Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer
File: AflcxfCmuelnxvjzbH9k1CRLrHI.cer (raw, json)
Hash identifier: LMNoJg44X6NdZDGBNp9K6KNYUC7DcsyssGNBoAGMY/o=
Subject key identifier: 01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BD90
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 14 Sep 2023 14:59:33 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 150138
IP: 103.16.208.0/23
IP: 2001:df1:ac0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 08:06:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114064 (0x1bd90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 14 14:59:33 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A9169451/serialNumber=01F95CC5F0A6B9E967C6F8F36C7F64D4244BAC72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:74:5e:0e:28:65:b6:9a:c4:7b:55:97:ae:85:
12:70:5d:0e:e9:ca:bf:67:b4:94:13:2a:c7:9c:33:
18:64:2c:22:5f:30:8a:46:3d:81:47:e1:96:0a:eb:
1f:63:1e:2b:bc:12:04:ae:f5:a8:ac:02:7e:6e:88:
d8:06:21:a8:9a:0f:40:40:66:20:d4:1c:cd:78:8a:
43:ca:05:bb:74:9d:02:db:37:49:1f:80:38:22:6b:
40:34:2b:ce:ef:6c:c6:6e:25:20:19:e4:92:2f:40:
5b:28:fe:b9:d5:f2:ad:06:83:4d:0f:8e:7c:dd:be:
a9:34:a3:f5:a6:13:95:d6:ca:f1:2e:61:59:ec:f0:
a2:52:41:c6:f5:94:fb:ab:47:03:16:31:77:e6:42:
d3:51:fe:11:fe:52:e5:04:8b:13:f4:1b:27:c7:6e:
9e:bf:08:36:1e:de:fb:b2:46:f2:8e:fa:9c:94:0e:
91:9f:88:bb:8e:9f:91:1d:ac:5c:83:ca:3c:e7:95:
cb:13:37:b3:2d:7a:3d:38:18:24:85:3b:09:66:f1:
32:94:77:73:30:aa:30:4b:a6:97:a7:fa:92:ea:64:
fa:27:d8:c9:be:fa:88:b1:c5:4c:4e:45:d7:9e:75:
84:bc:48:b8:81:50:8b:8a:b2:9b:bb:26:f8:dd:86:
92:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150138
sbgp-ipAddrBlock: critical
IPv4:
103.16.208.0/23
IPv6:
2001:df1:ac0::/48
Signature Algorithm: sha256WithRSAEncryption
51:b4:f9:2c:28:56:cf:03:7b:5d:88:f9:92:ea:69:1b:9c:ab:
f1:fb:fc:8e:11:e4:05:b1:c6:da:57:7e:d1:f0:ba:07:9e:40:
57:67:45:c7:d2:7b:20:cf:02:95:a5:bc:a3:01:54:85:cf:a3:
66:92:f0:03:92:28:fc:ef:b0:bb:58:62:bc:ba:77:e7:32:5b:
da:54:00:64:e6:49:d7:1d:04:87:c0:f6:98:c4:de:be:5f:3c:
0e:5a:b1:8f:72:34:42:f4:b6:a5:37:e0:f6:7b:cf:b0:ed:21:
cd:d6:9a:b6:47:5a:b1:fe:fb:c8:08:c1:33:fd:5b:dc:a0:fa:
36:6c:32:0d:e8:c9:8c:c4:5b:26:e7:d7:eb:2b:db:f8:ea:a1:
8a:8c:16:c0:a9:6b:0a:1e:9b:f7:ec:a6:fe:f6:20:35:2c:99:
7b:c1:50:0b:cb:fe:f2:ee:1c:0e:36:37:a5:7f:06:ac:1b:c5:
7b:8e:ec:86:f3:b0:02:fb:ca:c1:54:99:fa:e8:e8:5f:a8:72:
e7:65:9e:79:7c:29:b1:36:4e:c5:42:b7:61:d1:c5:df:5c:46:
2f:ea:24:ce:2c:bb:32:5a:5d:3f:c9:8a:60:6a:25:85:c7:d0:
ae:ec:07:4e:a8:4b:cd:dc:f3:7c:a3:97:8a:fb:66:f1:de:22:
18:4c:62:29
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Apr 24 08:35:33 2024 by rpki-client on console-fra.rpki-client.org