Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer
File: Alr-kZVIIEnyUJPriYEVxr03FEg.cer (raw, json)
Hash identifier: 5MnY7b7rEr7vo1gR0dO5uY0eOn0JRJl9kqvPS4N5CLY=
Subject key identifier: 02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C291
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 06 Oct 2023 19:21:22 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 63843
IP: 103.41.111.0/24
IP: 2001:df1:400::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 06:28:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115345 (0x1c291)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 6 19:21:22 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A91BA044/serialNumber=025AFE9195482049F25093EB898115C6BD371448
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:92:84:c0:c3:7b:52:70:2c:4d:d0:36:29:3f:
12:95:df:da:06:20:5c:94:c6:27:f5:65:40:04:55:
75:4a:8e:ab:f0:6a:13:18:73:e0:2b:ca:29:11:47:
e2:c0:69:8f:61:a2:3c:fd:67:59:7d:15:bd:2f:6b:
2b:01:ee:aa:cc:f0:90:00:6f:b2:76:49:a2:2c:64:
ba:f2:a7:d2:20:52:3f:fa:ca:81:e7:14:ec:7e:41:
24:8c:5c:8b:71:da:43:76:f7:36:e4:93:10:12:9a:
89:cb:13:bd:f9:38:85:cf:8d:9b:32:f9:0a:aa:67:
8b:cf:b5:f4:81:a6:0d:56:71:c9:cf:b7:1a:02:fc:
8e:b1:e1:b7:ac:84:59:bd:af:24:c5:99:2e:bf:4e:
f9:ba:2f:af:f4:5a:18:3d:4e:ae:7f:9c:db:ac:79:
47:97:f0:d5:29:a5:b5:8b:75:e7:e0:ed:1c:c2:fc:
1e:84:a8:cd:63:04:ac:de:11:21:62:62:8a:0d:b6:
82:8a:dc:f1:78:4f:4f:5a:dc:40:1e:64:0e:f8:e8:
31:70:66:5a:35:e4:88:81:83:e0:0a:99:8e:27:64:
c6:77:6e:6d:85:e4:b4:22:5b:69:bd:a3:1b:1d:19:
5f:2d:5c:f4:d5:1b:34:7b:50:17:b7:56:55:5d:a3:
06:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
63843
sbgp-ipAddrBlock: critical
IPv4:
103.41.111.0/24
IPv6:
2001:df1:400::/48
Signature Algorithm: sha256WithRSAEncryption
c4:a4:44:9b:f8:8d:27:fc:e8:bf:1c:88:b0:51:22:08:00:4a:
27:b4:5c:7e:5b:b1:0e:47:56:c8:12:c7:67:06:e1:de:76:c7:
8e:ed:ee:78:ee:53:dc:ba:f2:64:c4:fa:ad:8a:35:70:4b:0b:
ae:ef:1e:c2:53:65:85:04:c6:c6:16:c5:26:02:5a:44:0a:09:
ed:c4:21:8b:81:4e:a8:92:d9:5a:04:6e:f9:4e:a8:18:54:b0:
3a:92:a0:f8:b5:37:da:07:49:f5:2e:78:4c:a3:ff:6e:f2:46:
76:76:c5:c6:2a:ac:8f:32:fd:ca:e6:7a:dd:d0:3a:73:20:f6:
f7:8e:d6:7e:7b:5f:bd:23:e7:cd:7b:ed:b7:be:5f:e7:c6:a4:
1b:38:10:27:6d:9c:cd:94:06:5f:fb:b2:b2:bf:67:32:a4:be:
7a:9f:47:1d:7b:ab:d5:0c:bf:e0:2d:e7:8d:ad:3a:97:36:e7:
a9:9e:d6:2b:aa:7e:b3:e6:63:a4:f1:2d:57:6c:b4:6f:a5:70:
be:b3:f7:2a:8d:45:74:c4:22:6f:58:e0:cb:6d:f2:da:df:79:
6a:39:d8:6e:00:e3:f8:51:ea:8a:47:08:5f:52:89:3a:bc:e8:
db:77:bc:e2:2f:59:f7:10:4c:eb:b6:49:c2:c2:21:07:ec:ab:
a5:3d:4b:ca
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Apr 25 07:18:44 2024 by rpki-client on console-fra.rpki-client.org