Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AhC5e8hmDE5anWo8udqHGaW6RRI.cer
File: AhC5e8hmDE5anWo8udqHGaW6RRI.cer (raw, json)
Hash identifier: +F8FYX2vGYpiu/AzDDMSkuxDQXlU9dV7y+6q+hMoyCA=
Subject key identifier: 02:10:B9:7B:C8:66:0C:4E:5A:9D:6A:3C:B9:DA:87:19:A5:BA:45:12
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C620
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CF0BD/A67B277873D511EE8808CF71C4F9AE02/AhC5e8hmDE5anWo8udqHGaW6RRI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CF0BD/A67B277873D511EE8808CF71C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 26 Oct 2023 08:00:02 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: IP: 103.241.40.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 10:14:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116256 (0x1c620)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 26 08:00:02 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91CF0BD/serialNumber=0210B97BC8660C4E5A9D6A3CB9DA8719A5BA4512
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:45:74:c4:8b:77:d8:25:ac:55:0c:2d:bd:6e:
1d:04:96:87:77:32:60:00:e9:94:d0:66:e5:92:c4:
6d:34:99:2a:cb:9b:20:5c:ee:02:49:70:4d:2c:8e:
9c:da:84:66:82:c4:6c:4a:76:b5:11:89:bd:fb:07:
f1:16:a1:ab:16:a3:2f:c2:1f:88:3b:3a:5d:a0:9f:
31:c1:9e:42:2c:14:bc:d7:7f:6a:9e:9a:9c:e7:6a:
59:c5:26:d0:24:f0:1a:86:09:e0:8e:41:bc:9c:b2:
a8:7d:1b:fa:3f:7c:5c:b0:33:07:02:12:d5:21:7a:
e2:3b:ca:e9:f4:06:d7:22:31:2b:91:e2:86:4a:4b:
44:e6:12:cb:a5:f4:57:60:bf:f8:0f:1d:bf:61:45:
76:d7:01:43:0f:b0:56:3d:5a:ea:bd:d7:52:ff:64:
22:4a:73:3d:63:b8:78:f4:80:14:bc:1d:bb:11:12:
4e:ec:08:4b:11:17:54:9a:53:b2:6e:d6:68:55:8b:
d0:e1:e9:d9:6d:60:5a:4a:cd:3c:25:0d:03:01:1f:
fa:65:3e:f7:d4:e0:bc:43:fd:c4:03:4f:49:8c:ae:
c5:64:d0:85:c0:f7:76:5b:9a:21:7c:f0:43:99:f1:
b3:27:43:b2:06:b1:43:1f:9e:5c:f1:53:14:f1:1d:
eb:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:10:B9:7B:C8:66:0C:4E:5A:9D:6A:3C:B9:DA:87:19:A5:BA:45:12
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CF0BD/A67B277873D511EE8808CF71C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CF0BD/A67B277873D511EE8808CF71C4F9AE02/AhC5e8hmDE5anWo8udqHGaW6RRI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.241.40.0/23
Signature Algorithm: sha256WithRSAEncryption
8f:a8:48:db:02:35:f8:37:1f:93:e5:6e:74:b2:c1:b6:98:02:
02:b6:97:8a:29:70:11:9b:59:75:47:d6:30:71:95:a3:7a:7e:
e3:60:7e:be:58:0e:e2:90:9e:8f:ad:75:c4:19:8a:74:30:fd:
12:31:a0:5c:ef:39:1d:a7:5c:6a:ff:d1:76:8e:90:70:01:da:
54:36:b0:6e:50:59:42:bb:f7:f9:6f:27:02:ce:a1:c4:cc:2f:
64:2e:fc:e2:80:93:bc:d4:0e:38:ec:35:93:85:cf:8c:eb:35:
b4:c9:b3:6d:91:b5:13:2e:e7:41:38:91:98:31:94:f1:83:3f:
26:4e:9c:bd:c8:e9:63:e8:c4:a2:3a:f4:24:84:95:c7:3c:e4:
6c:ee:34:03:3f:17:78:5d:53:ae:94:9b:d0:8d:7d:5d:66:a5:
58:9c:0c:e3:b5:dc:39:28:9d:d3:bb:4a:cd:74:af:9c:ed:5f:
f5:5c:28:08:61:0d:ac:90:4e:db:32:f6:c6:f7:da:15:57:a0:
07:2e:5c:1c:ab:3b:d7:95:ed:2d:b3:06:48:56:f6:df:52:72:
f8:f2:39:76:97:56:d0:ea:c1:18:3b:7b:00:8f:44:3f:2d:c3:
3d:19:2d:66:c4:ff:13:0e:7a:bd:27:cc:52:22:38:2b:77:91:
4d:7d:11:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 12:24:21 2024 by rpki-client on console-ams.rpki-client.org