Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M50SzjfjomH20PRT5ZlQqEvI_qI.cer
File: M50SzjfjomH20PRT5ZlQqEvI_qI.cer (raw, json)
Hash identifier: gKoKsobtJ44IZK62R14VJm1yUh+++OkTFxIZg1QqFM4=
Subject key identifier: 33:9D:12:CE:37:E3:A2:61:F6:D0:F4:53:E5:99:50:A8:4B:C8:FE:A2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D84B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912D20C/D40EFF8EA85111EDBB32E749C4F9AE02/M50SzjfjomH20PRT5ZlQqEvI_qI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912D20C/D40EFF8EA85111EDBB32E749C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 14 Jan 2024 13:12:48 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 150718
AS: 150753
IP: 103.67.22.0/23
IP: 2001:df1:d0c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 02:50:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120907 (0x1d84b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 14 13:12:48 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A912D20C/serialNumber=339D12CE37E3A261F6D0F453E59950A84BC8FEA2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:fb:98:a0:8f:08:15:53:89:42:66:25:c7:6e:
05:45:60:d2:d6:f6:15:ab:9a:cf:51:1c:5f:f8:48:
a2:ba:95:0a:8e:c7:75:0c:4e:f6:47:be:7d:0e:53:
85:14:6f:08:e8:72:d1:5c:9f:54:8c:90:3c:f8:fd:
13:60:f1:af:ec:85:89:c2:8b:f3:11:e1:ad:59:bc:
93:37:5c:ec:18:4b:57:a6:2e:80:36:19:a7:b0:22:
54:7d:4c:1b:aa:f4:24:7a:52:42:27:f1:ef:2f:4a:
e6:91:82:4e:b9:c1:44:2d:0e:e1:65:ef:11:62:6f:
19:0d:fd:ba:e4:04:a0:7e:30:a7:90:b0:75:d4:d8:
aa:21:3f:9a:5f:b9:f6:63:01:5f:d3:21:46:7c:d9:
e3:b5:d8:96:19:0c:4c:23:26:bd:cc:90:c5:1f:76:
2e:fb:0b:24:d9:2a:24:20:65:a3:8d:9f:d4:d9:69:
26:37:aa:b1:dc:ee:40:dd:6e:03:06:4d:24:2a:1f:
f4:07:fa:39:45:ef:6d:bb:73:70:12:81:7f:1e:c3:
43:a6:3a:d8:19:2f:50:e1:1b:aa:fd:9b:a2:91:8b:
09:d6:58:07:b6:2e:8d:9f:da:d3:f6:bd:ee:60:57:
e6:4e:6c:36:91:22:e5:f6:fa:0f:75:0c:4c:d0:36:
73:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:9D:12:CE:37:E3:A2:61:F6:D0:F4:53:E5:99:50:A8:4B:C8:FE:A2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912D20C/D40EFF8EA85111EDBB32E749C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912D20C/D40EFF8EA85111EDBB32E749C4F9AE02/M50SzjfjomH20PRT5ZlQqEvI_qI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150718
150753
sbgp-ipAddrBlock: critical
IPv4:
103.67.22.0/23
IPv6:
2001:df1:d0c0::/48
Signature Algorithm: sha256WithRSAEncryption
45:a0:bb:c0:70:98:2c:3a:ae:b2:59:7d:99:54:d1:83:0e:ac:
aa:de:dd:53:e3:78:33:a9:09:b0:bd:84:23:82:de:7b:e9:29:
26:a7:84:1b:f9:ab:7d:3c:5d:26:4b:00:5e:58:6d:04:a3:17:
ab:9f:a4:4d:ea:9e:c7:f4:43:7d:2f:a7:b7:3e:97:e4:5c:e0:
5b:a9:96:e8:e9:89:7c:0b:11:fb:31:ea:8e:4b:83:f6:0f:5b:
6f:e1:c1:d3:dd:8c:d9:91:9a:a4:df:be:c8:cc:75:11:b1:27:
42:bc:ff:90:0e:90:ae:ac:1f:5a:b2:27:84:33:db:f4:dd:0c:
ba:61:62:4f:3c:f0:e2:6e:e2:e7:5f:3d:75:99:da:47:2e:f4:
46:36:f1:f3:a6:40:6c:49:a5:09:8e:1b:fe:af:76:9e:3f:b0:
f5:4c:20:b8:88:23:9b:c7:ef:4c:33:d3:73:97:3c:b1:1a:8e:
a3:93:35:67:31:8c:1e:c8:f9:05:69:bd:5e:c0:d6:68:ae:13:
7e:e8:66:fb:1d:c4:2f:aa:8b:52:44:64:d0:34:20:03:fa:36:
33:22:1c:f4:47:98:b1:40:c7:9f:8d:b4:6c:84:53:4b:fb:7f:
68:b1:78:74:2d:44:ac:ed:6e:51:02:43:97:fb:78:67:08:3d:
2d:2e:47:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 03:51:29 2024 by rpki-client on console-ams.rpki-client.org