Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4zy4oB33yytpFdW-12ZpuJA_Qk.cer
File: A4zy4oB33yytpFdW-12ZpuJA_Qk.cer (raw, json)
Hash identifier: ug97VPCWN5GsVMcJM4pPjGq4OHj+pvRUUflnvo0uO/M=
Subject key identifier: 03:8C:F2:E2:80:77:DF:2C:AD:A4:57:56:FB:5D:99:A6:E2:40:FD:09
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A838
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 05 Jun 2023 12:25:23 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 55508
IP: 103.1.232.0/22
IP: 157.119.180.0/22
IP: 202.9.76.0/23
IP: 2001:df0:bf::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 08:06:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108600 (0x1a838)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 5 12:25:23 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A9112CEC/serialNumber=038CF2E28077DF2CADA45756FB5D99A6E240FD09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:7f:09:f0:f4:37:c4:5e:a3:fe:57:9c:74:b1:
73:4a:85:ad:c1:3b:0a:51:ec:68:d9:98:8d:2d:c8:
be:e2:be:03:7d:ba:44:a4:e3:5b:f4:30:b0:4e:ed:
c5:f3:10:ab:01:cf:7e:1a:c7:de:b1:72:6c:e7:73:
50:f0:c4:cf:ec:6f:c2:ad:f2:18:59:e0:5b:33:dc:
1a:af:bc:e9:a6:51:5e:21:85:55:f0:0c:e3:cd:fd:
d2:7d:a1:b4:e7:c6:57:83:d1:1f:7f:88:6c:1d:59:
d5:09:1b:1e:93:b5:36:89:ee:9b:e1:53:63:aa:20:
14:e5:a3:c4:1e:cb:b8:ef:6a:6a:35:e8:96:82:f0:
07:7d:d4:68:aa:5d:92:f5:e3:a1:91:0a:3e:c0:9f:
9f:c2:01:92:43:92:88:e3:c7:9b:d5:31:9f:4e:77:
b2:a9:60:4d:76:ea:5a:86:5a:4e:83:7d:6f:a0:91:
99:02:27:2f:9c:23:49:86:2c:46:b0:75:bf:92:03:
0d:c2:60:fc:92:31:7d:80:65:e8:54:95:80:c2:67:
9a:12:41:59:4f:9b:b9:5a:7a:dc:55:22:6b:41:bf:
21:f4:cf:98:e3:d1:f0:dc:7a:50:f3:16:3b:ec:ce:
80:0f:fd:d2:fd:5e:a2:e0:71:25:76:a7:83:fb:69:
c3:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:8C:F2:E2:80:77:DF:2C:AD:A4:57:56:FB:5D:99:A6:E2:40:FD:09
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55508
sbgp-ipAddrBlock: critical
IPv4:
103.1.232.0/22
157.119.180.0/22
202.9.76.0/23
IPv6:
2001:df0:bf::/48
Signature Algorithm: sha256WithRSAEncryption
82:4b:c5:02:cc:b3:c5:2b:ee:fc:1d:6f:b4:3c:bb:0b:36:1a:
07:0b:75:52:cf:34:9f:f1:3d:10:41:0c:44:3d:b2:be:2c:2a:
a3:13:0b:cc:1a:d8:b1:28:c9:12:c0:c9:cc:04:3c:ae:9c:71:
8b:d0:92:3c:8f:05:f5:18:cb:79:ad:90:f7:98:07:32:59:c0:
1b:62:3d:a8:b4:73:72:46:25:25:9d:3a:91:ff:d9:8e:c6:c3:
19:5a:12:56:55:67:55:1e:9f:16:da:5c:3e:2d:2f:e4:bc:5b:
2c:82:3d:99:06:da:d8:b5:e3:06:73:48:8a:e5:67:95:7f:a4:
28:60:7e:ca:8f:1b:61:85:95:df:03:84:73:f0:e7:9a:ef:29:
cd:b2:76:99:96:2e:56:46:81:a3:6e:95:97:65:e9:f9:04:ec:
d7:c9:0b:54:f0:b7:c4:cd:36:1c:b6:06:69:6d:77:f8:46:a0:
e3:be:c9:a9:2b:4e:ac:d7:f9:9c:6a:ef:58:0e:f0:5e:73:a3:
9d:b6:91:52:d4:6e:ca:8b:6d:71:35:9c:af:fc:8b:de:eb:73:
1a:fb:9d:4e:bc:1e:43:5a:12:c8:cb:c3:47:fa:f6:7c:e9:f3:
3d:b0:0e:01:8f:f5:86:1c:80:1e:60:fb:ad:c3:f5:0a:2d:49:
52:66:2e:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 08:35:33 2024 by rpki-client on console-fra.rpki-client.org