Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/InkscMmJR76K9PSj51Wu3nlZ0ng.cer
File: InkscMmJR76K9PSj51Wu3nlZ0ng.cer (raw, json)
Hash identifier: FIFFtDY6KvT+X6dZnK6+xjirW9M/qzgwicOkWa6yUCo=
Subject key identifier: 22:79:2C:70:C9:89:47:BE:8A:F4:F4:A3:E7:55:AE:DE:79:59:D2:78
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EA2C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9166708/FA526B50593511E98B54BC43C4F9AE02/InkscMmJR76K9PSj51Wu3nlZ0ng.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9166708/FA526B50593511E98B54BC43C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 05 Apr 2024 15:52:44 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 132232
IP: 103.7.252.0/22
IP: 2403:8700::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125484 (0x1ea2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 5 15:52:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A9166708/serialNumber=22792C70C98947BE8AF4F4A3E755AEDE7959D278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d1:97:ab:7a:54:8a:14:e0:d2:8a:e5:48:94:
00:3a:1b:21:fb:5e:01:19:fb:6a:4c:02:b7:be:76:
31:8d:b3:88:f0:e6:38:a7:93:b6:78:07:d1:33:d9:
e2:16:d3:37:d7:91:a3:c2:14:10:20:01:db:a2:c2:
2f:53:b5:50:62:ae:48:5c:af:0c:25:5a:de:60:6a:
f0:47:c5:22:49:69:f6:cf:f3:49:91:32:3f:9c:d2:
5d:bb:9f:d3:93:50:b4:53:f7:3d:c6:47:8d:95:ca:
ff:a4:bc:31:f9:22:b7:9f:5a:69:c1:dd:d8:46:fe:
e5:92:c8:81:5d:be:ad:e3:bb:94:ae:1b:52:8e:54:
d9:50:53:44:a8:89:5c:52:14:28:32:54:5b:40:1a:
ca:d1:4f:e0:4e:72:ab:2e:14:a1:5a:d5:1b:07:cd:
e5:cf:e8:a5:64:2d:78:a5:0f:64:c5:02:08:80:3b:
aa:90:7a:90:bd:a4:eb:09:eb:4c:51:a9:c2:2d:30:
10:b7:08:38:50:ba:7a:2c:0f:d4:f0:62:4b:a3:78:
c3:6e:d2:ec:83:1b:81:40:26:c3:02:51:c1:d5:94:
53:c7:c7:d4:52:3d:75:a6:34:28:8e:2b:51:4d:2e:
94:98:3c:7d:24:53:e5:db:89:e0:7b:62:40:fc:69:
30:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:79:2C:70:C9:89:47:BE:8A:F4:F4:A3:E7:55:AE:DE:79:59:D2:78
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9166708/FA526B50593511E98B54BC43C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9166708/FA526B50593511E98B54BC43C4F9AE02/InkscMmJR76K9PSj51Wu3nlZ0ng.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132232
sbgp-ipAddrBlock: critical
IPv4:
103.7.252.0/22
IPv6:
2403:8700::/32
Signature Algorithm: sha256WithRSAEncryption
0a:06:8a:90:c0:f9:50:dc:d0:b7:02:a7:9d:d8:00:62:61:8a:
c5:6d:8e:2c:17:94:2f:4d:d4:d5:06:33:38:2e:67:23:ed:a3:
69:b6:b1:0e:a7:8e:65:82:d0:dc:38:e6:7a:1d:ce:fc:ab:d3:
0a:35:b6:1a:55:59:92:ff:10:cb:85:83:12:88:65:17:76:9f:
f0:50:3d:ec:87:6c:2e:79:67:db:31:32:b1:22:c0:57:0a:60:
62:c1:dd:3a:c1:de:18:61:2f:cb:d9:7c:ff:76:e3:1a:1c:7a:
54:b6:d8:77:32:a5:a2:1b:da:5a:89:15:4a:42:19:79:79:77:
2c:87:d5:85:57:bd:63:e1:0f:32:e4:82:40:8b:d9:b7:36:b5:
2f:45:e5:b9:00:5a:40:7f:1a:02:42:00:5a:1e:a7:87:34:9f:
a1:9e:d3:c1:47:b6:23:34:90:47:f9:d7:8e:5a:a2:d0:56:9a:
02:74:80:85:f8:1b:51:40:cf:7d:d6:38:1c:e7:68:e9:f0:c4:
3b:23:5a:20:ba:c1:03:77:a4:32:ea:9d:6f:d4:d4:d7:14:d0:
83:8d:76:7e:5c:1e:e3:dd:78:32:9d:e6:73:7a:3e:a1:3d:cf:
3c:93:80:e2:02:cb:29:d1:de:e6:08:14:dd:ef:aa:9f:f9:cd:
28:69:e2:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:18 2024 by rpki-client on console-fra.rpki-client.org