Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer
File: BQcL-a2TBEn7O2m4aRzyDAEnebk.cer (raw, json)
Hash identifier: uiwAhM+mJXl30boEPPVOK1MSH1xZ87QkAPRasf3u2To=
Subject key identifier: 05:07:0B:F9:AD:93:04:49:FB:3B:69:B8:69:1C:F2:0C:01:27:79:B9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01AC34
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 26 Jun 2023 19:58:43 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 136555
IP: 103.92.152.0/22
IP: 2403:bb40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 23 Apr 2024 15:55:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109620 (0x1ac34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 26 19:58:43 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A91DEC12/serialNumber=05070BF9AD930449FB3B69B8691CF20C012779B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:eb:37:d1:0c:c3:89:6d:05:97:f6:2a:60:a3:
31:b5:0b:0a:fa:2c:cf:ac:0a:78:c5:31:aa:12:8d:
68:78:4b:d2:22:73:74:32:a5:0c:10:96:6d:eb:e9:
7d:12:e9:a1:8b:c9:7a:82:a7:e0:64:a1:0f:a0:80:
f5:c4:fd:e7:fc:fa:01:bd:a4:dd:67:59:ce:03:02:
61:12:c3:75:55:9d:69:37:d2:9b:71:04:f2:b5:05:
4a:26:36:12:32:df:6c:5f:94:b7:42:af:2a:16:9f:
a1:27:3f:73:01:fe:42:c3:2d:b1:8d:1e:bf:b8:f1:
fa:1d:ab:4e:5a:30:97:ee:3c:e3:9e:f4:93:17:2e:
1a:9f:47:ba:bc:26:29:64:0d:f7:31:01:59:2d:7e:
2d:6b:df:cc:2c:08:82:df:30:bd:58:02:35:59:2c:
04:88:99:12:04:94:b0:6a:96:d9:71:e6:39:1a:4e:
02:73:3d:55:ab:f9:2b:46:44:3e:16:67:9f:59:94:
f2:7b:f5:34:50:b5:5e:75:cd:d3:1b:a3:75:db:05:
3e:f4:71:ef:4b:31:d3:4a:78:35:7a:69:27:b7:6d:
69:ac:dc:eb:92:2c:bb:00:93:c9:da:7b:aa:e9:1e:
bd:5c:f5:f5:69:8c:e2:e4:93:01:66:52:b5:a2:26:
af:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:07:0B:F9:AD:93:04:49:FB:3B:69:B8:69:1C:F2:0C:01:27:79:B9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136555
sbgp-ipAddrBlock: critical
IPv4:
103.92.152.0/22
IPv6:
2403:bb40::/32
Signature Algorithm: sha256WithRSAEncryption
01:61:c9:87:34:db:76:a9:0a:de:9a:38:b8:00:96:bc:69:ca:
1b:41:12:50:4b:a2:87:e5:36:ee:8e:8f:e4:23:47:9e:54:35:
13:57:07:30:e3:af:eb:e1:b2:d4:0d:1a:ef:8a:b0:17:ce:53:
51:8b:ac:5b:74:9b:ae:fa:d8:bd:6d:ae:9b:78:6d:d6:3d:2c:
03:8c:0d:5f:aa:34:84:22:96:20:f7:d0:b8:26:f7:03:71:12:
ec:72:f8:c5:e5:6b:83:00:0e:8b:b6:e0:62:7d:26:d0:12:a2:
b4:92:bd:15:f0:07:08:aa:61:74:28:df:c6:5f:88:81:17:f5:
2e:4d:3a:5a:da:a8:ca:f4:ad:54:95:64:1e:4d:b2:2c:ac:39:
8e:d3:00:da:b6:0d:32:85:5d:c0:5e:42:4f:f2:5a:ba:3b:ff:
8b:85:fa:13:9b:a0:81:ce:d3:a6:a9:f8:1d:77:13:99:a3:eb:
c2:18:41:a8:2b:8c:e5:af:3b:b8:e7:09:9b:e4:a8:b5:e3:a3:
d3:28:8d:81:6d:74:c4:38:df:50:99:12:79:26:2d:d0:b5:c4:
0a:9a:dc:c5:63:21:b3:a3:b9:49:a7:9d:d8:81:b1:66:6d:e3:
7b:c8:86:2c:39:b5:07:09:04:18:65:d3:db:70:d5:3b:c6:11:
54:bd:cd:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 16 16:24:36 2024 by rpki-client on console-fra.rpki-client.org