Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer
File: AO-zr_90_WIfS42RFpt6HEOzlBc.cer (raw, json)
Hash identifier: o4Qx3hdF9+OufXtGFj+hYiwgj/g6WWK4391IT6AyUfw=
Subject key identifier: 00:EF:B3:AF:FF:74:FD:62:1F:4B:8D:91:16:9B:7A:1C:43:B3:94:17
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E9C3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 04 Apr 2024 14:15:28 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 150790
IP: 103.99.134.0/23
IP: 2001:df3:7b40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 00:13:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125379 (0x1e9c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 4 14:15:28 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A912C8FA/serialNumber=00EFB3AFFF74FD621F4B8D91169B7A1C43B39417
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:60:07:27:7f:b3:e7:4c:cd:7a:e8:91:51:ee:
0b:2d:65:2f:9a:28:4c:76:2a:e4:53:9d:df:9b:b2:
3e:e1:ad:7a:ac:de:06:76:b8:94:67:90:93:69:34:
7e:d2:d6:4c:90:61:58:72:ac:d2:68:ef:72:67:9f:
96:ce:47:5f:4d:db:a9:f9:df:9e:62:93:0f:34:01:
93:59:81:2c:70:76:6d:b4:e4:3b:a9:d8:a8:14:86:
ae:c8:31:8f:5b:67:d5:3b:b2:21:08:67:e7:81:58:
cf:1c:b8:82:e5:9a:14:19:13:06:0a:b3:14:f7:5e:
f3:03:c8:66:a1:ea:1d:bb:6c:0a:92:e1:46:5c:af:
20:1c:36:1e:b6:ba:97:08:fe:ff:e5:5a:c1:ce:eb:
90:47:fb:da:ab:04:62:35:3b:99:72:f3:95:97:3f:
16:d6:01:12:86:95:20:a7:11:aa:7d:db:5c:2e:b9:
1b:7c:8c:b6:ab:f0:af:7e:7c:7e:c0:87:ce:7b:80:
17:c6:e8:ca:5e:34:21:54:bd:05:23:a5:3f:e4:54:
c0:1f:a0:65:6c:6e:84:c3:e6:af:02:9d:0d:9d:a3:
6c:c6:7b:14:e5:83:00:03:0c:5a:a9:5f:5e:1b:cf:
15:fd:71:68:78:3f:d9:40:94:8f:cb:d9:d9:fd:ec:
9c:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:EF:B3:AF:FF:74:FD:62:1F:4B:8D:91:16:9B:7A:1C:43:B3:94:17
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150790
sbgp-ipAddrBlock: critical
IPv4:
103.99.134.0/23
IPv6:
2001:df3:7b40::/48
Signature Algorithm: sha256WithRSAEncryption
5f:01:85:48:27:87:bc:7f:fe:69:e2:11:80:1b:9f:03:ac:ba:
1c:43:ad:b1:bd:5b:7a:7c:38:d6:99:84:52:0b:09:20:d8:1c:
6b:db:1c:c9:35:48:92:71:2c:af:b7:e5:34:50:18:39:f5:a0:
7e:4e:53:99:f9:56:ea:7b:d5:61:f4:1d:be:de:43:6f:b1:08:
11:de:c4:d2:6d:ca:1f:a8:a1:22:37:bb:be:9a:2e:36:2c:75:
9b:f2:92:77:7f:9c:19:43:aa:2b:e5:bf:cd:33:2c:2b:c8:68:
a1:ac:3f:ba:07:91:93:b7:11:c9:cb:65:8f:92:55:13:bb:f6:
e0:55:84:0e:0e:72:a4:75:98:62:de:74:62:93:c2:59:f8:9e:
94:6d:cc:fa:b2:89:11:4c:36:c9:8b:54:50:1e:06:a2:95:ad:
bb:a8:52:91:c9:db:dc:39:b0:12:e1:30:3f:14:aa:47:1f:81:
34:0f:a2:39:79:de:20:1b:d7:d9:8d:95:0e:5f:b0:c3:5e:3b:
2a:24:e0:9d:eb:72:98:b8:5b:87:59:97:d4:7f:26:bf:e1:0e:
de:fc:58:e6:89:08:d6:fa:6c:cb:63:4f:3e:32:6e:90:5b:00:
f1:fe:a4:8a:3a:41:02:01:66:7e:27:c7:8e:db:da:f6:30:44:
05:a2:8d:0f
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 2 00:52:58 2024 by rpki-client on console-ams.rpki-client.org