Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer
File: OTVm9EF4bZWNinkRjo71b8hy5cU.cer (raw, json)
Hash identifier: j5qcSGCn+mvgFfBEe+S2bTzusNaZ3+AZsnvot5PZyQE=
Subject key identifier: 39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A4B8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 23 May 2023 15:35:36 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 56186
IP: 43.245.240.0/22
IP: 103.13.8.0/22
IP: 202.3.80.0/20
IP: 202.92.216.0/21
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 11:34:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107704 (0x1a4b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 23 15:35:36 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A91673ED/serialNumber=393566F441786D958D8A79118E8EF56FC872E5C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:85:f6:8f:1c:cd:19:eb:58:33:7f:3e:5e:57:
bc:5b:60:51:12:31:6f:47:e7:93:ca:74:ca:95:3d:
44:8b:4f:4a:c6:9a:2f:a5:d7:e3:70:fc:77:51:1f:
61:0a:a2:71:e2:ad:87:58:40:e4:f3:db:62:58:70:
8a:be:37:71:a3:13:3a:c8:b4:c0:1a:ec:75:a4:04:
91:16:a8:03:29:9e:68:11:08:b9:98:3a:89:0e:87:
de:90:ca:ce:70:f1:b2:0f:b0:dc:f4:28:48:10:73:
d5:1d:a5:7b:2b:a4:ce:c1:44:d0:d1:28:e6:9f:54:
f4:c2:ff:0e:ae:94:27:8d:ee:4b:39:9e:8b:cc:da:
62:f8:5a:44:a3:18:6f:3f:3c:07:f6:42:c7:2c:70:
35:4b:30:43:ee:09:ff:23:79:90:b3:ef:29:fd:8f:
57:29:0f:f2:ac:19:04:ca:7b:17:9e:36:08:41:b8:
47:1b:eb:16:48:c4:7e:bc:b4:25:57:0b:29:2c:ce:
0a:5d:f0:55:c1:a1:b7:6c:70:f9:7c:23:78:c4:b1:
f3:1e:73:18:31:5e:eb:09:97:69:13:84:5a:d8:e5:
1b:6c:e5:5b:02:fe:76:ab:87:1a:a3:7a:69:65:ac:
c9:45:60:99:e4:6d:d5:29:a2:a8:78:8c:67:bf:c9:
b9:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56186
sbgp-ipAddrBlock: critical
IPv4:
43.245.240.0/22
103.13.8.0/22
202.3.80.0/20
202.92.216.0/21
Signature Algorithm: sha256WithRSAEncryption
9e:25:12:3a:ad:d7:a2:af:2e:2b:70:46:0b:94:c5:59:f9:41:
fb:5b:83:88:bd:36:fa:57:9a:d5:bf:a5:ba:08:ea:97:fb:95:
0a:e8:41:d0:60:e1:c9:07:53:a6:d3:82:75:9f:36:39:e2:c5:
65:3d:ba:3e:11:12:35:ff:33:78:a9:48:59:07:4f:b3:21:e0:
4b:fe:fd:00:43:93:94:44:be:a7:da:9b:59:72:5b:75:ac:89:
68:8d:57:a7:57:e4:1f:7a:19:fc:77:01:48:35:19:cc:73:61:
10:46:c6:4b:8f:6e:b4:db:f7:44:27:04:58:53:27:27:14:0f:
bd:a1:20:3c:f6:fc:9e:fe:43:88:ea:0d:8b:91:37:99:1e:b9:
f2:9d:6b:55:05:54:47:b5:d4:86:79:32:13:e3:12:ff:7a:b7:
d1:f0:90:f2:68:6f:d1:24:d8:54:92:11:d7:8d:d5:ca:d7:28:
9b:fb:91:11:83:54:65:dd:19:b6:e1:ff:d1:95:40:83:a7:ad:
c5:c8:41:f5:c7:61:d3:c4:84:fc:9c:7d:7c:9f:8c:4b:c7:b9:
a3:25:5b:61:b8:49:ab:70:51:eb:02:ea:c0:a6:1d:97:63:12:
75:e8:8a:c1:54:52:9a:fe:13:85:5e:52:63:7f:a9:f6:15:c3:
92:9b:8e:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 13:18:34 2024 by rpki-client on console-ams.rpki-client.org