Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ouGJos33oELlo2481f3c-mDv20.cer
File: 9ouGJos33oELlo2481f3c-mDv20.cer (raw, json)
Hash identifier: 7/SakDYxwaOBUxO0On4Zy3vVPveiWmPEmuyLS/0y3i0=
Subject key identifier: F6:8B:86:26:8B:37:DE:81:0B:96:8D:B8:F3:57:F7:73:E9:83:BF:6D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A76B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91755F6/D69EAAB25F6411EA9CAA3A64C4F9AE02/9ouGJos33oELlo2481f3c-mDv20.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91755F6/D69EAAB25F6411EA9CAA3A64C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 01 Jun 2023 20:56:29 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 136992
IP: 103.149.43.0/24
IP: 2001:df3:1080::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108395 (0x1a76b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 1 20:56:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=A91755F6/serialNumber=F68B86268B37DE810B968DB8F357F773E983BF6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e5:48:ad:86:9f:30:b5:fd:62:65:82:4c:7c:
87:06:e6:a5:1e:41:68:64:3e:b0:d9:58:30:3d:90:
e5:12:76:96:84:08:89:41:d9:3f:a5:9e:f1:ff:ac:
49:34:1b:b6:18:8c:3a:1f:fa:11:ff:ca:ea:c9:8d:
ae:ea:47:6a:8d:9a:23:f0:1d:a9:0e:04:10:e9:fa:
b9:1f:be:6b:b5:9e:0e:ae:13:6f:4c:79:70:2a:79:
63:45:75:65:84:33:b0:85:1b:44:05:3d:ad:25:71:
5a:4f:90:4c:62:ee:49:5e:d9:9c:60:0b:57:85:c6:
ba:bf:4b:c7:fe:27:a5:9a:81:5f:a0:28:7c:e0:49:
3d:0c:03:80:6f:25:11:b3:38:fe:3b:b8:af:5f:ef:
39:71:cd:c9:46:60:86:6b:01:14:46:ae:6e:e1:1f:
41:3e:67:0e:3e:ef:b8:08:f1:58:7b:74:cb:6e:f9:
2e:c1:6a:20:b7:a4:11:56:55:cb:20:a0:70:c9:14:
b6:b4:b8:b9:a8:74:f3:d0:23:89:3f:84:55:65:9c:
ff:64:0f:b4:c4:ef:f2:37:27:25:a1:51:f2:60:42:
df:dc:3b:25:1a:c3:14:d2:d3:cb:47:fd:48:9a:43:
19:07:b3:fc:df:63:db:e6:23:6f:31:4f:28:22:6c:
97:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:8B:86:26:8B:37:DE:81:0B:96:8D:B8:F3:57:F7:73:E9:83:BF:6D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91755F6/D69EAAB25F6411EA9CAA3A64C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91755F6/D69EAAB25F6411EA9CAA3A64C4F9AE02/9ouGJos33oELlo2481f3c-mDv20.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136992
sbgp-ipAddrBlock: critical
IPv4:
103.149.43.0/24
IPv6:
2001:df3:1080::/48
Signature Algorithm: sha256WithRSAEncryption
20:43:28:b2:dc:f5:42:c1:fb:a2:69:c8:a8:0b:42:b0:f4:08:
54:1b:c3:c9:f8:78:a7:cd:9b:1a:39:23:b9:9a:21:87:98:3d:
a2:4d:92:b6:67:0b:ae:41:52:57:0b:0d:05:d0:55:88:6e:dc:
4e:43:63:b4:46:00:08:c1:4a:4b:34:a8:97:4e:d2:bc:a8:bc:
30:9d:4f:39:46:18:46:a5:2f:39:0d:48:d1:61:eb:8c:10:2c:
d5:a7:f7:83:5e:62:3b:d1:1c:1f:25:0e:4b:b2:5c:f1:27:2f:
3a:49:87:fe:46:d7:81:a3:96:e7:26:0a:cd:ba:91:12:45:a6:
e5:0f:f5:5a:fc:b0:6a:4d:15:0d:62:86:f4:cf:e3:4b:df:1b:
81:c4:ec:57:25:1e:a7:64:4f:76:5a:a3:5e:ff:e8:ff:fc:4e:
3f:6d:16:6c:3b:e0:b1:c1:d8:e2:16:1f:d9:7a:41:40:6c:29:
0d:1f:7c:2e:6b:a9:bc:bb:65:71:a3:42:ea:9a:32:80:3f:a0:
a0:6b:73:e8:48:1f:81:35:45:e7:4e:ff:fe:d4:a6:39:98:5b:
53:91:d4:47:cf:01:88:da:68:77:8f:43:f8:e1:d2:69:bf:bb:
a4:d4:86:42:63:d1:b3:a8:5b:b2:9f:ca:61:17:f9:df:e2:d6:
89:49:6d:d8
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:13 2024 by rpki-client on console-fra.rpki-client.org