Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/967Vh1ESzPsgjnGCR7Hkm6r_uGU.cer
File: 967Vh1ESzPsgjnGCR7Hkm6r_uGU.cer (raw, json)
Hash identifier: P7lU6JoTN9nZ/w7mkrU4VY2rYcp+5phjGbcSbycFPv4=
Subject key identifier: F7:AE:D5:87:51:12:CC:FB:20:8E:71:82:47:B1:E4:9B:AA:FF:B8:65
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E93B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915D0AC/A29AA2D8152411EE9D70C968C4F9AE02/967Vh1ESzPsgjnGCR7Hkm6r_uGU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915D0AC/A29AA2D8152411EE9D70C968C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 03 Apr 2024 07:02:43 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 132481
IP: 103.148.236.0/23
IP: 203.4.128.0/22
IP: 203.11.96.0/24
IP: 2001:df2:fc80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 00:15:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125243 (0x1e93b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 3 07:02:43 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A915D0AC/serialNumber=F7AED5875112CCFB208E718247B1E49BAAFFB865
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fd:8e:63:8e:b1:a0:80:8e:60:a0:d5:49:7b:15:
75:81:04:a8:c9:63:01:96:ad:a1:92:f6:58:13:4c:
51:c3:b1:b8:2d:d9:16:34:3b:e5:44:c1:f5:e7:bc:
7f:11:c2:12:05:10:36:5e:73:ea:4e:2e:52:85:9e:
b7:6c:65:65:e6:03:9f:5c:ed:b6:a9:04:3f:82:a5:
83:68:e7:12:f8:8a:0e:7e:53:e9:ea:6c:ca:fc:bd:
4a:dc:8e:9a:be:87:25:94:59:fb:fc:07:aa:5d:eb:
71:a0:70:74:b9:09:ea:85:1a:4a:5e:9f:08:98:01:
80:44:07:7a:d7:43:06:cd:15:0f:3a:86:32:00:8b:
f6:5e:3e:28:3d:7b:3e:b1:43:51:4a:c6:a2:f4:90:
91:00:c6:ae:e1:90:d2:6d:36:0e:58:dd:c6:08:b5:
a7:9a:25:30:7c:42:74:12:bb:b2:03:ef:d8:c6:2c:
c1:fa:6e:a5:10:7a:76:7b:3e:3b:40:5d:1c:41:6b:
b4:62:ba:3f:10:06:6b:99:48:46:2c:cf:b8:9f:cc:
a6:7f:4e:bf:ef:d7:95:21:7d:84:2e:87:39:83:4f:
65:14:14:9d:d4:29:e5:0a:32:33:d5:a2:b9:98:e1:
da:fc:39:8d:95:6d:01:b8:5c:4d:18:70:8e:4f:57:
e6:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:AE:D5:87:51:12:CC:FB:20:8E:71:82:47:B1:E4:9B:AA:FF:B8:65
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915D0AC/A29AA2D8152411EE9D70C968C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915D0AC/A29AA2D8152411EE9D70C968C4F9AE02/967Vh1ESzPsgjnGCR7Hkm6r_uGU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132481
sbgp-ipAddrBlock: critical
IPv4:
103.148.236.0/23
203.4.128.0/22
203.11.96.0/24
IPv6:
2001:df2:fc80::/48
Signature Algorithm: sha256WithRSAEncryption
6d:1d:bb:39:a5:06:cd:bf:ed:33:49:c5:d3:dd:d1:9a:07:a4:
c0:d9:03:0d:04:84:be:5c:18:bd:bc:7c:35:43:2e:02:4e:79:
e7:b7:af:f3:b6:83:59:47:ee:ad:4f:42:01:48:52:d6:28:a4:
c8:42:f8:ea:53:b9:7a:9d:d0:c0:92:e7:be:ee:70:10:6b:52:
a9:f0:6e:db:1c:e0:0b:44:dd:45:44:31:08:1d:ec:0c:6d:2a:
af:4a:3b:94:66:11:a1:f1:31:a1:8d:c8:d3:39:6a:0f:2d:24:
3d:9f:9b:1a:f5:4d:42:3e:41:cf:bc:cd:e9:ef:c6:05:82:4c:
53:95:d5:9e:f4:51:a1:55:11:0f:3e:c1:00:26:06:b2:5e:7f:
47:ea:fa:e5:fd:df:c5:d1:b6:c2:07:be:65:53:cc:ee:55:cf:
6f:7c:14:55:7b:1d:bf:95:01:90:ee:9b:c7:e9:5b:17:ec:cb:
19:06:68:b8:32:0c:ad:df:b0:92:24:98:f6:32:5d:47:d7:34:
16:05:ac:4e:f4:c5:a8:1d:fb:54:83:b1:b3:b2:0b:1a:18:1f:
da:9a:87:4e:42:c0:59:f3:34:55:29:c1:01:c6:91:54:ce:1a:
6d:88:ce:1d:02:a9:9d:fa:ea:b4:ad:b8:e2:c2:8f:bd:6a:0a:
b0:43:c7:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 01:06:49 2024 by rpki-client on console-fra.rpki-client.org