Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.cer
File: Lvh2pmTl2LbN4BzwhBDbrZa8SZg.cer (raw, json)
Hash identifier: tLG0VNfndF/rTw13CwsfHa1sAbh/0FUUXzaEmcLncRM=
Subject key identifier: 2E:F8:76:A6:64:E5:D8:B6:CD:E0:1C:F0:84:10:DB:AD:96:BC:49:98
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A4A4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 23 May 2023 06:09:27 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 149818
IP: 103.187.10.0/23
IP: 2400:7860::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 06:28:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107684 (0x1a4a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 23 06:09:27 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A91CDF83/serialNumber=2EF876A664E5D8B6CDE01CF08410DBAD96BC4998
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:70:27:02:a1:9d:93:2c:9c:34:75:d9:14:68:
cf:33:b9:c2:01:c1:98:e3:4d:ba:9b:9f:2e:81:9b:
76:84:c3:81:92:07:6c:80:42:6d:1f:25:0f:cf:9b:
4e:ff:ea:31:bc:25:74:89:44:86:fb:8c:ef:7c:ea:
0a:6d:c2:a1:e1:5f:06:d6:22:fa:cc:ab:68:7b:36:
b6:aa:22:13:0e:56:51:2c:38:7a:ac:f8:12:d4:44:
cb:8a:88:82:c7:68:34:3c:08:2b:78:c6:01:1b:08:
1d:00:4e:51:5e:75:6f:4e:0e:0d:a0:cb:3c:9e:64:
8f:9f:b7:8e:3c:33:15:ce:0e:f9:f1:a2:7b:59:6e:
fd:c1:04:20:c7:dd:1c:e8:c6:74:70:dc:0f:71:93:
1e:f1:bf:3e:88:82:50:f0:6f:87:e4:0b:a0:22:e8:
f1:49:a9:4e:b9:a9:96:f5:c7:73:9e:d4:c6:d0:a1:
da:3e:c8:98:f6:a4:86:c0:32:9f:61:84:26:45:0f:
88:14:16:56:4a:89:d5:c4:09:91:80:af:ef:66:b9:
4e:ed:dd:dc:b4:d8:6e:eb:20:1d:60:98:b4:0a:1f:
cf:1a:26:30:b8:ef:05:2a:27:88:4d:21:64:c3:cd:
17:37:fe:51:33:83:08:fb:d3:08:bf:98:62:41:be:
b5:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:F8:76:A6:64:E5:D8:B6:CD:E0:1C:F0:84:10:DB:AD:96:BC:49:98
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149818
sbgp-ipAddrBlock: critical
IPv4:
103.187.10.0/23
IPv6:
2400:7860::/32
Signature Algorithm: sha256WithRSAEncryption
92:be:bb:dc:fb:95:27:d7:65:da:8e:61:53:e5:cb:10:90:e8:
26:4a:82:7e:87:72:ab:cb:34:91:c5:ec:27:66:9a:a6:0e:9a:
b8:12:bc:1d:09:e9:21:d9:47:95:91:d2:53:7a:b1:92:32:82:
34:5d:ef:5f:1f:7a:7d:c0:e8:b3:5c:a7:68:b3:2b:e3:b9:99:
db:c2:0e:d3:02:d8:7c:03:85:73:a3:5b:da:2d:e9:f0:79:c4:
9e:ea:9b:99:17:69:82:b7:ba:7d:f7:d8:b0:11:63:eb:1f:31:
e9:78:4b:e7:ca:96:3d:8d:0f:f4:18:06:ed:ba:cd:da:39:ae:
54:5c:47:a5:1b:da:eb:0e:f5:c5:3c:c6:76:63:7e:92:da:1b:
f2:bf:dc:83:41:f3:5f:6a:23:3b:14:eb:99:72:74:7b:f2:e1:
5f:a7:bc:d8:b9:2b:be:91:0b:93:97:6e:fd:d4:85:17:0d:5f:
74:ee:35:66:4c:d0:7c:40:be:89:f2:93:cf:0c:a0:6b:e4:2f:
5d:9f:15:04:32:2d:10:28:31:93:f9:53:5f:1b:c0:d2:66:00:
28:a4:fd:e6:39:e0:ad:66:61:36:b7:52:6b:7c:9d:48:33:72:
02:23:91:fe:34:44:41:e9:8f:39:1e:32:9e:52:c3:a0:6c:1f:
cd:ac:72:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 07:18:50 2024 by rpki-client on console-fra.rpki-client.org