Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E8ct8cUeLKIRyldmUWjPfHx0cpI.cer
File: E8ct8cUeLKIRyldmUWjPfHx0cpI.cer (raw, json)
Hash identifier: VvWZUHHM//8RSCa4SsJ/O6KDKflvKuSCNyoSccSOI30=
Subject key identifier: 13:C7:2D:F1:C5:1E:2C:A2:11:CA:57:66:51:68:CF:7C:7C:74:72:92
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EA9E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916B73C/CBD6211CF64811EEA4A6FE0EC4F9AE02/E8ct8cUeLKIRyldmUWjPfHx0cpI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916B73C/CBD6211CF64811EEA4A6FE0EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 09 Apr 2024 08:11:48 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 152685
IP: 103.98.76.0/23
IP: 2001:df3:a940::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 08 May 2024 20:59:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125598 (0x1ea9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 9 08:11:48 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A916B73C/serialNumber=13C72DF1C51E2CA211CA57665168CF7C7C747292
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:bf:01:8e:89:2c:1c:29:b2:94:77:5c:99:cc:
ef:3f:6d:c1:5c:0f:ab:20:69:74:ac:27:2f:a5:8c:
84:70:3d:1f:b4:aa:40:72:ea:dc:04:40:a7:85:d8:
5d:63:03:23:36:52:11:87:0d:cc:5c:70:3f:6a:e5:
17:33:6d:c9:89:e9:d0:64:c1:8a:97:8c:e5:93:28:
61:da:c7:d0:4f:f5:01:d7:4e:03:9f:71:fb:c6:17:
52:84:99:93:06:d2:bb:5a:bb:72:c7:80:e5:93:44:
e2:15:cc:b2:7a:68:9e:6b:98:9f:d2:97:56:23:56:
62:de:64:43:22:0c:13:2e:1b:a6:c3:e3:50:eb:8f:
e7:fc:57:29:b1:f7:d9:73:ce:ea:7a:57:fb:4c:30:
74:51:35:6a:dc:18:28:8b:36:c5:86:d5:95:fa:ed:
ad:f2:7e:84:e3:f4:80:cb:4d:1f:ff:38:36:3c:c1:
76:27:b9:77:ae:a0:06:02:66:8a:ba:e8:d8:56:82:
d8:3b:a4:0a:a8:16:06:c5:6d:52:c0:42:ee:6d:69:
31:86:46:54:e8:92:70:93:3d:ef:80:fc:d1:87:18:
e4:06:b8:c9:3f:4d:d2:06:a6:c7:87:6d:76:c8:e4:
3c:5c:1e:8a:91:3e:7f:7f:ee:a2:5d:df:3b:cd:db:
72:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:C7:2D:F1:C5:1E:2C:A2:11:CA:57:66:51:68:CF:7C:7C:74:72:92
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916B73C/CBD6211CF64811EEA4A6FE0EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916B73C/CBD6211CF64811EEA4A6FE0EC4F9AE02/E8ct8cUeLKIRyldmUWjPfHx0cpI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152685
sbgp-ipAddrBlock: critical
IPv4:
103.98.76.0/23
IPv6:
2001:df3:a940::/48
Signature Algorithm: sha256WithRSAEncryption
7b:24:ce:fe:f4:8e:54:80:a1:9b:f6:84:f7:49:15:5a:cc:ef:
7b:b6:44:c4:fd:1c:17:7b:3b:65:90:b7:c3:ce:fe:9d:95:fa:
7a:56:cc:1f:2b:01:b8:5d:66:84:ec:49:f1:cc:c3:11:e3:54:
87:1b:7f:35:4e:d0:8d:2a:ab:3b:2c:0e:4a:f5:b6:bb:d3:c2:
90:e0:a1:2a:41:8a:65:ec:3c:5b:19:e5:fc:46:3f:23:03:4f:
c3:40:bb:b4:be:e1:87:95:29:9d:c4:8c:00:4d:a2:57:0b:1b:
04:9e:f2:ad:e5:9a:3a:75:b4:cd:b8:51:ea:81:5f:4d:b0:33:
8f:37:5c:26:30:43:2a:e3:4c:75:2b:28:f7:24:cb:76:d4:c5:
b6:0e:43:9c:35:5d:3d:dc:c1:0e:d2:96:56:d7:22:13:1f:07:
c1:22:d8:5b:d2:33:2d:7f:eb:9a:9a:af:31:32:46:68:ad:d1:
4a:0d:58:ca:4b:dd:f3:98:ee:90:9e:12:0d:5d:d0:16:ee:55:
14:4a:2f:ea:f1:2a:e9:5b:20:ea:c9:6c:48:f4:45:93:f4:83:
7b:4d:67:8f:9b:a6:fc:ea:c8:f6:98:8a:3b:c6:95:c5:a4:74:
2a:e1:93:21:a3:72:93:1b:fd:bd:7b:bc:01:f5:94:09:76:5f:
2a:57:98:25
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed May 1 22:07:58 2024 by rpki-client on console-fra.rpki-client.org