Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FX3bMj02U1BOMIJOaeDbA3U6aM4.cer
File: FX3bMj02U1BOMIJOaeDbA3U6aM4.cer (raw, json)
Hash identifier: /mdgG26asdfL5W235+ogmQfSt87k4X03cgIHjDoflK8=
Subject key identifier: 15:7D:DB:32:3D:36:53:50:4E:30:82:4E:69:E0:DB:03:75:3A:68:CE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DB0A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91480B2/41CBB64E68F911EEAD6CF62EC4F9AE02/FX3bMj02U1BOMIJOaeDbA3U6aM4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91480B2/41CBB64E68F911EEAD6CF62EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 29 Jan 2024 15:25:13 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 138625
IP: 103.134.236.0/22
IP: 2404:6f40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 03:13:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121610 (0x1db0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 29 15:25:13 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91480B2/serialNumber=157DDB323D3653504E30824E69E0DB03753A68CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:63:e2:45:22:68:00:1f:6e:af:7b:14:f5:8d:
7e:40:7d:16:ad:7f:a7:5a:78:4a:64:9d:4f:aa:dd:
62:97:58:52:d5:70:70:74:f8:7a:9a:cb:c8:41:ae:
74:d2:82:8f:c0:6f:39:89:80:1b:ec:a7:d0:fc:81:
77:71:54:f8:b9:ad:d2:9d:8d:94:31:1e:e6:ba:fa:
10:c7:83:2e:7e:73:bb:17:b6:67:7e:4a:a3:fa:c3:
bd:9e:20:ed:7b:f9:57:02:aa:c5:7b:a6:90:fd:0f:
2a:45:56:c9:cc:6c:fa:2b:57:34:f3:ab:2e:06:76:
21:6b:bd:78:d0:44:fc:05:43:04:45:b0:1c:4f:ca:
58:50:0d:e1:64:6a:12:19:fd:95:98:5f:fe:40:55:
f3:b6:2f:dc:5c:e1:d5:56:3b:94:46:42:f7:b8:e4:
6d:67:34:d5:e2:67:bc:dc:ba:87:e0:8b:6c:a0:22:
92:9a:7d:86:0e:a3:5a:85:5d:bd:fa:e0:30:9f:c5:
91:9e:96:35:7f:eb:b1:04:6d:92:52:39:81:f8:95:
72:9b:09:75:b7:4e:4a:5d:e4:6c:55:09:28:f0:9c:
aa:76:6a:92:91:24:fe:66:1f:dc:70:65:d5:6e:13:
da:7a:35:88:42:fd:1e:78:0a:fc:c6:98:4d:79:8e:
6c:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:7D:DB:32:3D:36:53:50:4E:30:82:4E:69:E0:DB:03:75:3A:68:CE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91480B2/41CBB64E68F911EEAD6CF62EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91480B2/41CBB64E68F911EEAD6CF62EC4F9AE02/FX3bMj02U1BOMIJOaeDbA3U6aM4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138625
sbgp-ipAddrBlock: critical
IPv4:
103.134.236.0/22
IPv6:
2404:6f40::/32
Signature Algorithm: sha256WithRSAEncryption
03:1e:e9:04:e3:e5:76:4e:99:24:4f:54:3d:f2:b5:7e:7b:f0:
9e:07:0a:0b:f0:76:58:ea:97:3d:14:1a:54:37:ce:2a:c3:c4:
13:27:ed:86:12:b4:42:79:7f:8a:0d:cf:61:c0:db:c9:e1:14:
f4:0a:2f:04:59:e7:f1:14:66:13:c2:88:21:15:65:3c:13:39:
eb:57:33:f2:67:64:b8:89:79:1e:f3:25:79:a4:d0:16:12:de:
c4:bf:d2:d4:6d:d1:87:47:63:e9:a9:18:c4:ee:ca:85:1c:0f:
b6:56:d0:5e:69:ae:ef:e2:66:c6:32:6a:3e:27:35:62:1b:df:
26:fa:48:8d:3d:15:52:ef:39:3c:65:0b:f9:ce:77:b4:2d:3f:
8e:a7:79:44:10:37:72:95:88:7d:d9:7e:46:ad:c9:3d:17:12:
0c:84:a5:be:59:58:fc:43:84:4a:0d:2d:00:57:87:10:08:d8:
91:f1:56:a9:97:ee:65:0e:ac:e2:b2:56:30:3d:90:45:8f:4d:
49:ff:07:0a:0a:43:5b:e0:f1:97:72:e2:b6:05:06:a8:37:8f:
33:9b:90:5b:f9:71:16:83:4d:f0:c9:d7:95:07:a8:b3:a4:bc:
c2:7a:1c:fb:21:39:8d:95:76:b9:ae:89:02:1d:c8:8f:b3:92:
cb:54:d3:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 04:04:48 2024 by rpki-client on console-fra.rpki-client.org