Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7F7zNU5M1TSrhiW5m3MS1vTkixU.cer
File: 7F7zNU5M1TSrhiW5m3MS1vTkixU.cer (raw, json)
Hash identifier: 8Ay+PdhTeS2PBccPdmk8iIUBAVa2flEFvdI8txP0wzc=
Subject key identifier: EC:5E:F3:35:4E:4C:D5:34:AB:86:25:B9:9B:73:12:D6:F4:E4:8B:15
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EBC6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91EF175/0460AA18FBFB11EEA1EEAF1FC4F9AE02/7F7zNU5M1TSrhiW5m3MS1vTkixU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91EF175/0460AA18FBFB11EEA1EEAF1FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 16 Apr 2024 14:10:10 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 152660
IP: 203.26.240.0/23
IP: 2001:df3:9c40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 05:14:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125894 (0x1ebc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 16 14:10:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91EF175/serialNumber=EC5EF3354E4CD534AB8625B99B7312D6F4E48B15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:6e:b7:75:b7:bb:7a:8c:56:2b:59:7d:5c:12:
14:3b:11:db:e1:90:9d:aa:cc:22:e5:f6:e5:f6:59:
be:b7:ff:aa:98:fa:2e:3f:14:57:eb:b7:0c:49:d3:
b3:ab:ab:d5:a8:32:9a:fc:3c:59:67:1b:24:31:74:
75:5e:4f:87:e4:e0:6c:fc:c1:cc:71:92:d5:98:3b:
64:83:42:5d:e0:0c:da:6e:86:c6:e3:c4:75:c9:e5:
74:da:4f:df:5c:42:b5:af:2e:c9:73:df:84:83:09:
90:9d:a3:11:2a:54:87:4e:70:91:e8:e0:4c:00:1c:
8b:e8:72:75:f8:38:8c:3e:2c:e2:13:c9:6f:45:d4:
35:b9:72:4e:96:5b:95:d1:e6:53:d4:d9:cc:90:4b:
06:20:33:ba:a2:34:9c:fa:26:51:01:c8:8d:5a:83:
69:0b:cc:17:ab:ef:ff:47:a5:f6:2f:4e:7a:e1:b8:
a7:5a:1d:6a:c3:92:d1:0e:e3:ae:78:71:14:0f:a9:
7c:17:83:dd:f8:2a:4c:e1:0a:ae:ae:9a:be:ef:2d:
75:29:b1:9f:e9:21:df:04:d6:71:c8:c3:33:5e:8a:
3f:74:09:9c:e4:b8:e0:72:18:84:9d:95:61:5a:ae:
c2:72:ae:63:2e:6f:4e:8c:d2:ea:e9:5e:55:3c:22:
5a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:5E:F3:35:4E:4C:D5:34:AB:86:25:B9:9B:73:12:D6:F4:E4:8B:15
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91EF175/0460AA18FBFB11EEA1EEAF1FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91EF175/0460AA18FBFB11EEA1EEAF1FC4F9AE02/7F7zNU5M1TSrhiW5m3MS1vTkixU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152660
sbgp-ipAddrBlock: critical
IPv4:
203.26.240.0/23
IPv6:
2001:df3:9c40::/48
Signature Algorithm: sha256WithRSAEncryption
b8:f2:24:69:f0:93:67:3a:41:66:e7:bc:31:e7:74:81:86:a5:
e9:d6:ff:56:85:1f:93:50:47:a9:ec:9b:b7:d0:f2:fd:ee:9e:
9c:1a:11:91:a0:46:f9:d3:6d:6f:14:11:7a:83:4e:f3:0b:df:
1b:fe:5c:a5:db:73:76:57:5a:08:e3:88:97:eb:d3:93:11:af:
b2:c6:95:31:a2:fb:18:27:bc:d1:29:5d:14:00:0b:1c:d1:ad:
02:bf:bf:1e:68:e5:e0:26:b8:5b:89:85:cd:d3:75:42:69:20:
6e:0b:5d:df:34:86:57:24:47:93:16:ed:8d:b1:a3:db:2a:0a:
b7:85:c6:2d:55:f6:ce:61:f5:f1:be:41:b8:88:a9:46:a0:a2:
c5:ec:1c:80:ec:16:46:0f:7d:d0:a9:1a:00:93:af:08:f1:15:
58:e4:86:fc:64:95:d0:43:07:e3:97:6a:e0:58:3e:2a:42:48:
af:ba:75:73:da:5f:e9:e7:58:8a:94:ca:da:a6:1e:b5:f1:3c:
b2:50:32:d3:09:71:c4:a3:35:93:2a:bc:0b:8d:1d:8b:ae:12:
1f:bd:13:c9:6a:01:d1:19:de:07:9c:73:a2:2d:96:d5:a8:5f:
71:45:0c:0f:f4:6e:db:16:aa:d2:17:e0:34:41:78:ca:6d:5b:
30:cd:d1:47
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 2 05:58:13 2024 by rpki-client on console-ams.rpki-client.org