Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer
File: PcXSlD7UrPqSa3dnapi-yLPJea4.cer (raw, json)
Hash identifier: qokgDF956ri7WkHMQYyAWyrpke3tEMZW9hfPaajAizc=
Subject key identifier: 3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01987D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 18 Apr 2023 16:33:34 +0000
Certificate not after: Wed 29 May 2024 00:00:00 +0000
Subordinate resources: AS: 135090
IP: 103.189.115.0/24
IP: 103.209.11.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104573 (0x1987d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 18 16:33:34 2023 GMT
Not After : May 29 00:00:00 2024 GMT
Subject: CN=A916AF8E/serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:ab:dc:17:52:8e:21:a8:ee:be:d5:81:68:18:
00:74:17:1d:58:77:2d:e4:49:75:f7:9e:a6:1c:21:
3b:4a:fa:e1:02:db:42:ea:22:88:01:af:7d:92:05:
2c:7f:f4:30:84:28:61:89:3b:17:f3:7d:ff:c4:da:
f2:32:49:3c:5d:aa:a6:7b:56:20:36:d4:48:ae:9b:
79:78:fc:36:17:02:c2:cb:d6:f9:a9:be:04:52:e3:
bd:f9:91:25:70:bb:d7:5a:3d:7b:d8:c7:05:73:eb:
2b:e7:5e:e2:45:95:02:1f:b1:58:dc:83:47:41:b9:
29:7a:64:04:68:a2:1b:74:85:95:39:27:b0:ce:f5:
3e:df:a1:bb:e2:a1:b6:8e:68:b9:2e:38:1d:07:e8:
20:05:f4:b5:3d:47:94:ed:4e:35:23:16:83:24:d7:
2d:7f:bb:ff:f7:44:a1:15:be:a5:60:72:0e:78:79:
ea:62:d6:67:e3:0a:c6:08:0d:b1:9e:9a:6b:62:7f:
ca:56:4b:9f:b7:0c:05:b3:71:1a:0a:a9:b4:9c:fc:
59:e7:c3:b7:92:c3:cb:f1:9e:8c:59:30:d6:40:a6:
c4:96:ff:0e:94:a7:f5:fe:22:5c:1d:06:50:ce:8a:
66:8d:df:a6:73:8a:ba:a4:0c:b8:56:6e:a6:92:72:
c6:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135090
sbgp-ipAddrBlock: critical
IPv4:
103.189.115.0/24
103.209.11.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:56:31:b4:0a:3f:c6:78:3f:6b:a7:e9:de:6b:92:ae:b4:aa:
32:eb:a9:05:02:32:34:d5:b0:d1:52:4c:40:d3:a2:43:ab:e8:
94:46:0e:d7:5e:9a:9a:0d:49:65:ff:0d:2d:c5:3b:7c:62:bf:
7c:72:00:c2:74:50:aa:85:0c:87:be:95:29:18:0b:ed:3c:d1:
3d:ec:b9:f2:bd:f0:7f:d7:40:f1:d7:d5:fd:10:f0:a1:c3:50:
a6:09:5c:19:50:2e:a0:97:bb:76:e7:ba:3e:4a:55:3b:80:fb:
0b:07:6a:99:e6:a6:97:b6:03:39:1c:d7:c2:0c:c1:c0:64:24:
3e:42:71:9b:08:6d:a1:f9:24:1c:74:a0:5e:61:be:66:8f:0e:
3c:f3:df:bd:69:da:80:ad:42:68:d0:a7:dd:52:b5:b2:22:c3:
e2:54:f0:4b:43:7f:82:0e:64:83:70:3b:37:24:67:ce:61:5d:
5c:e2:c1:e3:3a:5a:59:ab:c7:19:9b:2c:16:28:35:b4:62:57:
50:0e:af:7b:27:6e:5f:5a:f8:f6:6e:1d:fe:0e:8b:2a:0a:e5:
45:b8:d0:90:21:b1:9b:8f:dc:1e:24:04:ff:d0:df:68:70:64:
cd:4d:ab:97:9b:b2:37:41:5f:1d:e7:c3:11:19:d9:af:3f:67:
f5:dc:a8:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:02:55 2024 by rpki-client on console-ams.rpki-client.org