Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Eas33GVBUMSTyK_H6G1mnCCuU4Y.cer
File: Eas33GVBUMSTyK_H6G1mnCCuU4Y.cer (raw, json)
Hash identifier: N4EE2he985M8VseKB6rNtlB5OgRnzaL9/xjDCiyqqZM=
Subject key identifier: 11:AB:37:DC:65:41:50:C4:93:C8:AF:C7:E8:6D:66:9C:20:AE:53:86
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E615
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917E0BB/68431FA2E8E611EE9CABE06AC4F9AE02/Eas33GVBUMSTyK_H6G1mnCCuU4Y.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917E0BB/68431FA2E8E611EE9CABE06AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 23 Mar 2024 07:24:45 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 152096
IP: 115.84.170.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 08:07:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124437 (0x1e615)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 23 07:24:45 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A917E0BB/serialNumber=11AB37DC654150C493C8AFC7E86D669C20AE5386
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:03:77:f1:2b:d3:b3:90:5e:0a:7b:e3:0b:d3:
7a:8a:57:c0:a4:84:a5:1e:9b:ad:e3:ab:07:6d:97:
e0:a4:59:9b:cc:d3:8f:aa:ea:6c:f0:4f:20:d9:c5:
ec:59:e9:3c:46:ea:13:ba:0f:18:7e:49:40:3a:ad:
b8:9d:df:6b:bc:27:b0:d4:c3:f4:51:3f:28:d9:ac:
0a:0d:16:57:90:50:19:1a:3b:47:6a:33:b2:c3:56:
54:ad:64:90:4b:a1:00:ef:e6:eb:cf:dc:89:7f:07:
32:0b:55:19:41:c3:17:7d:cc:c5:a7:87:4f:f1:96:
8f:29:e6:0f:95:31:73:de:11:ce:46:26:ee:4f:45:
66:28:6e:ff:93:82:11:59:2d:01:68:95:e7:4d:32:
55:f1:ba:98:d8:b2:fe:fe:3a:72:54:8c:41:d8:9e:
58:11:b0:cb:ee:b6:cc:a2:8b:ac:32:ca:66:45:b5:
04:15:db:87:4d:5b:77:b9:c4:de:2d:60:d3:60:09:
d0:a3:8e:11:a7:c6:95:1b:01:8b:c0:fc:b2:9c:76:
36:6d:19:d8:98:14:d1:f2:f2:69:9d:bd:a3:26:06:
60:9f:20:3a:7b:83:a8:18:6e:0f:64:69:81:fa:99:
dd:e4:ed:46:d1:bd:c6:76:29:9f:1e:63:53:f6:00:
4b:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:AB:37:DC:65:41:50:C4:93:C8:AF:C7:E8:6D:66:9C:20:AE:53:86
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917E0BB/68431FA2E8E611EE9CABE06AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917E0BB/68431FA2E8E611EE9CABE06AC4F9AE02/Eas33GVBUMSTyK_H6G1mnCCuU4Y.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152096
sbgp-ipAddrBlock: critical
IPv4:
115.84.170.0/23
Signature Algorithm: sha256WithRSAEncryption
35:62:72:e5:9a:52:10:e5:8c:23:f4:7b:e7:f1:eb:9b:c9:76:
7e:13:20:93:6e:4c:87:89:88:bf:73:16:d2:d4:73:e7:a3:02:
de:00:52:bd:1f:d6:44:57:84:95:e1:05:0e:51:bf:f6:07:e7:
c2:41:b2:8a:e2:c8:25:08:f8:a3:10:84:4c:39:84:d0:ae:54:
dd:d4:46:35:3a:61:50:1f:57:d9:77:c5:c4:99:df:22:fb:ec:
35:d2:06:a7:3f:a7:bd:67:a8:de:a8:2a:03:e2:09:e9:48:85:
f6:8b:a3:c8:cc:57:ce:29:bc:d5:37:a4:3d:e5:8f:9d:98:0e:
8d:ee:60:f6:f7:2f:5c:55:85:fc:cd:19:00:79:c4:4d:3a:1d:
e9:de:a4:79:1e:18:d3:ea:35:13:bf:17:0a:74:68:04:10:8b:
ed:2b:f9:41:3d:81:ff:ca:8a:2a:1c:34:f5:6c:46:fb:64:b9:
99:c2:76:5d:dd:36:ea:d8:0a:a4:7e:bd:65:1e:8c:ea:9c:1a:
f0:35:ff:7a:f9:65:ae:e6:a9:6b:c5:a5:cb:e3:81:b6:a4:c7:
dd:62:e3:c3:7a:d3:8b:a8:db:fa:8c:8c:a4:ed:80:de:cc:9d:
58:0c:9d:49:d5:c6:e7:56:5f:a5:c4:16:f5:b8:21:e4:67:f5:
f3:53:a3:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 10:18:17 2024 by rpki-client on console-ams.rpki-client.org