Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DkAcrnQYRWKE6ZKD8r2hj6a1z3I.cer
File: DkAcrnQYRWKE6ZKD8r2hj6a1z3I.cer (raw, json)
Hash identifier: rOb3MsJYnhj9sdgZrg09MIrkF1PXIblrRcSVcd+8ztE=
Subject key identifier: 0E:40:1C:AE:74:18:45:62:84:E9:92:83:F2:BD:A1:8F:A6:B5:CF:72
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BA7D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91527FB/B0EB6CBABE7911E9BEBE3374C4F9AE02/DkAcrnQYRWKE6ZKD8r2hj6a1z3I.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91527FB/B0EB6CBABE7911E9BEBE3374C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 31 Aug 2023 16:04:56 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 136763
IP: 103.117.92.0/22
IP: 2403:1740::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113277 (0x1ba7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 31 16:04:56 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91527FB/serialNumber=0E401CAE7418456284E99283F2BDA18FA6B5CF72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:86:9a:20:64:d2:3a:6a:44:bd:54:b2:93:ff:
06:43:e0:63:78:44:1b:f5:56:46:1d:9c:00:7a:68:
fd:3e:ef:35:73:6b:b3:08:2f:86:81:53:25:48:58:
0f:cc:ec:2b:81:35:da:fa:ff:e2:6b:11:00:c0:1a:
ce:9d:2a:5b:4f:a2:11:61:b7:dc:1f:f8:ca:c3:66:
c3:55:80:a9:42:91:01:32:0a:e9:be:59:6b:98:c2:
a0:31:45:fe:8a:7f:bf:1f:f8:96:50:30:34:57:71:
0e:6f:f0:f5:e0:9e:31:d7:5d:a9:68:fc:ff:30:17:
0c:3c:6c:d1:39:9f:1d:0d:4a:8a:d7:f8:4e:72:b8:
0e:cd:2b:c7:65:7c:da:08:bd:88:91:58:d5:b6:70:
00:3e:82:14:0b:1d:70:a5:db:64:3f:56:59:45:c1:
eb:84:ad:8d:62:7c:04:c4:b1:b8:33:2c:3a:62:1a:
94:ea:dd:b1:de:19:49:c9:5f:9d:14:28:0d:32:4a:
5a:75:82:a0:aa:32:8c:01:86:ef:e8:87:e4:1d:44:
b9:d8:62:cb:4f:51:1d:d7:2d:d2:ca:6d:82:43:b9:
a2:ce:ce:66:5f:b1:d3:03:a7:19:2e:b0:72:81:06:
72:4c:92:0a:ac:28:0b:23:bc:cb:2b:5c:04:1b:66:
89:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:40:1C:AE:74:18:45:62:84:E9:92:83:F2:BD:A1:8F:A6:B5:CF:72
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91527FB/B0EB6CBABE7911E9BEBE3374C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91527FB/B0EB6CBABE7911E9BEBE3374C4F9AE02/DkAcrnQYRWKE6ZKD8r2hj6a1z3I.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136763
sbgp-ipAddrBlock: critical
IPv4:
103.117.92.0/22
IPv6:
2403:1740::/32
Signature Algorithm: sha256WithRSAEncryption
c1:0e:bc:21:90:f2:44:3e:80:9f:85:93:21:53:cf:c0:6c:e5:
37:bc:6a:73:91:53:99:5c:07:ca:62:a9:fa:f4:2b:f5:fb:1a:
78:13:1b:ba:12:de:8d:d9:38:ce:7e:cd:d9:ae:cb:b6:6d:db:
66:28:1b:e5:bb:cf:81:4d:03:e4:29:3a:29:57:95:96:64:b3:
b7:de:45:94:a0:ea:b3:00:e3:9c:cf:5b:3c:22:66:bc:27:d3:
8e:96:ea:c3:57:0c:c4:5f:15:7c:3a:1b:1b:7e:f7:66:98:ee:
3f:4c:4e:d0:b2:5d:8f:82:1e:42:5b:cc:98:b2:b1:9c:20:41:
c2:06:53:5e:2b:00:bf:e6:7f:3e:72:d5:6d:d3:14:fb:45:74:
5a:37:cc:0d:7b:9e:01:1b:3a:13:40:e2:23:f0:2d:b9:09:86:
09:b3:19:fb:05:b8:31:14:ff:04:5c:3a:c0:07:50:ab:54:e2:
b8:ca:08:58:4e:92:50:4f:20:c0:53:76:e2:1d:d6:3c:e5:f4:
28:bf:d3:a7:73:c1:52:8b:f4:ce:56:1c:b6:83:a5:0e:90:a0:
ad:77:ad:7f:e0:6e:d6:74:07:b1:e9:e1:46:91:9d:5f:c3:ba:
4c:f0:52:21:a1:41:46:11:0f:7e:4d:27:9a:9e:98:a5:30:5e:
f4:a3:fc:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 05:36:49 2024 by rpki-client on console-ams.rpki-client.org