Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N6CiG7WFEffv59KwRIPtgLSgIzo.cer
File: N6CiG7WFEffv59KwRIPtgLSgIzo.cer (raw, json)
Hash identifier: thv7gbxs+ZzdNob5NzZO8kVa5OKHgIu74ShDPtsKmNA=
Subject key identifier: 37:A0:A2:1B:B5:85:11:F7:EF:E7:D2:B0:44:83:ED:80:B4:A0:23:3A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E6E6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C456F/D33FC82AA08411EC94AD2A37C4F9AE02/N6CiG7WFEffv59KwRIPtgLSgIzo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C456F/D33FC82AA08411EC94AD2A37C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 27 Mar 2024 20:44:06 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 149643
IP: 103.183.106.0/23
IP: 2400:6260::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124646 (0x1e6e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 27 20:44:06 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A91C456F/serialNumber=37A0A21BB58511F7EFE7D2B04483ED80B4A0233A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:9a:02:92:2f:fe:64:e0:29:ef:c2:7e:8e:8b:
03:c6:d3:81:37:fd:7e:b4:f0:d0:74:11:f1:34:15:
69:2d:97:db:c6:ed:b7:57:4b:77:b2:ba:52:05:77:
54:21:4b:89:01:8a:d3:d3:db:18:89:13:cc:7e:fe:
bb:15:a2:82:c7:95:bf:77:36:cd:51:8e:27:6a:9d:
ec:d0:eb:e3:e5:93:fd:64:d5:7c:b4:16:8b:f9:ab:
30:ad:ca:04:89:45:3b:3a:d5:0c:d5:02:0f:97:cb:
ab:98:86:40:38:69:48:26:44:7d:ad:24:a9:83:74:
c7:ab:6d:bb:56:04:85:77:6f:69:83:42:07:0c:b3:
ba:06:95:f8:d3:d2:4e:5b:a5:1e:67:8a:79:16:5a:
c7:5d:12:ee:e1:94:01:1a:4a:0f:3c:34:ac:8d:60:
ac:53:92:40:7b:1c:ca:06:10:76:83:bd:bb:72:32:
55:6b:97:ea:ea:68:36:9e:7d:69:fc:c2:3b:14:f7:
c6:5f:54:a2:b5:3f:a0:a2:7f:65:e3:8d:71:42:e1:
4a:a5:96:82:c2:41:b8:58:47:89:4c:bb:90:7e:f1:
7e:c5:fa:39:7d:34:a1:95:c9:b6:00:ca:71:60:77:
ab:2d:53:b1:90:2d:f2:88:d3:9d:87:bb:27:78:7c:
70:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:A0:A2:1B:B5:85:11:F7:EF:E7:D2:B0:44:83:ED:80:B4:A0:23:3A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C456F/D33FC82AA08411EC94AD2A37C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C456F/D33FC82AA08411EC94AD2A37C4F9AE02/N6CiG7WFEffv59KwRIPtgLSgIzo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149643
sbgp-ipAddrBlock: critical
IPv4:
103.183.106.0/23
IPv6:
2400:6260::/32
Signature Algorithm: sha256WithRSAEncryption
2c:c3:07:8c:ff:74:6a:d9:4e:7e:17:c3:51:e3:56:b4:ff:5d:
03:b2:4a:31:cc:a4:7e:d1:08:43:7a:eb:f9:5f:3d:a0:06:db:
32:9a:2e:8f:c7:92:1a:55:43:01:6c:52:7a:1f:56:47:5c:56:
34:d9:a1:c9:63:b2:31:d5:79:8f:ac:c3:2e:e8:42:90:4a:a9:
a4:89:77:e9:f6:24:3b:65:d7:53:7b:b5:1e:88:13:9e:6c:3b:
9c:67:ef:cc:93:8c:8d:52:23:6a:76:bb:b7:8b:ff:40:43:64:
19:8a:09:99:e3:aa:fb:2a:37:ec:5c:73:af:94:1d:31:53:17:
98:cb:02:c9:fd:67:d1:2b:90:ef:40:92:b9:aa:17:f1:59:25:
f8:4c:f0:6e:f9:0e:c6:44:a2:77:81:6b:c3:fe:5c:05:5a:0c:
35:05:af:a4:d1:74:47:61:9e:da:30:d4:a7:42:6f:d7:5b:8f:
bf:98:2e:61:bf:57:a6:d9:4b:a2:6e:e0:d5:4b:18:08:1b:46:
18:75:6c:91:90:5b:e9:b0:52:cb:64:40:4a:e5:ef:b3:6e:95:
04:56:4c:36:dd:8d:d6:ee:72:25:0f:4e:30:61:b4:9a:c2:ff:
bf:c4:71:1d:c0:4a:26:83:83:cd:64:65:0b:09:c6:73:e2:10:
0b:5b:4b:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:21 2024 by rpki-client on console-fra.rpki-client.org