Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7JW4qElym6bvhCxjcarUrH2PIfc.cer
File: 7JW4qElym6bvhCxjcarUrH2PIfc.cer (raw, json)
Hash identifier: mUZszoWtHUs+NFmOIo+G+UfwqKLAXXc6r4Kc2/Ehe5I=
Subject key identifier: EC:95:B8:A8:49:72:9B:A6:EF:84:2C:63:71:AA:D4:AC:7D:8F:21:F7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E988
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/7JW4qElym6bvhCxjcarUrH2PIfc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 03 Apr 2024 23:50:50 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 38036
IP: 203.190.0.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 06:28:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125320 (0x1e988)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 3 23:50:50 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91A759F/serialNumber=EC95B8A849729BA6EF842C6371AAD4AC7D8F21F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:a3:4a:6c:7f:7d:4c:29:a0:3b:67:cf:fa:58:
e6:ab:ab:68:29:93:a3:dc:d8:a7:4c:03:0a:5f:02:
17:d2:60:30:b1:7f:af:bc:42:9b:14:5c:5e:35:d3:
1f:a5:3c:6c:82:eb:06:d6:a1:0f:ad:53:7b:61:37:
23:f8:c6:2f:68:48:6f:7c:10:f9:87:6f:6e:78:6f:
8f:44:62:1b:37:8c:96:95:3e:6b:da:12:d7:5f:86:
f9:4e:bd:ba:1d:73:ed:76:98:b8:ec:77:41:97:b2:
ea:81:20:fa:bd:f7:7e:e7:61:d5:53:a4:19:2a:65:
0a:3a:08:e4:4b:c9:a2:1f:2e:1a:80:cc:25:59:79:
cf:92:cf:47:33:e7:9d:fc:a5:0a:92:df:e0:4c:df:
a8:74:bb:fe:78:dd:80:cb:07:b7:da:cf:6a:81:b3:
68:22:97:c8:37:23:9b:a3:23:1c:8a:f4:dd:28:fb:
c2:40:9e:94:d9:22:cf:eb:2f:f3:fc:ca:92:d2:91:
62:e1:9f:12:eb:b1:30:ee:48:fc:af:8a:ce:75:a7:
60:5e:56:f6:b7:1e:5c:5f:ee:02:01:e4:a2:89:c0:
91:14:8a:95:e5:72:1e:78:6b:8d:fa:0c:35:e4:82:
5c:7c:b9:7e:72:19:cd:7a:a7:29:c4:57:c2:ec:ea:
14:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:95:B8:A8:49:72:9B:A6:EF:84:2C:63:71:AA:D4:AC:7D:8F:21:F7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/7JW4qElym6bvhCxjcarUrH2PIfc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38036
sbgp-ipAddrBlock: critical
IPv4:
203.190.0.0/22
Signature Algorithm: sha256WithRSAEncryption
38:0f:a7:20:3c:dc:87:72:3d:b4:ab:00:08:2f:ba:77:17:6a:
78:4c:65:dd:a4:0a:91:45:bd:b4:b6:6e:fa:c8:8d:34:21:23:
d3:80:62:26:ba:f0:16:d0:d6:bd:39:8b:b0:95:44:b9:ba:c4:
c1:1c:1a:a5:f2:50:8f:6d:23:c3:c3:e1:0a:f3:7e:52:cb:1c:
34:ad:bf:7e:28:a4:0a:e6:75:e5:f1:85:1c:75:14:1b:8b:34:
da:0e:72:b4:cc:1e:0c:41:2e:1c:6c:99:8d:7e:76:8d:6d:0e:
b2:82:69:2f:1c:1d:57:fe:91:5b:b0:36:7b:e3:62:0d:00:74:
cd:0e:a4:59:a2:72:91:88:ba:0d:19:f8:60:3d:e0:e6:db:2d:
2c:00:20:d7:19:cb:f5:2b:81:d5:40:71:15:59:a3:75:a1:4d:
7d:95:c9:5e:2b:a1:fd:4c:6f:69:9b:21:6d:e3:8b:6f:5f:49:
d4:8e:f8:83:af:3f:06:4b:ce:ce:ca:76:0a:1e:42:b6:13:3d:
41:fa:93:58:91:d9:4b:20:b7:c5:b5:29:f0:3e:0c:af:43:a8:
60:bb:65:59:c9:6a:8b:75:fb:8c:99:21:ce:c2:c4:a5:ca:3b:
32:c6:40:2b:35:63:bb:13:a7:ec:c3:72:96:19:37:fe:88:26:
a4:7e:a3:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 07:18:42 2024 by rpki-client on console-fra.rpki-client.org