Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AruX_YsfYg4CoeLK21nWVvAa2kU.cer
File: AruX_YsfYg4CoeLK21nWVvAa2kU.cer (raw, json)
Hash identifier: BZ5hqMOJckOa+zYJXWgB6Il2iFdqaydFjBAVI9Ti2P4=
Subject key identifier: 02:BB:97:FD:8B:1F:62:0E:02:A1:E2:CA:DB:59:D6:56:F0:1A:DA:45
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01AA50
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/AruX_YsfYg4CoeLK21nWVvAa2kU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 15 Jun 2023 16:14:24 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 38549
AS: 45627
AS: 58606
IP: 203.21.76.0/23
IP: 203.175.178.0/23
IP: 2001:df0:20b::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 08 May 2024 19:45:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109136 (0x1aa50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 15 16:14:24 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A91AE108/serialNumber=02BB97FD8B1F620E02A1E2CADB59D656F01ADA45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:23:e5:fa:41:9c:fd:69:58:e7:4c:e8:63:0c:
6d:bf:4e:8e:a9:73:8d:77:0f:93:b8:e0:d4:cf:a6:
fc:c1:f6:e0:c1:d7:bf:33:c5:e5:c3:2e:40:d7:d5:
ce:40:13:80:03:23:59:72:27:95:0c:ee:11:6d:7a:
84:c0:fa:be:ec:c8:90:cc:10:79:23:85:fc:f7:7b:
d4:71:d9:63:14:cf:43:98:75:98:19:35:8a:7e:d6:
83:ee:51:e9:60:b5:24:9b:7e:c7:63:66:eb:24:d9:
a1:8a:e3:ed:44:22:6f:39:b1:cc:0c:0f:40:6c:98:
99:64:51:b2:41:ac:71:47:f5:d5:86:ef:2a:ce:99:
c4:ba:c4:9f:dd:9d:b4:f8:2c:aa:ce:3b:1b:c7:05:
bb:9c:f6:43:64:1b:0e:be:da:83:e8:eb:2b:09:55:
6e:21:36:c4:82:63:21:ac:4d:a6:cc:20:cc:33:d9:
05:c5:43:59:4d:b9:f1:57:50:8c:1b:9f:24:5f:d4:
10:14:c2:27:e8:01:6a:64:71:02:22:6a:44:35:ed:
b2:93:8e:58:15:60:67:b6:42:d6:ec:16:31:58:6d:
35:f3:69:d4:71:71:61:17:ef:60:a6:4e:cf:d7:a8:
1f:eb:07:0c:6a:9f:ba:23:4f:1d:b7:6f:da:b0:10:
ac:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:BB:97:FD:8B:1F:62:0E:02:A1:E2:CA:DB:59:D6:56:F0:1A:DA:45
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/AruX_YsfYg4CoeLK21nWVvAa2kU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38549
45627
58606
sbgp-ipAddrBlock: critical
IPv4:
203.21.76.0/23
203.175.178.0/23
IPv6:
2001:df0:20b::/48
Signature Algorithm: sha256WithRSAEncryption
cd:05:29:76:4e:9d:44:23:bd:1b:a4:e4:46:a4:ea:25:f8:e6:
d5:a2:96:af:fa:6d:b6:cd:92:cb:95:d7:63:8a:e8:30:73:6b:
24:8c:45:81:d7:66:dc:94:3c:1e:70:eb:9b:73:43:a1:62:91:
3c:fd:6b:c1:66:86:f5:b0:83:49:c7:02:ef:24:dd:c7:9b:4d:
69:0e:40:c5:90:00:f3:bd:e4:cb:87:b0:0c:92:72:10:60:3e:
ed:76:1d:3e:dd:be:c8:2a:8e:11:e4:56:5f:b2:1e:e8:7d:91:
13:73:af:f7:10:f7:08:7f:d5:ba:8b:79:22:80:78:5b:98:5a:
80:4e:7b:b3:54:1d:72:58:f3:e6:8a:ac:ce:4b:e6:c5:e8:1a:
a9:12:d9:3e:07:7b:f0:94:e6:f5:9e:ba:72:c9:99:ed:ac:4c:
c6:27:4a:a9:af:0c:6e:b8:7f:98:d6:e0:69:03:7e:7c:36:fb:
d6:9e:ff:c3:6a:c8:60:03:ee:78:9c:1a:ae:47:1e:1b:31:6d:
89:cc:42:40:2c:41:1c:c1:b6:48:99:d6:e9:6d:d3:8b:14:f9:
e1:9b:0c:35:ef:d2:f8:ce:b3:c4:d7:79:c0:80:86:20:98:a9:
25:c1:4c:44:ec:f7:49:df:e1:ec:af:cb:38:e4:9c:cc:5a:4f:
8d:70:6a:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 20:49:38 2024 by rpki-client on console-ams.rpki-client.org