Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FYY6ic_QLS8aF4piH4gUIPEkKY.cer
File: 9FYY6ic_QLS8aF4piH4gUIPEkKY.cer (raw, json)
Hash identifier: kGahlY20p+C2BFuFZ+giDF6a52Yxb+Eq5cc4dW3PEPg=
Subject key identifier: F4:56:18:EA:27:3F:40:B4:BC:68:5E:29:88:7E:20:50:83:C4:90:A6
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A2ED
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C3E37/B44553D8F09F11ED9B4A0734C4F9AE02/9FYY6ic_QLS8aF4piH4gUIPEkKY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C3E37/B44553D8F09F11ED9B4A0734C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 12 May 2023 08:33:51 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 151324
IP: 103.196.176.0/23
IP: 2001:df2:6c40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 09:10:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107245 (0x1a2ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 12 08:33:51 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A91C3E37/serialNumber=F45618EA273F40B4BC685E29887E205083C490A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e3:24:5b:61:c1:25:b3:d2:36:88:85:e2:26:
ef:67:c7:63:94:73:88:06:c1:ee:83:d2:ee:d9:a6:
2c:e2:1f:67:34:68:5b:d9:e8:3f:63:ef:cd:9e:c0:
7e:3c:69:48:a9:1a:c0:10:72:05:76:f1:a2:07:e4:
2d:bc:b9:52:66:3b:dd:ea:d8:de:23:f7:d2:d2:e9:
1a:83:60:04:4d:53:72:6c:f8:92:74:cf:bd:e1:cc:
85:1f:ed:14:11:3f:77:a6:b0:16:bf:17:b0:38:0e:
df:e2:3d:f9:d6:0c:dd:fc:51:6e:c0:55:9e:9f:f3:
cc:ad:0d:14:99:40:07:94:d1:1f:aa:a2:56:79:74:
ae:68:c2:6c:ca:2b:50:d2:61:19:b3:33:2e:bc:39:
31:4f:53:2d:ed:52:e0:4c:c9:bb:a0:04:7d:21:31:
04:77:09:9e:ca:48:97:20:44:71:2f:4b:16:85:41:
c4:c6:f5:e4:57:b9:a6:2f:eb:3b:1a:1d:f4:38:47:
85:80:5c:52:22:46:50:bc:b2:50:60:8f:af:e0:f4:
fc:a0:50:b7:a0:45:52:ff:dc:da:24:d4:76:f2:3f:
7a:0a:81:4a:41:7f:7e:10:db:78:2f:c6:02:57:d6:
71:a0:71:21:51:36:32:ef:8c:7f:a0:d3:a0:78:0f:
35:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:56:18:EA:27:3F:40:B4:BC:68:5E:29:88:7E:20:50:83:C4:90:A6
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C3E37/B44553D8F09F11ED9B4A0734C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C3E37/B44553D8F09F11ED9B4A0734C4F9AE02/9FYY6ic_QLS8aF4piH4gUIPEkKY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151324
sbgp-ipAddrBlock: critical
IPv4:
103.196.176.0/23
IPv6:
2001:df2:6c40::/48
Signature Algorithm: sha256WithRSAEncryption
22:a0:26:4c:74:4c:07:62:72:8e:0d:ff:87:ba:37:45:71:2c:
d9:34:7b:1b:23:aa:52:a6:66:2a:3d:47:a7:67:48:86:70:4d:
10:88:f5:d3:ca:ff:26:b2:83:03:27:0b:9c:57:7c:2f:f8:d8:
4a:2e:c1:23:b6:d2:4f:ac:0b:63:8c:11:dd:ce:8a:57:d1:1d:
80:cc:2f:53:2e:9c:8a:7e:41:14:c7:9d:f7:21:cb:09:9f:e0:
bf:04:7e:67:fd:b3:91:1f:b6:8a:90:20:42:c0:a8:cb:4e:74:
77:d6:f6:5e:de:3b:b2:0e:06:5a:2b:28:35:ad:ab:c3:15:a5:
50:90:b7:22:db:c6:d3:e4:7b:6b:05:14:17:c5:a5:10:51:ac:
46:1c:f7:65:01:a4:27:c1:a7:11:03:be:27:21:37:e5:89:86:
7d:96:50:57:54:5e:67:03:a7:00:11:04:dd:0e:e8:32:db:30:
af:f1:20:1b:8b:6e:3d:97:d7:bc:35:ab:e5:47:c7:31:4f:38:
e2:04:e2:4f:40:d4:70:67:12:4f:f4:1e:db:86:99:10:05:b0:
80:ac:af:38:3a:5e:88:53:4f:de:89:ff:4e:d9:91:76:e1:90:
ee:df:d7:8c:77:52:c0:13:9e:38:01:0d:5c:6c:1c:53:58:bd:
8a:29:de:b4
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Apr 24 10:31:39 2024 by rpki-client on console-fra.rpki-client.org