Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9-izu07xkrh2NgHbMj9N4oMaEBo.cer
File: 9-izu07xkrh2NgHbMj9N4oMaEBo.cer (raw, json)
Hash identifier: TQcroH0yMP2/1eXNeVzMZn1HfWuFcMZio7fOA8UsyRA=
Subject key identifier: F7:E8:B3:BB:4E:F1:92:B8:76:36:01:DB:32:3F:4D:E2:83:1A:10:1A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C922
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914B6D8/16333DAEFFBC11E9ABBB1451C4F9AE02/9-izu07xkrh2NgHbMj9N4oMaEBo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914B6D8/16333DAEFFBC11E9ABBB1451C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 06 Nov 2023 15:03:33 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 137013
IP: 103.101.253.0/24
IP: 2402:5440::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 03:41:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117026 (0x1c922)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 6 15:03:33 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A914B6D8/serialNumber=F7E8B3BB4EF192B8763601DB323F4DE2831A101A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c0:08:de:88:f3:c7:f0:a4:d3:90:9c:8d:55:
81:ef:c3:93:12:ad:8b:c5:bc:e5:0b:fb:be:1a:60:
2d:57:7c:12:42:84:a5:0e:d7:e1:94:a0:76:3a:91:
98:3b:3b:0d:92:43:bb:b3:a2:96:1a:41:c2:31:fb:
e6:0d:b0:4c:99:13:e7:14:ba:69:6d:39:54:84:2a:
8c:fb:8c:48:af:17:0c:eb:df:49:9b:e3:b5:4e:14:
8a:97:b9:ee:3a:f0:59:c8:f7:60:f7:65:1a:e6:5c:
ed:09:5f:c2:1c:37:ef:b5:29:90:d1:d5:84:e7:f0:
4d:3d:88:33:06:93:2a:23:6c:09:71:5b:39:bf:f6:
59:c6:98:85:c0:f9:a9:91:c5:4e:3a:3f:d2:06:5d:
1a:a5:f2:70:e5:44:10:4b:33:77:5a:eb:73:db:e0:
65:70:f8:87:05:58:44:2a:1b:30:81:e7:78:1b:76:
2d:92:bb:bf:90:39:19:33:90:f1:59:76:c1:56:10:
93:bb:42:00:06:8b:ce:f1:b4:d0:80:30:b6:2c:3a:
dc:a4:df:89:18:54:43:46:3d:75:74:55:09:64:ce:
87:e4:b3:93:65:87:6a:51:bf:db:63:73:b4:74:cc:
0d:81:52:d4:6f:97:40:cf:cb:42:76:31:56:41:9b:
0c:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:E8:B3:BB:4E:F1:92:B8:76:36:01:DB:32:3F:4D:E2:83:1A:10:1A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914B6D8/16333DAEFFBC11E9ABBB1451C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914B6D8/16333DAEFFBC11E9ABBB1451C4F9AE02/9-izu07xkrh2NgHbMj9N4oMaEBo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137013
sbgp-ipAddrBlock: critical
IPv4:
103.101.253.0/24
IPv6:
2402:5440::/32
Signature Algorithm: sha256WithRSAEncryption
79:57:98:6d:c2:48:bc:54:2b:b8:b0:f7:dc:85:e1:cd:85:0d:
dd:06:4c:1b:2c:b7:08:62:9a:e4:06:5e:9e:79:29:68:91:46:
62:e3:13:a4:c1:37:2e:74:21:3d:ca:b8:71:31:c9:29:34:8c:
c9:fa:e4:a0:b3:a6:fb:51:05:8a:2e:ee:a8:d0:31:7c:8b:8c:
06:20:9c:74:c7:f0:cd:21:69:0a:fe:a3:98:b2:d8:a1:18:52:
c8:3a:27:be:ec:b8:91:c2:af:fe:38:78:32:35:d5:0e:ac:05:
fa:7b:fb:47:26:23:c1:35:51:5e:b7:fb:01:e5:97:d9:22:62:
15:d8:e8:92:7b:5e:8e:04:47:1b:f4:f2:93:21:c7:73:da:ed:
b2:11:b7:a2:e7:6c:ca:99:38:e0:14:e3:7b:50:2a:01:59:89:
0a:f0:3a:42:e7:d1:3f:2d:a2:66:75:ed:65:f6:61:77:bf:7e:
29:fc:4d:72:2e:50:c9:cc:85:be:bd:45:47:66:a7:b8:0a:57:
5e:49:1b:64:a7:33:2e:0b:dc:1a:e6:2f:30:55:af:8b:25:ad:
b1:60:6e:d8:d3:ea:b1:ab:58:c3:2b:a3:3d:3c:71:96:3e:52:
e0:64:9d:f4:9e:b9:c4:83:dc:72:f4:89:9c:66:54:b8:cb:1c:
b0:fc:3a:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 06:09:21 2024 by rpki-client on console-ams.rpki-client.org