Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7N0mV0PpIRvOCq3LsCLObzO-CwY.cer
File: 7N0mV0PpIRvOCq3LsCLObzO-CwY.cer (raw, json)
Hash identifier: 9Cb6af+Mlvx8RvNtg4GY+rFqCc7siizSEUSiqmGALks=
Subject key identifier: EC:DD:26:57:43:E9:21:1B:CE:0A:AD:CB:B0:22:CE:6F:33:BE:0B:06
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D52F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/7N0mV0PpIRvOCq3LsCLObzO-CwY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 30 Dec 2023 18:25:47 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 58701
IP: 103.20.89.0/24
IP: 2406:e9c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 21:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120111 (0x1d52f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 30 18:25:47 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91C1710/serialNumber=ECDD265743E9211BCE0AADCBB022CE6F33BE0B06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:de:34:dd:79:e0:40:da:e7:35:b8:8e:3d:62:
93:1a:93:bd:f2:eb:f8:e7:ab:19:15:92:dc:f7:5f:
72:52:9e:a2:7b:63:c5:46:94:c3:0b:dc:1c:15:f3:
ad:7d:11:c4:74:40:36:96:05:18:ea:cf:1e:fa:b5:
6c:ae:05:cb:8e:3f:51:f1:63:2c:96:2c:b3:54:88:
cb:d6:1b:02:6e:73:b1:48:6d:20:54:b8:32:fb:13:
0b:39:60:b3:42:c2:1c:ca:38:66:1e:3e:f5:d9:41:
19:c6:2a:00:71:17:46:62:0e:d2:ac:54:7a:41:24:
f1:49:e4:70:29:42:bb:8a:2e:9e:ce:16:44:e2:c7:
32:e9:f6:d4:8e:14:f9:61:b8:e5:d1:fa:b5:04:77:
1a:1b:b4:9d:17:4a:24:8f:66:15:32:9d:93:c6:bb:
51:af:94:29:d8:38:7a:21:e4:b3:b4:b5:60:b8:bd:
64:1d:3f:9f:d2:19:fb:0f:16:00:3e:96:0f:eb:03:
de:21:72:cc:fa:7b:87:c1:a4:8c:3d:88:b6:ec:60:
27:62:da:e2:7b:b7:5d:8c:c6:b2:3a:ae:f7:77:23:
7b:28:08:df:4d:7b:eb:a8:54:3e:e6:ca:2a:83:89:
1a:17:b8:92:ee:bf:be:0c:30:8b:c3:b3:93:cc:c4:
cc:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:DD:26:57:43:E9:21:1B:CE:0A:AD:CB:B0:22:CE:6F:33:BE:0B:06
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/7N0mV0PpIRvOCq3LsCLObzO-CwY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58701
sbgp-ipAddrBlock: critical
IPv4:
103.20.89.0/24
IPv6:
2406:e9c0::/32
Signature Algorithm: sha256WithRSAEncryption
77:fd:e3:07:ca:a9:4e:57:ca:bc:5c:28:ff:d6:d0:41:46:98:
b7:3d:41:dd:5d:4a:4b:ce:d9:89:13:7c:b4:b3:ee:ca:59:6a:
94:a5:98:55:74:ba:e3:05:9e:8f:c2:6d:85:e3:1c:05:d9:63:
7f:3f:59:dd:b0:ee:d1:68:6d:f7:27:47:ef:02:0a:fb:ab:48:
86:70:26:82:41:3f:fd:8e:3d:fd:d0:13:9e:ff:6a:94:41:a2:
85:be:3b:90:4b:e9:5b:bf:d5:c0:b2:fd:db:86:31:84:9e:a8:
0d:77:70:68:dd:f9:eb:fd:17:69:51:cf:08:7e:61:b4:2e:5d:
b3:85:5c:c4:15:5b:c6:66:c2:58:26:b9:fc:03:72:45:c9:54:
48:ee:ee:d1:41:23:42:22:84:0a:59:a0:be:40:bd:0d:e0:ee:
ce:a0:09:9c:16:03:fa:08:c6:40:d8:be:77:bb:aa:0a:ca:bc:
50:0b:d8:b6:fd:a4:14:9f:e4:bc:96:f1:ae:f2:77:f4:b4:33:
d6:48:b3:1b:ea:cc:bb:82:1f:2c:19:07:86:68:43:38:9b:03:
d4:51:c6:9e:3c:15:2d:d6:1d:61:4a:1c:79:cc:85:58:05:f0:
e8:6d:d8:41:af:7c:0c:c8:e6:60:87:01:d3:10:e0:c5:7e:49:
6f:0b:91:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 22:16:24 2024 by rpki-client on console-fra.rpki-client.org