Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWVpw8-OcAky8U5ILFaqZruvK2E.cer
File: AWVpw8-OcAky8U5ILFaqZruvK2E.cer (raw, json)
Hash identifier: Z1m+fOTKcQ7idU3RQREooqJQ856yeZ8vThZ0y5qpcX4=
Subject key identifier: 01:65:69:C3:CF:8E:70:09:32:F1:4E:48:2C:56:AA:66:BB:AF:2B:61
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E5AC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918A132/1F4AC61EE72511EEA830D62AC4F9AE02/AWVpw8-OcAky8U5ILFaqZruvK2E.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918A132/1F4AC61EE72511EEA830D62AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 21 Mar 2024 01:48:39 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 141750
IP: 103.163.132.0/23
IP: 2001:df6:1980::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 10:14:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124332 (0x1e5ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 21 01:48:39 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A918A132/serialNumber=016569C3CF8E700932F14E482C56AA66BBAF2B61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:46:17:76:10:df:f0:6b:35:48:cc:9c:31:51:
e0:3d:19:5c:7f:a7:de:95:11:2d:3c:de:7c:96:d8:
56:d7:cf:35:ee:7d:71:a4:50:7b:4b:1d:13:be:13:
39:30:7b:cb:58:2f:71:c9:02:2b:b0:b8:80:84:93:
4a:8a:a5:b0:32:44:8d:d6:3c:8c:e4:a3:d9:47:5b:
ba:98:e0:e8:e2:50:b0:df:0f:26:14:58:90:38:92:
10:d1:bc:77:df:60:84:c3:69:01:47:38:47:e8:0a:
63:3b:bf:03:84:64:d1:d8:32:94:0d:97:8f:fb:b5:
c8:4d:33:c0:72:91:d8:65:1f:04:ee:eb:1f:76:9c:
5d:0c:ca:e8:3c:2d:a1:d8:0b:0f:d9:ad:1f:e3:13:
e8:36:98:fc:05:0e:13:bb:1a:ab:a8:90:b2:42:5b:
a5:6f:b4:aa:01:a8:26:d5:39:1d:a8:c7:ce:5b:9b:
78:49:71:f8:4e:12:23:0f:62:cf:57:fa:0a:b2:44:
a8:8a:fe:97:0b:c6:97:e1:d0:e1:d9:4b:d5:e5:1e:
de:5f:1d:83:a1:4e:f0:15:30:9a:63:ff:b1:73:3e:
17:81:38:22:03:e9:2d:1b:49:c6:a0:8c:52:3c:70:
1c:23:d5:20:a5:d5:8d:d7:fe:36:fe:03:d7:db:aa:
b4:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:65:69:C3:CF:8E:70:09:32:F1:4E:48:2C:56:AA:66:BB:AF:2B:61
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918A132/1F4AC61EE72511EEA830D62AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918A132/1F4AC61EE72511EEA830D62AC4F9AE02/AWVpw8-OcAky8U5ILFaqZruvK2E.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141750
sbgp-ipAddrBlock: critical
IPv4:
103.163.132.0/23
IPv6:
2001:df6:1980::/48
Signature Algorithm: sha256WithRSAEncryption
32:2e:2f:fa:f9:02:3e:02:fa:67:ce:05:90:e3:c9:7e:4f:54:
ab:e4:a4:a4:fc:e4:29:02:a1:69:a7:0e:32:61:48:ff:4e:68:
8e:b1:6a:39:0a:af:11:1f:71:8e:d4:4d:74:69:7f:f4:b8:7b:
5a:6c:f6:89:22:79:d3:7c:4b:37:f7:97:de:62:42:f7:f9:0a:
98:1b:27:fa:da:44:c0:e2:59:cf:29:07:41:f8:70:3c:32:63:
9d:45:b2:95:40:29:7f:45:c4:84:a7:38:17:14:64:43:e9:0b:
58:19:2d:01:bd:0e:cf:fd:2f:9b:4d:8e:2b:04:e7:be:0e:05:
fe:13:14:c6:52:53:8a:9c:71:b8:35:89:fd:7d:2d:87:29:24:
8a:40:97:15:b9:a8:85:c6:8d:1d:1e:0e:2a:79:ba:69:1c:31:
81:6f:66:be:e3:c1:d0:37:b6:e2:33:8d:2a:42:22:12:0e:c2:
dd:26:ff:65:78:8f:ee:20:ca:97:da:2b:76:25:15:2d:d3:63:
06:0c:61:fc:a4:45:77:f9:44:f5:92:67:da:00:89:49:da:ff:
eb:81:08:34:7c:9c:90:53:35:e5:7f:67:d2:4e:c9:02:ff:57:
67:ac:aa:50:a2:8b:29:7b:29:47:36:fb:65:1c:64:92:63:91:
87:7b:26:79
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 2 11:35:03 2024 by rpki-client on console-fra.rpki-client.org