Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M23efsMoBJmWQ3HK7iYg-_ys3Jg.cer
File: M23efsMoBJmWQ3HK7iYg-_ys3Jg.cer (raw, json)
Hash identifier: rrrQP4Ig/21PaZ2LGTC0f2ekvQ1/ENSoOO4sm7T8Dho=
Subject key identifier: 33:6D:DE:7E:C3:28:04:99:96:43:71:CA:EE:26:20:FB:FC:AC:DC:98
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EA1D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 05 Apr 2024 03:22:56 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 147295
IP: 203.170.90.0/23
IP: 2001:df3:a2c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 04:27:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125469 (0x1ea1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 5 03:22:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91DEF41/serialNumber=336DDE7EC3280499964371CAEE2620FBFCACDC98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:6e:1a:39:27:48:97:1b:33:5b:c3:c7:86:58:
5d:8e:d7:32:7b:18:f8:dc:ac:8b:ab:3e:62:ce:51:
1f:c5:77:9d:6d:de:15:ea:e7:51:95:a7:d1:e3:00:
e0:ae:8c:9a:53:b0:b7:b9:af:b3:2f:16:09:67:8c:
c8:40:7d:34:d9:de:ab:a5:a9:f7:9d:42:7b:c4:0e:
c7:de:8d:da:e4:3f:f3:0c:4c:6e:ea:69:69:74:00:
90:4c:0b:17:a2:9b:f2:f6:81:05:49:0d:b4:71:c4:
b8:cf:1d:c4:ef:5f:10:f8:c5:ba:31:a1:73:31:55:
20:e4:75:06:d8:d7:ba:8a:a4:67:e5:de:0c:4e:91:
49:b1:5e:78:12:1d:21:6b:3e:01:04:e2:c4:a7:fa:
aa:d8:60:14:da:b5:0f:40:df:bf:f3:79:df:b3:1b:
7d:5f:2d:f7:59:57:cb:fc:d1:54:ea:ce:1c:59:7a:
50:fa:dc:fc:65:c0:21:38:32:6c:10:75:9e:cd:70:
2d:25:e9:95:6c:24:67:4b:40:8e:84:bb:20:14:97:
95:54:27:40:db:76:cc:db:e2:dd:33:ae:03:5c:f7:
e7:06:d1:14:94:5a:39:2f:f8:4c:be:21:f6:25:73:
85:12:b8:45:ec:fc:2f:3b:98:73:71:0a:6c:33:f9:
f8:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:6D:DE:7E:C3:28:04:99:96:43:71:CA:EE:26:20:FB:FC:AC:DC:98
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
147295
sbgp-ipAddrBlock: critical
IPv4:
203.170.90.0/23
IPv6:
2001:df3:a2c0::/48
Signature Algorithm: sha256WithRSAEncryption
38:74:34:3c:d5:2d:a8:19:2e:4b:29:28:98:ba:91:c5:b5:66:
d7:75:7a:42:cd:b0:b8:28:93:e0:e7:6b:27:4b:3a:5c:8c:f2:
6a:e2:1f:f3:9b:3a:9a:07:7d:2c:c7:6a:fe:92:bd:93:33:5b:
de:39:8b:67:61:27:3d:70:5a:0a:a9:09:a7:7a:b2:9c:bd:81:
c5:17:0a:f5:19:02:ac:dc:3d:78:1b:ab:4d:fc:79:1f:c3:11:
84:9d:d4:4d:47:07:d2:e8:70:1b:2a:dc:2b:6c:2f:07:90:80:
fa:d0:36:0e:f5:39:a7:86:7a:98:3f:65:42:a3:66:40:c6:26:
28:14:d7:9d:a9:01:5d:4e:cc:d9:05:8a:46:7e:69:9a:75:86:
04:36:41:de:d0:02:a6:ec:5b:24:68:76:a4:05:c9:5c:79:d1:
58:b3:f5:73:60:f1:9e:b1:e4:9b:cf:f6:3f:64:5a:8b:e0:da:
91:bb:76:c0:c1:2d:8c:0a:d1:a7:9b:3f:0b:09:48:d1:11:33:
5f:39:7d:f8:3c:70:2d:4d:1b:3c:8c:dc:a0:6a:49:e8:2d:ee:
55:61:ed:24:e1:4f:70:49:f3:7b:0b:4f:a9:b0:4f:b3:f8:fc:
56:9b:6b:58:36:c9:04:c7:a8:ba:af:c3:93:89:35:0a:cc:58:
f7:35:17:e8
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 2 05:27:46 2024 by rpki-client on console-fra.rpki-client.org