Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.cer
File: 9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.cer (raw, json)
Hash identifier: 9Mhy+023VzOaOepGe9fiHmc6Fixnqu8yXq3L2mDxgPw=
Subject key identifier: F6:2D:2A:68:5D:CE:C9:7E:15:83:90:2A:8E:F9:EE:51:70:78:20:74
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E136
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9153049/ADAC528209D611EA9EB3381CC4F9AE02/9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9153049/ADAC528209D611EA9EB3381CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 28 Feb 2024 14:46:55 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 137435
IP: 103.108.112.0/22
IP: 2406:d240::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123190 (0x1e136)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 28 14:46:55 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A9153049/serialNumber=F62D2A685DCEC97E1583902A8EF9EE5170782074
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:77:eb:62:8e:c7:a6:86:da:1e:0d:4d:f1:fc:
3c:48:dd:c5:3f:dd:0e:3d:1f:2f:4b:88:b2:bd:4b:
ac:76:80:61:e8:a9:bd:96:47:17:36:af:bb:eb:50:
bb:1c:4a:8d:3e:74:c7:db:c2:fa:b0:31:ab:da:ed:
6e:95:11:6f:8c:31:b8:0d:19:6e:4b:90:51:d5:74:
90:56:c2:5c:a2:08:ed:cf:67:37:81:33:d7:a5:40:
2b:7c:1c:38:c7:89:33:dd:d9:c4:0a:f4:8b:70:1e:
f1:f9:93:93:ca:55:1b:89:ae:4a:26:bd:be:b5:04:
af:ba:21:d7:79:17:11:52:5c:6e:3e:6c:71:f6:2d:
f3:9a:aa:bd:88:de:bb:9c:17:55:13:b7:f1:ca:d8:
77:20:9a:9b:0a:e6:90:bb:6b:70:a8:d1:2e:59:12:
01:30:ac:bf:52:47:ec:78:62:7d:7d:ce:29:6a:42:
d1:55:f2:da:99:e5:1c:91:63:7d:0d:9f:3e:5d:7f:
2c:4c:f7:77:fe:db:61:25:32:48:4f:cf:9e:16:18:
7b:68:77:25:d8:3d:10:8b:df:21:04:52:17:96:1b:
78:c3:d5:fa:e4:8d:34:5f:fe:f5:66:a8:90:c3:f7:
3f:56:c8:8c:a7:19:86:2f:7f:5e:00:a4:52:d9:a1:
d9:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:2D:2A:68:5D:CE:C9:7E:15:83:90:2A:8E:F9:EE:51:70:78:20:74
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9153049/ADAC528209D611EA9EB3381CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9153049/ADAC528209D611EA9EB3381CC4F9AE02/9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137435
sbgp-ipAddrBlock: critical
IPv4:
103.108.112.0/22
IPv6:
2406:d240::/32
Signature Algorithm: sha256WithRSAEncryption
d6:39:c1:26:11:7b:a0:69:49:30:23:c9:e0:4a:f0:47:87:99:
90:ca:0e:23:58:b1:c7:90:93:5a:fa:63:f3:05:2f:83:9b:8a:
97:ec:86:73:e2:24:2b:97:a4:e5:1f:49:d1:ce:e7:d0:8e:e9:
e6:1e:0f:0e:1a:83:a1:9a:ca:3d:06:34:60:64:a3:65:d9:15:
27:e4:4d:bc:59:0f:e3:67:f7:8f:b4:3a:6c:0a:0d:67:fd:62:
e3:f2:39:ef:34:c3:7f:46:eb:85:39:a0:12:90:6c:03:ec:7c:
9c:ab:3b:d8:45:52:b6:1a:ad:37:34:2f:d2:ab:68:be:09:4e:
31:d4:5a:69:2a:90:53:fe:58:26:ad:1b:cc:5a:c4:07:e4:d3:
5c:c1:c0:9c:97:ac:f8:13:8e:c2:9f:e2:fb:d8:86:14:ca:24:
0f:40:a1:c1:d7:9c:8d:1d:0d:f7:0f:19:c2:c3:d2:d9:2b:a9:
30:0b:42:f5:b7:e3:cb:2e:09:4c:fa:a0:4a:1e:bf:e2:66:a3:
6f:2f:ef:05:83:df:2b:30:87:05:65:ec:02:13:47:84:91:15:
12:48:84:b9:c2:72:77:15:89:fe:90:e6:b7:e1:01:b5:df:fb:
d3:03:dc:dd:d3:86:1e:23:ab:fd:95:d6:3b:22:46:57:b5:1d:
ed:47:3e:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:02:45 2024 by rpki-client on console-ams.rpki-client.org