Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99M_RV7avj1Mtj-5LkygdhGcNKY.cer
File: 99M_RV7avj1Mtj-5LkygdhGcNKY.cer (raw, json)
Hash identifier: F165nnqqDJaYp5/+ggoC0qdYO2MrrUg+khTpexLvPrM=
Subject key identifier: F7:D3:3F:45:5E:DA:BE:3D:4C:B6:3F:B9:2E:4C:A0:76:11:9C:34:A6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C5E8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9150845/DC7100EA5A5511E8BE3E0B68C4F9AE02/99M_RV7avj1Mtj-5LkygdhGcNKY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9150845/DC7100EA5A5511E8BE3E0B68C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 25 Oct 2023 03:52:47 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 63528 -- 63529
AS: 136458
IP: 203.159.64.0/23
IP: 203.159.68.0/22
IP: 2001:deb::/48
IP: 2001:df5:b880::/47
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116200 (0x1c5e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 25 03:52:47 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A9150845/serialNumber=F7D33F455EDABE3D4CB63FB92E4CA076119C34A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:8f:17:6a:22:68:ed:3d:12:09:0a:50:d5:d9:
50:24:b3:b3:53:45:d3:6c:19:98:38:89:b0:03:c2:
a0:d7:c7:53:96:ae:4f:d7:60:4e:98:45:69:f4:a4:
63:0b:fa:bf:e9:f3:44:de:0c:5b:3b:3d:3d:89:5c:
63:62:4a:a1:91:47:e3:26:75:60:d0:4a:69:8c:e8:
6f:ec:48:d7:43:65:b8:8a:8b:1a:1e:00:1d:09:6d:
ee:9a:55:c9:59:4e:d7:9c:f0:ea:ba:f9:77:78:62:
70:de:7e:7a:84:70:9d:25:e3:7c:48:16:70:6f:af:
02:2a:27:7b:68:d2:16:62:5a:6d:f2:f7:2d:1d:7e:
5f:12:15:46:92:5d:e0:24:2c:f0:ea:5f:38:0b:74:
5f:5c:61:5c:5f:af:0a:57:f3:a5:12:af:e1:d5:13:
6a:7a:71:01:4b:9b:2a:04:02:08:be:a4:bc:56:2d:
13:ec:de:c2:b4:4f:07:c0:85:e1:bd:3f:9c:df:04:
05:54:56:37:14:87:e2:6c:7e:6b:69:de:4a:a6:58:
46:d7:b6:79:51:fe:98:1f:0d:93:7a:cf:53:56:7d:
9a:df:15:0e:8c:35:dc:64:a2:b8:43:87:7c:00:c3:
7d:8e:31:8b:22:ab:be:3f:f8:62:52:5b:43:ff:59:
db:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:D3:3F:45:5E:DA:BE:3D:4C:B6:3F:B9:2E:4C:A0:76:11:9C:34:A6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9150845/DC7100EA5A5511E8BE3E0B68C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9150845/DC7100EA5A5511E8BE3E0B68C4F9AE02/99M_RV7avj1Mtj-5LkygdhGcNKY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
63528-63529
136458
sbgp-ipAddrBlock: critical
IPv4:
203.159.64.0/23
203.159.68.0/22
IPv6:
2001:deb::/48
2001:df5:b880::/47
Signature Algorithm: sha256WithRSAEncryption
1e:38:a4:d6:0e:c4:53:d0:9f:9e:99:d7:40:41:c9:8a:66:a7:
9f:de:9f:3f:0e:45:0b:75:c8:3f:81:b3:3e:87:bf:21:bd:8c:
76:4d:bd:16:f8:33:29:f0:17:c4:90:25:a4:53:a7:a2:eb:b1:
a0:59:58:6f:14:61:21:0c:63:55:3b:3a:f2:8f:d0:b9:71:bc:
e0:89:ae:80:74:58:0d:86:50:d6:fc:bf:11:04:66:a8:26:1e:
6b:df:99:41:53:ee:29:49:47:5f:f8:96:f4:a1:6d:65:7f:b3:
ab:cd:67:ac:be:d9:e9:e3:a1:2f:58:07:64:3f:22:19:50:0a:
e5:ab:6f:df:f2:db:10:54:59:f0:e6:4a:46:20:35:15:fb:e7:
19:eb:2a:d1:bb:ab:3d:14:80:b4:d2:45:59:05:91:90:ba:db:
32:5d:6d:f2:7e:a7:4c:a3:44:9a:44:aa:a1:73:6b:61:f0:e6:
1d:94:a6:42:06:57:66:bd:00:6d:98:70:d9:4d:88:2c:a6:6d:
43:ea:3a:58:1b:04:14:a0:ad:ce:d0:85:b4:3f:f4:a3:4f:19:
6c:a0:83:3d:94:73:b9:28:de:24:da:79:ba:6c:ac:fa:a4:31:
51:d0:4a:64:78:76:ea:06:27:cf:71:4a:cb:03:2f:9d:f4:fa:
21:61:8a:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:02:45 2024 by rpki-client on console-ams.rpki-client.org