Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DMq5RHoXrDyKeHvpR-xdb0qJXOk.cer
File: DMq5RHoXrDyKeHvpR-xdb0qJXOk.cer (raw, json)
Hash identifier: 69ZtMwh8NSLZpRWMBWYMQ9VyCpjDVfMpewag9NkqE0Q=
Subject key identifier: 0C:CA:B9:44:7A:17:AC:3C:8A:78:7B:E9:47:EC:5D:6F:4A:89:5C:E9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CF44
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A6EA0/F91400C28C2C11ED9638E672C4F9AE02/DMq5RHoXrDyKeHvpR-xdb0qJXOk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A6EA0/F91400C28C2C11ED9638E672C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 02 Dec 2023 20:19:27 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 150402
IP: 103.30.72.0/23
IP: 2001:df1:7bc0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 21:46:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118596 (0x1cf44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 2 20:19:27 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91A6EA0/serialNumber=0CCAB9447A17AC3C8A787BE947EC5D6F4A895CE9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:81:45:b0:2d:a7:e5:79:05:bc:f7:ab:ae:41:
18:75:98:6e:b6:82:17:50:b6:07:c3:77:e4:46:cd:
d9:64:f1:a2:79:bd:e0:9c:3d:00:2f:90:be:08:a5:
7a:f0:1d:50:d5:87:c2:96:ad:66:98:45:60:7d:69:
75:d5:0f:fe:fb:32:4f:77:e6:24:52:33:49:36:4d:
8c:39:78:5d:b5:ad:66:5e:a9:7f:4a:95:8c:46:88:
90:db:32:e2:19:7e:4a:84:14:1f:7c:48:2a:43:6b:
22:c5:f1:9e:b2:c1:07:22:43:3a:f4:dd:8c:3e:b0:
1d:2c:58:75:f5:fe:40:e4:03:9a:04:e6:7c:52:10:
33:ae:73:a9:1d:01:6d:37:ae:7c:07:1a:e0:ba:5a:
c4:23:68:05:1e:34:1e:4b:5f:ee:82:9c:6f:10:89:
47:4e:6a:12:86:4b:a1:27:d3:8e:ca:55:0a:ce:41:
a7:41:92:01:ba:6e:d8:a7:1b:56:9a:5d:77:76:18:
14:a7:1e:c8:5d:10:23:7f:80:f2:53:d8:4f:4e:c4:
06:50:cd:87:e2:e2:5e:ba:c3:4e:ac:a9:95:77:02:
46:54:da:e8:97:e2:37:a6:cf:02:d9:31:d2:e9:d3:
dc:2d:28:2d:5f:a4:70:78:5d:66:10:2c:8b:ea:d9:
30:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:CA:B9:44:7A:17:AC:3C:8A:78:7B:E9:47:EC:5D:6F:4A:89:5C:E9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A6EA0/F91400C28C2C11ED9638E672C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A6EA0/F91400C28C2C11ED9638E672C4F9AE02/DMq5RHoXrDyKeHvpR-xdb0qJXOk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150402
sbgp-ipAddrBlock: critical
IPv4:
103.30.72.0/23
IPv6:
2001:df1:7bc0::/48
Signature Algorithm: sha256WithRSAEncryption
9a:cb:ab:3e:8b:9e:05:16:b9:38:ad:1c:fd:e8:43:4d:60:52:
9c:d7:38:4f:5a:5b:12:b6:0d:2b:e3:ae:51:2f:fe:ad:39:f3:
53:e5:0e:78:10:25:64:35:76:23:52:d4:53:c2:0d:92:0f:6f:
c1:f9:36:7b:a6:fd:7b:d4:b4:b4:76:1f:63:03:e0:82:1d:93:
f8:de:2e:f7:7a:05:53:ca:46:2f:fb:08:13:9c:84:e6:53:4d:
c7:ca:5a:40:65:67:37:f6:15:2c:76:1f:a7:80:c4:1a:69:d5:
19:a4:01:dd:e3:c3:67:91:09:36:59:75:9a:b0:a5:58:2d:b9:
d3:96:66:82:4f:99:15:c3:33:0d:b2:b2:dc:07:7e:2d:f8:42:
e3:92:10:4c:74:26:9f:e0:9b:4f:cf:0f:8c:83:e8:33:cd:d0:
9e:12:08:db:10:92:01:a5:90:6f:2d:58:e5:64:db:39:3e:3e:
fa:94:68:68:ee:ea:e4:e3:d8:a1:2e:4c:8b:8f:23:2d:ba:9a:
ff:4f:6a:cf:25:df:40:bb:94:d1:82:af:08:61:af:20:62:93:
9d:c8:87:97:da:5d:a6:23:bc:7f:ed:99:de:88:c5:7b:19:22:
3e:57:0f:9b:f7:12:62:7f:0a:d8:d0:59:92:f1:0e:d7:d8:f4:
44:fe:a9:ce
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Apr 24 23:34:54 2024 by rpki-client on console-ams.rpki-client.org