
22:d1:e5:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:02:43 2024 by rpki-client on console-ams.rpki-client.org