Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/97sXL8rsr7-evvJQihVCZDOuyd4.cer
File: 97sXL8rsr7-evvJQihVCZDOuyd4.cer (raw, json)
Hash identifier: KIpouZub1vZEn1eC1uG5wC7F80DuOVQ4V126nLi5YV0=
Subject key identifier: F7:BB:17:2F:CA:EC:AF:BF:9E:BE:F2:50:8A:15:42:64:33:AE:C9:DE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D4ED
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 29 Dec 2023 04:35:26 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 150450
IP: 103.40.2.0/23
IP: 2400:c3a0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 11:16:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120045 (0x1d4ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 29 04:35:26 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91CEDD3/serialNumber=F7BB172FCAECAFBF9EBEF2508A15426433AEC9DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:20:d5:08:fe:72:03:11:27:fc:63:01:61:71:
bd:da:63:98:03:cd:44:2f:2e:5c:10:a7:55:43:2f:
47:3b:ae:b4:25:81:4f:d1:bb:27:93:ef:e5:53:3c:
4c:e9:b8:7d:68:0f:98:cf:b8:97:90:0a:c0:c2:a7:
30:e3:8e:9e:fc:e0:12:3c:8e:29:9f:86:b9:18:63:
b6:44:34:8b:45:2d:18:bb:25:35:f0:ea:95:2f:9c:
74:0f:9d:83:44:c8:f5:d5:81:a4:d4:47:64:f0:a1:
4b:9b:03:ea:ec:a4:eb:29:9e:dd:74:c8:64:51:0f:
15:8f:8d:48:28:2d:c7:6f:29:5e:27:f4:dd:ea:6d:
90:e9:68:71:b8:2a:10:d3:c0:d8:ab:f1:d0:25:40:
48:0c:55:74:64:4a:d7:bd:94:e7:b0:9b:fc:50:df:
8f:97:3b:9a:4c:7e:3f:c7:75:f1:50:99:27:ff:fc:
26:d1:f7:77:78:87:f0:0d:09:5d:1c:06:08:61:40:
63:ec:65:b6:bc:53:4d:bc:9c:54:df:97:40:b0:e3:
dd:c8:a1:d6:35:83:23:46:da:ed:8a:db:ae:e5:b6:
79:ff:54:0b:55:c5:63:4c:62:64:bf:bd:c9:ae:ce:
ab:b5:30:0b:fe:60:c6:85:18:24:ab:2e:76:ba:41:
69:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:BB:17:2F:CA:EC:AF:BF:9E:BE:F2:50:8A:15:42:64:33:AE:C9:DE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150450
sbgp-ipAddrBlock: critical
IPv4:
103.40.2.0/23
IPv6:
2400:c3a0::/32
Signature Algorithm: sha256WithRSAEncryption
c0:ba:ec:06:46:f8:82:c6:87:d4:97:f6:64:f6:2e:7d:f2:15:
5b:4e:b5:64:ac:a7:eb:46:c4:70:3e:4c:96:ff:16:9d:91:ae:
d4:ad:2f:c1:cc:d9:d5:71:57:61:65:85:c7:02:f5:e3:26:43:
14:87:aa:3e:e9:db:ec:41:9e:27:0b:62:62:5b:e5:2a:90:8b:
09:52:82:8c:90:b2:73:cf:ea:77:02:ff:fc:ad:5e:2c:b5:87:
ec:bd:af:23:85:3f:d4:2d:7e:c8:c9:93:dc:47:4c:1f:c7:29:
35:e2:a5:38:e6:74:e1:0a:18:d7:09:71:1a:43:72:50:28:39:
c0:6c:6d:a2:a6:26:6b:75:15:71:17:f0:9a:b1:cc:34:15:9b:
25:02:70:fc:f7:33:a5:77:e6:e7:6f:4c:f9:4b:e4:40:fc:14:
67:4d:29:3d:81:f2:44:fd:76:f2:6d:97:9c:c3:56:d2:67:b4:
89:c7:58:85:20:21:66:bd:fb:e2:b1:91:ce:a1:b0:a6:57:93:
cc:7d:4e:4f:f3:1f:4f:96:19:b4:8a:3f:61:55:3c:25:28:28:
75:84:74:6e:0a:7e:41:1b:ba:68:eb:08:6e:93:1d:bf:f1:90:
a9:77:af:bc:d4:34:39:4f:1a:09:26:93:bf:b4:a1:1c:ae:f7:
fe:b5:9b:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:37:15 2024 by rpki-client on console-ams.rpki-client.org