Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer
File: CpU4Un2lMv4x11DRNpblzq8qm88.cer (raw, json)
Hash identifier: 0Eq2MuEKFYDCvoW2GjT/DFMuA7SDsGf2QplvLzSvRP8=
Subject key identifier: 0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 019EBF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 22 Apr 2023 17:23:30 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 151056
IP: 103.122.142.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 23:35:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106175 (0x19ebf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 22 17:23:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=A91C2677/serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:35:d7:a9:b7:bc:e3:00:b6:9f:1f:cc:09:b0:
0d:55:54:7a:c7:a3:cc:48:af:39:86:07:f9:c7:f9:
63:f9:78:18:f8:27:91:86:c3:4f:2f:53:16:d0:93:
ea:d8:6a:0f:62:70:5f:bf:f4:6e:d6:e7:80:80:0c:
76:5b:5c:ac:4f:4e:ce:30:42:24:ba:81:75:2e:ee:
4f:fb:67:23:22:c9:9a:cf:c5:74:83:69:ef:c9:8b:
59:32:e6:9a:0b:0d:1d:71:d0:14:c3:77:8c:fc:1e:
82:c5:3d:24:47:99:da:57:90:6b:8e:16:fd:e7:9b:
1c:89:ac:c9:f7:c0:74:ac:7e:63:ea:84:ec:ac:6f:
39:33:6e:77:fc:e3:aa:30:dd:ab:eb:35:6e:fc:67:
e2:1e:42:cd:b1:78:14:96:a1:5f:c9:73:dc:17:81:
5e:44:ee:f0:8b:81:f9:ce:9b:52:11:ba:84:49:4d:
f6:23:ba:4c:0a:8f:f1:a5:f8:34:1e:91:dd:6a:2d:
1f:ae:ed:00:0d:ae:6b:55:71:3f:83:03:08:8a:25:
3d:72:c1:df:df:e0:b9:5b:5b:6e:04:66:9d:cb:25:
0f:5a:2f:83:60:e6:f7:d4:4c:02:14:23:c0:83:59:
c3:72:e9:1b:df:e3:95:f1:42:e8:3c:c5:5e:54:b5:
9f:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151056
sbgp-ipAddrBlock: critical
IPv4:
103.122.142.0/23
Signature Algorithm: sha256WithRSAEncryption
65:e1:d8:50:65:d4:38:a1:0e:4f:24:ad:45:7f:75:cb:26:dd:
54:8d:47:e7:e3:1d:cc:53:64:ca:96:6e:ec:c2:c1:50:77:18:
7b:1f:15:0b:6e:5b:bc:0f:97:9b:a0:f8:09:8c:f6:99:fd:be:
ee:2a:3c:7a:1b:3c:f5:2c:b9:cf:60:6c:88:b7:1c:b0:66:d4:
ad:83:d4:8b:a9:7e:44:7b:fc:c4:58:9a:8a:26:26:8e:59:db:
ef:15:eb:4e:da:66:c7:b9:db:d0:d5:98:82:53:58:ac:2d:f8:
c1:d7:f9:f2:f6:25:94:61:ca:61:d5:10:84:cb:ac:00:1f:9c:
9f:87:fe:7f:41:ac:bc:c5:e5:94:f8:23:fa:68:cd:6e:8a:c9:
af:f2:90:9e:a3:60:aa:90:09:fc:c3:51:9b:ff:39:02:b5:7d:
61:ec:ae:da:0b:4e:0a:5c:8c:ba:07:bf:cd:e7:2f:bd:d9:0c:
43:82:78:40:a7:f3:d6:c4:43:f3:63:16:c7:ba:f6:69:fc:62:
9e:58:c3:ee:4b:7e:85:75:65:27:8e:07:71:30:53:60:71:53:
51:ec:6a:26:7b:6e:c0:5e:fb:86:86:65:85:51:c8:33:29:ff:
3d:55:88:86:6b:5e:ca:a6:83:f7:e9:81:06:6d:6c:48:4d:94:
8e:ac:15:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 01:10:02 2024 by rpki-client on console-ams.rpki-client.org