Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BDQBcYbbhMqJR3Vw3aEK1zFZf_E.cer
File: BDQBcYbbhMqJR3Vw3aEK1zFZf_E.cer (raw, json)
Hash identifier: W1xDj9dEfyBZm0DZvlZd0Y/NSuww4QuGNd/APO+RSXs=
Subject key identifier: 04:34:01:71:86:DB:84:CA:89:47:75:70:DD:A1:0A:D7:31:59:7F:F1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A8BD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9160244/7EAFECB03C0711E5B16CEF63C4F9AE02/BDQBcYbbhMqJR3Vw3aEK1zFZf_E.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9160244/7EAFECB03C0711E5B16CEF63C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 07 Jun 2023 15:11:47 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 58921
IP: 43.225.176.0/22
IP: 103.248.4.0/22
IP: 2406:ef00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 06:28:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108733 (0x1a8bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 7 15:11:47 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A9160244/serialNumber=0434017186DB84CA89477570DDA10AD731597FF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:b0:46:4a:43:38:89:63:d6:4a:a4:f7:be:5d:
2f:9f:33:67:6b:52:3a:d7:be:1e:9d:db:2e:d6:c2:
03:25:ad:10:3f:a9:42:a5:45:1e:ce:53:0c:e2:b5:
3a:57:ef:92:9b:3c:58:57:99:33:7b:67:0c:1a:70:
3b:d4:1c:d6:a7:bc:99:60:0f:c0:62:b3:59:d1:75:
9f:0e:98:fe:f5:06:5e:e5:92:77:e3:89:93:b4:c5:
e3:17:64:73:19:71:a0:b4:68:38:8c:9a:b6:11:52:
a1:0d:22:8d:3b:de:11:a5:47:0e:29:c1:06:b9:00:
44:b1:4b:c5:78:57:f9:56:92:e8:9c:f8:3f:aa:f8:
b2:91:a4:7a:89:1a:06:16:2a:15:f7:36:b4:cd:aa:
36:50:0e:6f:d0:18:9e:42:1e:53:4c:f5:e8:1a:83:
73:ec:11:04:45:41:4e:a1:aa:09:b9:49:a4:db:e4:
3e:99:c4:26:d6:f9:59:75:40:94:7b:36:ed:e1:b6:
09:68:fc:6b:2c:da:aa:f1:18:b5:24:e7:f5:48:00:
66:19:56:d4:8d:53:24:1b:ac:8b:aa:08:0e:c7:b5:
36:90:e2:69:4f:63:a3:b5:54:94:45:6a:3b:68:6d:
e3:20:e6:97:9b:5a:5e:c1:fb:80:ec:ec:f2:4b:c4:
19:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:34:01:71:86:DB:84:CA:89:47:75:70:DD:A1:0A:D7:31:59:7F:F1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9160244/7EAFECB03C0711E5B16CEF63C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9160244/7EAFECB03C0711E5B16CEF63C4F9AE02/BDQBcYbbhMqJR3Vw3aEK1zFZf_E.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58921
sbgp-ipAddrBlock: critical
IPv4:
43.225.176.0/22
103.248.4.0/22
IPv6:
2406:ef00::/32
Signature Algorithm: sha256WithRSAEncryption
00:cd:91:f8:74:2a:24:3e:69:d0:cd:c6:49:b1:97:9f:b0:fb:
5a:2f:cb:ff:85:09:f3:4b:b7:8d:36:69:8e:c2:aa:0c:ca:23:
78:72:05:bb:33:42:5f:7f:62:32:60:55:d7:7e:5e:79:10:ee:
2f:a2:f2:8d:8a:66:45:63:63:2b:6d:32:bb:88:9a:d7:26:72:
dc:f9:03:9c:04:e1:0d:7d:42:d6:83:11:26:3e:83:8e:9e:7d:
7f:dd:14:2d:59:ef:01:c5:6c:01:d7:b8:40:34:5e:5b:d0:c3:
b5:89:94:79:6b:5d:43:8c:ff:ea:ec:48:e7:37:97:0e:65:6e:
87:6a:dc:59:b7:c2:db:c6:be:b6:ff:dc:6f:80:f2:bc:78:63:
8e:4c:90:6b:40:90:1c:39:0d:d1:b5:fd:24:22:7f:ea:b7:88:
7a:a6:ae:ff:a7:61:75:1e:0d:00:24:2f:95:5e:59:d1:68:96:
bb:f2:9d:39:1c:b2:64:eb:c4:d8:54:51:db:07:ec:55:73:cd:
0d:74:19:1c:6d:81:ff:19:40:b0:e5:23:a8:84:19:96:cd:cb:
c9:ac:10:17:14:1f:3b:c2:f0:b0:1e:96:8f:82:ee:c8:6b:64:
a3:d7:e7:2b:d0:db:dd:2d:5c:58:de:d3:54:3e:e2:32:e4:16:
a0:47:8f:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 07:21:13 2024 by rpki-client on console-ams.rpki-client.org