Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B8-BcErYcCMeHtg3vDuAZ1oCfGk.cer
File: B8-BcErYcCMeHtg3vDuAZ1oCfGk.cer (raw, json)
Hash identifier: IE0Nt81Lt8OjvTtVEbBgyA9cKPiWKzTUppHj4gbxtrM=
Subject key identifier: 07:CF:81:70:4A:D8:70:23:1E:1E:D8:37:BC:3B:80:67:5A:02:7C:69
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EAC7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B54FE/FEDDC0C0511311EBAF28CA0DC4F9AE02/B8-BcErYcCMeHtg3vDuAZ1oCfGk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B54FE/FEDDC0C0511311EBAF28CA0DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 09 Apr 2024 19:55:15 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 134505
IP: 103.161.104.0/23
IP: 2400:fbe0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 06:50:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125639 (0x1eac7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 9 19:55:15 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91B54FE/serialNumber=07CF81704AD870231E1ED837BC3B80675A027C69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:8d:c8:8f:08:de:48:43:c6:3d:49:52:d1:de:
5f:27:c6:25:25:48:88:9c:91:64:17:fc:59:38:0c:
03:d5:b1:02:31:2e:66:ea:38:62:e7:86:df:aa:c4:
01:1b:57:84:fe:b6:97:81:99:fe:39:b5:bf:d1:a1:
5c:57:10:3a:d0:be:03:70:91:c7:ee:e4:36:4d:17:
03:ee:c2:db:05:e5:34:d7:83:f5:22:1d:f1:23:ca:
6f:45:50:23:ac:af:36:e2:02:70:af:37:5d:74:ab:
8f:41:ae:df:f1:ae:fc:2b:31:3a:73:71:00:81:08:
86:bf:3b:39:59:f0:c9:31:c9:1e:84:4d:ac:aa:b5:
82:e4:84:ff:9d:6e:82:26:50:3c:53:7b:ce:57:6c:
ee:fc:93:46:33:c2:f8:79:20:83:6e:dd:4f:2a:33:
be:fb:20:c5:5c:f6:6a:c6:13:82:57:70:81:73:6a:
d8:2e:18:25:07:36:50:70:b4:8a:53:b8:33:7c:13:
52:e2:94:21:50:11:e6:59:dc:8c:7c:49:9d:c9:09:
c4:63:5c:cb:16:98:73:a6:2e:9a:58:a2:f3:1a:68:
f7:24:7d:f8:b7:45:64:0c:13:98:3d:b1:3b:f5:01:
cd:9f:d8:6b:e2:12:0a:e7:91:02:04:7e:b3:16:ca:
74:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:CF:81:70:4A:D8:70:23:1E:1E:D8:37:BC:3B:80:67:5A:02:7C:69
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B54FE/FEDDC0C0511311EBAF28CA0DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B54FE/FEDDC0C0511311EBAF28CA0DC4F9AE02/B8-BcErYcCMeHtg3vDuAZ1oCfGk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134505
sbgp-ipAddrBlock: critical
IPv4:
103.161.104.0/23
IPv6:
2400:fbe0::/32
Signature Algorithm: sha256WithRSAEncryption
cf:88:71:d9:8f:ce:40:3a:62:be:db:73:7a:6b:b2:c4:0c:df:
37:2d:66:d8:1a:95:0b:de:bc:ba:cb:99:57:0c:18:b7:cb:ae:
a8:9a:d7:f5:91:f9:b7:26:b3:08:96:ee:3b:2c:cf:5e:cb:81:
25:93:c4:28:2a:4a:90:13:56:63:26:07:2f:02:60:d1:95:59:
86:a6:29:83:d9:f6:23:ee:7d:87:55:41:ca:92:bc:04:73:96:
ae:d1:36:23:fb:25:90:88:e6:bf:56:f2:0f:dc:b6:b0:b0:c0:
7d:46:4b:40:9a:27:38:0c:9a:dc:48:0f:69:8e:06:cb:f9:18:
36:d1:3f:28:1a:b2:1d:65:62:71:1c:90:77:fa:25:67:e1:83:
64:c6:b3:5b:72:3e:55:a3:55:d8:0c:39:91:25:49:7e:7e:82:
41:0e:f0:8c:01:af:03:ec:b6:1e:4d:ec:5d:25:99:fe:a0:9f:
05:66:73:27:e2:e3:bd:b9:25:55:62:ee:93:4f:f8:9f:54:60:
3f:e1:af:b7:df:96:c8:88:ac:3c:bb:1d:01:d1:f4:b8:b0:00:
25:ab:81:e1:fc:be:c3:79:36:07:ec:50:b8:76:a6:a4:24:22:
af:e9:90:a4:0f:09:41:9d:c1:46:e2:13:48:e3:d7:c0:84:53:
38:30:0d:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 07:41:01 2024 by rpki-client on console-ams.rpki-client.org