Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer
File: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer (raw, json)
Hash identifier: h/8MFKfu1q84N+8BFZGdnkm6aEL/A+TVRIiaqY63ZAw=
Subject key identifier: F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E906
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 02 Apr 2024 19:30:20 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 134087
IP: 103.182.168.0/23
IP: 2001:df0:7ec0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125190 (0x1e906)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 2 19:30:20 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A9156DB4/serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:7d:ea:d0:e9:fc:3f:fb:e6:1a:24:26:4d:fa:
77:66:b2:40:6b:5d:15:65:36:dd:b3:61:40:8f:25:
bd:f0:50:a8:34:31:42:e9:08:74:67:a5:cd:e7:ea:
f1:72:78:33:7c:3f:c3:de:74:57:18:c2:cf:d8:27:
35:f6:56:dc:32:2c:cf:d6:7b:81:59:9b:f1:20:44:
01:a4:9c:01:0f:f6:46:4b:04:64:4b:1e:43:67:22:
88:db:08:91:be:d9:99:15:48:56:ea:8b:5e:d6:19:
67:f7:89:b7:00:9b:3d:0e:1b:2f:6c:88:f0:2f:c2:
70:db:40:2a:c6:ba:36:2f:fa:8c:b9:80:6b:4e:94:
5d:2a:8d:1f:79:8f:0b:2f:24:7c:76:68:d4:7b:68:
66:81:89:7e:2c:23:a2:55:2d:bb:0f:fe:0c:00:9d:
88:62:79:80:be:78:13:47:02:6d:66:ce:14:40:64:
66:dc:42:22:16:dc:fa:ee:e5:e7:d9:18:0d:03:05:
3b:a5:d0:e8:28:88:ca:0b:4a:0e:8a:84:07:61:48:
b1:32:06:39:61:70:ce:a4:a4:6c:ff:24:00:16:a3:
c9:07:77:d0:e0:7a:22:d1:88:d9:79:b4:92:68:85:
eb:94:b1:17:67:e3:8c:3d:39:89:89:7a:ad:3c:0b:
94:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134087
sbgp-ipAddrBlock: critical
IPv4:
103.182.168.0/23
IPv6:
2001:df0:7ec0::/48
Signature Algorithm: sha256WithRSAEncryption
2d:d0:c7:59:a0:d8:0f:f2:71:8a:e9:48:48:93:2e:22:ca:a1:
48:6e:9e:8f:ed:a0:e2:f2:05:45:ac:7b:29:3f:54:53:90:f6:
eb:5e:4d:54:db:69:6a:91:b0:a5:a7:4a:9c:de:54:f8:7c:66:
c1:34:ef:ed:93:54:d5:6f:f8:2c:c1:ca:bc:a2:62:7d:76:4c:
b7:68:19:26:aa:f3:88:0e:e1:b7:2e:ea:9f:a6:ee:67:b6:0b:
2c:40:94:0e:2b:da:99:f0:f6:08:2e:8c:15:90:94:c4:c7:9c:
4b:b8:a5:4e:b3:b1:29:e2:99:80:8f:ef:f0:bf:f4:b2:e4:61:
bf:06:c5:88:b3:b0:2a:e9:e8:5d:ad:91:11:12:64:44:34:9c:
90:c5:25:2f:28:b5:e3:2e:65:75:a0:f4:54:d4:07:06:7f:97:
bb:a6:5e:13:f3:b9:c1:81:79:dc:38:9f:11:21:0b:f2:55:b4:
24:81:24:4f:62:23:6d:d1:7b:b4:92:c5:b8:fc:0b:67:a8:40:
6f:98:26:ce:ad:91:ea:68:17:bd:e0:26:33:a4:99:5b:dc:51:
a4:71:ed:a3:4f:c0:11:66:06:48:2e:33:9f:62:99:81:ae:94:
fc:9a:ee:90:24:e0:a6:66:00:bb:18:58:7d:2d:e0:76:e6:71:
57:64:20:80
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Nov 22 22:15:07 2024 by rpki-client on console-ams.rpki-client.org