Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NwOTvGRg5S0PXgIdVS9YF0M-suc.cer
File: NwOTvGRg5S0PXgIdVS9YF0M-suc.cer (raw, json)
Hash identifier: cwo7yq7equv7OsJakYY/XfEurHjcbQbG9uawWmwOa3Y=
Subject key identifier: 37:03:93:BC:64:60:E5:2D:0F:5E:02:1D:55:2F:58:17:43:3E:B2:E7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01AAFF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918D5CF/98D0B4F87B1A11E88F3D0C14C4F9AE02/NwOTvGRg5S0PXgIdVS9YF0M-suc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918D5CF/98D0B4F87B1A11E88F3D0C14C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 20 Jun 2023 16:41:12 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 137928
IP: 103.115.98.0/24
IP: 2001:df5:2300::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109311 (0x1aaff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 20 16:41:12 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A918D5CF/serialNumber=370393BC6460E52D0F5E021D552F5817433EB2E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:1e:95:67:2d:9b:cd:f9:c0:2d:88:2b:35:67:
53:19:60:c4:bd:36:56:a5:f1:b3:d7:82:47:ba:4f:
36:fb:b7:c3:63:9b:35:c2:58:9b:af:c9:42:ae:bd:
7a:4c:85:f2:59:a9:db:4b:b1:9e:58:fa:b3:6f:2f:
67:77:e2:54:6e:33:c1:36:b1:23:76:e4:5b:32:2a:
96:b3:11:13:e7:a7:60:fc:47:42:17:23:da:f5:5f:
57:d9:a2:41:c1:ab:41:6b:29:9a:e8:d5:27:ac:c4:
a4:8f:7b:6a:b3:79:bc:45:e3:61:96:64:5a:00:14:
52:06:cf:26:7c:56:4e:87:16:26:8b:11:c7:88:d7:
4f:9d:44:55:b8:02:02:88:84:d2:34:ca:69:6a:b6:
42:08:99:27:42:bb:a2:6f:28:41:f1:ef:84:72:9f:
ee:73:01:74:9a:84:2e:6f:18:f2:82:86:02:16:d0:
c0:58:83:45:dc:7f:1f:b8:36:ab:a2:37:0d:24:bd:
71:54:6e:1d:65:fb:76:fa:fd:df:ec:29:26:2d:5e:
c2:73:e9:8d:21:89:03:65:c4:d1:69:00:7e:f1:21:
9b:00:7b:4b:5a:16:56:95:19:5a:dd:5b:5c:ec:0f:
56:b1:15:6f:f3:00:ae:90:4a:3b:85:df:79:0e:03:
e3:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:03:93:BC:64:60:E5:2D:0F:5E:02:1D:55:2F:58:17:43:3E:B2:E7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918D5CF/98D0B4F87B1A11E88F3D0C14C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918D5CF/98D0B4F87B1A11E88F3D0C14C4F9AE02/NwOTvGRg5S0PXgIdVS9YF0M-suc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137928
sbgp-ipAddrBlock: critical
IPv4:
103.115.98.0/24
IPv6:
2001:df5:2300::/48
Signature Algorithm: sha256WithRSAEncryption
4b:75:67:e4:56:2c:07:21:e8:96:a8:c0:c8:27:d6:19:87:ff:
e3:21:7f:f4:1d:44:d9:30:6d:5f:ee:a2:1e:9b:b5:a6:62:17:
65:7c:8e:b0:94:3d:68:12:1f:83:7d:4c:c2:3a:c1:22:cc:b8:
de:4f:39:c4:51:90:1b:75:7d:f4:a1:95:21:95:37:c6:86:9c:
8f:6e:cc:38:9e:7c:23:3d:75:fd:cf:5c:90:d4:56:13:bb:32:
2f:e6:c0:f2:41:96:b0:51:e2:38:ba:95:bc:01:66:76:a0:14:
7e:28:ef:db:bf:e7:bd:da:ca:52:3f:b9:cb:72:5a:8c:4e:27:
04:28:6f:43:e5:bb:d1:73:70:69:1e:2e:cf:9d:6f:7f:db:5b:
a1:af:92:31:27:a5:55:d9:61:95:87:4d:d1:89:61:92:b4:13:
00:27:85:f0:4d:ce:37:e9:ab:97:2f:49:2f:01:5d:b4:fb:6e:
f6:1b:15:be:d2:ba:56:bf:6e:b4:5d:64:6d:23:30:af:ef:bf:
76:30:99:4e:24:81:2b:a2:fb:e0:51:69:9c:a3:ac:63:9c:fa:
11:aa:53:2e:e3:8a:cb:c8:b1:a0:ed:0a:de:e6:3f:78:ce:c7:
0f:cc:95:82:87:e7:78:73:17:20:b3:a4:46:c0:44:bc:c6:0e:
30:f2:b5:be
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Apr 24 03:22:27 2024 by rpki-client on console-ams.rpki-client.org