Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhmPmhfws17bhJVg-1-YUBw8nK8.cer
File: GhmPmhfws17bhJVg-1-YUBw8nK8.cer (raw, json)
Hash identifier: xyI05aqpClhC+q1tnyy2go7IEd7SmMes6LWk2w6kC9Q=
Subject key identifier: 1A:19:8F:9A:17:F0:B3:5E:DB:84:95:60:FB:5F:98:50:1C:3C:9C:AF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A0EB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919B300/E1A6CB14506111E9ADB6FA85C4F9AE02/GhmPmhfws17bhJVg-1-YUBw8nK8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919B300/E1A6CB14506111E9ADB6FA85C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 02 May 2023 18:58:15 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 139312
IP: 103.221.60.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 03:16:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106731 (0x1a0eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 2 18:58:15 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A919B300/serialNumber=1A198F9A17F0B35EDB849560FB5F98501C3C9CAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:11:20:1b:ea:9d:f5:a1:1c:74:c2:f3:53:eb:
a1:38:07:78:8f:e0:08:99:0f:04:4e:c3:f2:47:3d:
71:7c:7d:8a:88:9c:c1:4f:14:91:0a:00:11:03:a9:
7f:4f:bd:44:af:91:c4:67:9e:4f:91:6e:87:d7:fa:
65:bd:49:fc:6e:04:e9:9c:72:5d:fd:56:07:54:1b:
10:e7:08:44:cc:19:89:40:1c:bf:74:da:4d:6e:b8:
f5:f8:00:3d:d6:91:8d:d7:23:cf:c8:51:da:9e:09:
a9:b5:7c:20:7a:70:d3:7c:66:bc:66:7e:a0:a1:32:
da:9b:e5:93:b6:b9:d4:9b:3a:1c:a7:8c:a4:b0:70:
49:b0:0a:e8:ff:30:30:f0:f9:c4:d7:4b:27:d0:ff:
00:bd:47:9f:19:c7:0e:ae:a8:0b:d8:30:3d:54:39:
d5:7b:b3:46:4c:f3:ec:de:22:44:02:b9:98:70:11:
20:17:90:e0:91:8e:76:57:4c:d3:c7:7b:e1:7e:4a:
f2:d1:ca:9d:24:dd:d5:dc:9d:52:4b:0b:5c:01:5f:
b4:20:6f:62:73:61:a7:da:dc:49:e1:53:8e:86:9a:
ab:2d:cd:39:ac:3c:dc:32:1b:4b:10:48:e2:80:d8:
c6:ad:3e:2f:43:97:e8:1f:4b:51:ad:ca:06:d1:63:
0b:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:19:8F:9A:17:F0:B3:5E:DB:84:95:60:FB:5F:98:50:1C:3C:9C:AF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919B300/E1A6CB14506111E9ADB6FA85C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919B300/E1A6CB14506111E9ADB6FA85C4F9AE02/GhmPmhfws17bhJVg-1-YUBw8nK8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139312
sbgp-ipAddrBlock: critical
IPv4:
103.221.60.0/22
Signature Algorithm: sha256WithRSAEncryption
a9:4b:2b:e2:37:35:05:61:04:79:83:e8:5b:d6:5a:c4:30:c2:
e9:21:59:ca:69:7b:c9:a3:a1:a6:a7:97:4d:87:9f:19:2a:96:
e1:f9:01:c9:bc:fa:63:af:4e:e6:47:a7:5a:8a:79:f1:98:8e:
85:25:23:b2:6d:39:90:41:df:e4:46:7d:8a:0e:d8:3c:44:22:
1a:09:75:a4:fc:a6:02:6e:1e:fd:99:42:40:aa:85:34:5c:81:
21:51:7a:bc:e2:5a:7e:9f:7c:f4:dc:45:e9:75:a6:ad:67:3a:
cc:1d:38:9e:14:1d:c8:94:00:a4:c4:e1:f0:2c:21:4d:e8:11:
36:e2:87:c8:2d:66:63:e4:aa:04:67:c4:7d:97:f4:91:6a:e5:
a3:da:c0:32:50:5d:43:cf:e8:80:b6:dd:15:fd:e7:56:16:50:
8d:97:58:70:ce:b4:c6:56:1b:2a:89:08:ed:24:cc:7d:ee:9e:
59:4d:3a:d1:7f:9f:50:0b:6b:dc:5d:19:d8:e8:da:ad:68:dc:
95:c0:63:c0:f8:09:04:57:73:21:e4:20:49:9d:23:02:ba:ba:
eb:7f:f2:ae:da:5c:49:58:8b:f0:72:48:d3:c1:7d:2a:88:8c:
50:71:56:d0:cd:23:d9:2a:d3:46:f5:03:70:bf:b6:00:14:0a:
bd:a4:6b:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 03:53:23 2024 by rpki-client on console-fra.rpki-client.org