Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer
File: BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer (raw, json)
Hash identifier: vf7fLtPfAm8n4RfKs9s7fOQVxaaxFGVJR7BiMZ5VX/8=
Subject key identifier: 05:F8:41:9A:F9:AA:31:84:EA:B1:FF:87:42:4A:6A:E3:3C:F7:32:C4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B5C3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 08 Aug 2023 15:11:29 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 18017
IP: 202.65.160.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 23:35:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112067 (0x1b5c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 8 15:11:29 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A915E575/serialNumber=05F8419AF9AA3184EAB1FF87424A6AE33CF732C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ae:a4:01:40:cc:01:2d:1d:e7:25:45:ae:af:
d2:5a:e7:94:80:32:dc:e4:ac:ba:6b:81:ab:f8:f8:
b2:2d:87:dc:ec:c9:d4:03:46:55:7c:a1:b6:05:7e:
88:2d:c7:e6:65:a5:a3:c8:b9:cc:af:c3:dc:db:93:
b4:84:67:b4:7d:86:4b:49:63:c5:38:c8:d2:32:64:
71:43:ea:3a:f1:da:55:c9:93:2c:7f:8d:ce:aa:f8:
30:cf:ac:a7:aa:25:51:f2:b6:e3:36:91:5c:6f:98:
30:74:b9:e6:a2:5e:01:b9:22:b5:3f:28:cd:c9:67:
f2:50:6d:36:65:43:a3:be:c4:69:9f:16:0f:5b:82:
52:8b:38:10:42:37:ba:12:fb:d1:9c:99:1d:d9:16:
56:b7:1e:1a:9a:4f:d4:6e:6a:7b:74:c6:4a:34:c5:
69:66:c7:e1:bb:57:04:6f:2c:17:2b:58:29:85:f8:
2c:69:b2:19:15:6f:8c:68:98:f7:47:95:a9:47:2d:
bc:fc:28:12:33:47:10:ef:0d:19:9f:4a:e3:c8:1e:
07:c9:c8:bc:5e:46:60:f4:a8:24:d9:38:27:6a:37:
ed:de:f3:fa:d0:43:3d:3f:18:b8:f2:9b:59:90:13:
86:f0:5b:0e:6d:08:40:57:ed:e0:8a:b2:97:48:d0:
86:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:F8:41:9A:F9:AA:31:84:EA:B1:FF:87:42:4A:6A:E3:3C:F7:32:C4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
18017
sbgp-ipAddrBlock: critical
IPv4:
202.65.160.0/23
Signature Algorithm: sha256WithRSAEncryption
b4:a7:e8:31:f5:a7:4d:94:3a:f2:21:f8:7a:3c:2e:d4:22:d2:
77:8e:ee:81:f8:3b:b3:62:04:f6:62:82:c9:3c:d7:11:20:25:
37:14:c4:c5:92:b9:9e:8e:07:42:60:9f:91:6d:b5:06:ee:71:
a6:e7:95:cb:c0:09:d2:d3:80:6d:0b:77:e2:39:0d:3a:b8:a9:
2f:f2:53:6c:06:53:b4:d7:3b:a7:ae:88:11:40:d7:1e:94:3e:
87:68:de:9b:57:d6:71:79:97:18:c7:cb:47:9d:0b:86:06:bc:
f1:23:78:7c:33:42:72:9b:29:a2:56:aa:61:cf:e9:b6:82:3c:
5b:bd:9e:b0:f9:bd:29:86:83:6a:ff:58:05:66:53:15:e1:c2:
9b:2a:85:90:4a:e4:51:7e:a7:64:51:5a:ea:0b:86:8d:43:36:
6b:78:68:4f:0e:51:8d:cb:1e:e8:77:5c:4d:53:42:08:7c:e0:
b4:17:9e:66:3c:ae:1b:28:eb:c9:33:3c:48:0e:aa:70:b8:a4:
c8:37:74:85:6c:3d:39:62:3f:c1:49:86:43:dd:94:f8:84:46:
f9:10:b7:2a:60:9f:ea:09:4b:ea:1b:e7:ac:71:da:d2:55:4a:
f6:6f:13:a2:1a:9f:c0:f4:7b:a3:b4:6b:ca:91:c3:02:0c:20:
3e:fc:b9:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 01:10:01 2024 by rpki-client on console-ams.rpki-client.org