Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IIUPxwwl_bFV037LDsOWLGtH_K0.cer
File: IIUPxwwl_bFV037LDsOWLGtH_K0.cer (raw, json)
Hash identifier: 17bRGCm3XQBeX/yZwuPUjJK4NKjaG03wvinPBS/KRX4=
Subject key identifier: 20:85:0F:C7:0C:25:FD:B1:55:D3:7E:CB:0E:C3:96:2C:6B:47:FC:AD
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E605
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 22 Mar 2024 19:10:50 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 56092
IP: 103.10.40.0/22
IP: 2401:46c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124421 (0x1e605)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 22 19:10:50 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A919D545/serialNumber=20850FC70C25FDB155D37ECB0EC3962C6B47FCAD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:35:f9:88:a2:25:fd:e1:55:2b:1c:bf:30:9e:
fd:ea:30:e2:4f:f0:82:a2:83:88:5d:05:05:b2:81:
87:1d:1c:8f:0e:62:46:bb:2a:63:65:8c:1c:29:fe:
6e:0e:69:b6:99:30:2d:e6:36:16:fd:a8:92:2f:53:
f9:a5:65:58:69:72:19:7e:5b:4d:e1:cb:d4:b3:26:
5c:ca:96:44:31:68:74:91:f9:08:b4:16:ed:fd:91:
01:53:a7:e9:a3:cc:e8:53:d6:52:63:da:89:ec:74:
e2:7b:9a:70:b7:30:b2:95:f6:86:35:c3:7c:54:11:
63:6b:00:63:7e:33:5a:89:c6:64:fa:7e:c5:d0:19:
2d:a2:8d:b1:0a:68:8c:40:ac:ee:98:7b:f3:ed:9d:
95:a5:26:ee:e3:35:2c:bb:a8:4e:30:b4:40:6a:82:
9b:d3:f7:22:2b:e1:e7:54:48:ee:41:ad:90:1f:b5:
19:b3:82:7f:09:b3:5a:cb:f6:b5:b8:d3:e9:0b:d1:
c3:f9:62:cb:f0:93:02:2c:d5:18:d0:8b:16:9e:f3:
b7:a3:a9:41:60:c2:d2:20:f4:ad:6f:5b:f4:d1:ed:
03:6d:c7:7c:77:d4:4a:4a:9d:a8:0f:3c:80:6d:5f:
38:9b:c6:6e:f1:9c:8b:47:ad:1d:b8:13:4b:48:80:
a6:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:85:0F:C7:0C:25:FD:B1:55:D3:7E:CB:0E:C3:96:2C:6B:47:FC:AD
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56092
sbgp-ipAddrBlock: critical
IPv4:
103.10.40.0/22
IPv6:
2401:46c0::/32
Signature Algorithm: sha256WithRSAEncryption
ae:7b:ca:bc:47:39:74:02:cd:8a:4c:16:db:02:2c:d3:61:f1:
81:e1:13:d4:fa:35:82:c3:b3:73:e4:37:3c:87:46:0c:22:8b:
fd:2a:45:20:cb:b7:5c:0c:80:3b:e9:64:58:c1:20:f5:27:72:
7c:26:44:f3:ab:84:24:8a:3b:65:4b:49:b6:60:00:e6:c9:17:
ac:87:d1:10:ba:cc:c3:48:ba:ef:d1:1c:6d:50:69:02:2d:26:
6d:cf:e6:31:ca:f6:fa:5f:b6:4c:2e:59:ea:32:0f:66:09:20:
65:da:d5:49:c9:e1:c6:70:79:6f:aa:e2:c2:c3:ab:5c:f9:44:
ba:24:7a:5e:29:c0:10:7c:48:0f:de:a8:31:64:d9:4b:3d:e5:
6d:98:71:a3:f1:7e:1d:22:82:2c:72:5b:89:bb:d8:eb:9f:71:
ce:63:44:b2:3a:26:68:c1:d4:ea:41:a2:c2:73:95:90:83:ee:
9a:73:dd:ee:ec:69:37:8e:62:58:73:ab:31:ee:e3:d2:58:c2:
b9:24:7e:33:61:b3:8b:9b:e4:49:c1:23:32:97:6a:d0:e7:7e:
d5:90:4a:3a:2a:62:7a:a3:71:36:6e:db:1c:cd:68:43:1f:5b:
db:4a:0e:db:18:00:e1:b7:f0:b3:8d:64:31:fa:62:f4:69:51:
ba:d4:b1:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:18 2024 by rpki-client on console-fra.rpki-client.org