Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pj3GKtNpQScHmphxdsIYwJs-yf0.cer
File: Pj3GKtNpQScHmphxdsIYwJs-yf0.cer (raw, json)
Hash identifier: O35JN+r7gn7cOO7kh/h5qAztcQoZmDbaM548i2rQ8LU=
Subject key identifier: 3E:3D:C6:2A:D3:69:41:27:07:9A:98:71:76:C2:18:C0:9B:3E:C9:FD
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A622
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916559E/D47FEFCED40B11E385D48A705911EA32/Pj3GKtNpQScHmphxdsIYwJs-yf0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916559E/D47FEFCED40B11E385D48A705911EA32/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 30 May 2023 16:03:15 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 133456
AS: 133535
IP: 45.64.72.0/23
IP: 103.230.50.0/23
IP: 103.233.240.0/23
IP: 2400:ec80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108066 (0x1a622)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 30 16:03:15 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A916559E/serialNumber=3E3DC62AD3694127079A987176C218C09B3EC9FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:28:67:6e:be:21:3f:32:28:31:35:a7:92:ba:
f5:a0:a4:55:d8:6c:2e:af:7f:88:12:8c:f9:5f:0f:
6a:37:3e:cc:88:57:a6:8b:a6:6c:61:e1:35:9d:79:
61:56:50:25:96:88:d0:9e:b9:8c:dc:ec:74:c9:c5:
fa:d8:d6:bf:d9:bf:4d:2b:c0:6f:83:3d:4f:d6:60:
17:a9:1e:1c:2e:38:bf:a5:1e:b1:95:02:c4:2a:03:
84:59:9e:83:fc:08:73:5a:17:c7:a9:83:99:77:42:
9b:f1:84:b5:bf:51:5c:a4:69:dc:49:5b:bc:16:bc:
84:60:5a:60:92:f3:44:9f:81:f8:72:22:25:ef:46:
19:f2:a3:d4:c9:fe:c4:cd:3a:d2:6e:4b:47:95:3a:
9f:cd:c4:2c:27:82:40:01:e2:90:5e:85:35:15:d2:
df:fc:c6:62:cd:ae:7d:62:5b:12:cf:81:64:9e:9c:
03:11:9e:c1:e5:88:96:bf:cd:f3:a3:e1:57:6a:3c:
e8:b1:05:d3:62:9c:e0:f1:5b:05:19:58:64:e3:cf:
0a:3d:0e:3a:cf:8b:f0:df:e1:c7:7f:cf:e1:3e:a5:
cb:ff:ff:34:32:d6:39:82:8f:e1:4c:68:75:73:5f:
3e:7c:d8:60:a7:f9:b3:b0:b9:ff:c3:a1:6b:d8:58:
b1:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:3D:C6:2A:D3:69:41:27:07:9A:98:71:76:C2:18:C0:9B:3E:C9:FD
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916559E/D47FEFCED40B11E385D48A705911EA32/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916559E/D47FEFCED40B11E385D48A705911EA32/Pj3GKtNpQScHmphxdsIYwJs-yf0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133456
133535
sbgp-ipAddrBlock: critical
IPv4:
45.64.72.0/23
103.230.50.0/23
103.233.240.0/23
IPv6:
2400:ec80::/32
Signature Algorithm: sha256WithRSAEncryption
3a:39:5d:90:46:48:af:0e:bc:8e:46:9b:da:a1:89:67:1e:35:
51:db:b2:ce:82:2e:82:ac:1d:be:45:d2:63:68:21:b0:1a:9d:
cc:bb:b7:4f:46:d2:cc:70:bb:56:d6:dd:87:a8:b2:f6:76:4a:
da:6e:a3:2e:38:10:9c:64:fc:75:f1:19:55:29:c2:22:a2:82:
32:a2:fc:52:45:91:d9:bd:b5:55:07:36:30:e8:75:7f:c5:c0:
75:bb:17:06:72:01:ac:80:6b:4e:4a:15:6a:1f:a8:fd:10:1c:
cb:30:73:5a:d4:a9:e4:d5:4b:f0:f9:96:63:28:22:88:b6:58:
8d:0f:f2:f4:85:67:59:01:bc:56:f8:0c:71:88:89:65:5f:f2:
35:8a:71:ba:60:8b:a1:db:fb:0d:76:04:a4:79:64:10:1b:89:
5f:ba:cf:52:9b:23:b7:01:b2:f1:ff:4e:89:5b:e6:69:24:55:
bb:97:d8:97:34:75:41:cc:6d:eb:3d:1a:86:fe:de:2f:90:45:
21:6b:79:61:5b:f6:93:54:0d:69:02:59:b6:cc:13:2d:d6:59:
50:63:a3:1a:ac:e8:9d:61:be:02:db:d9:67:9a:a3:80:62:6f:
fd:a7:76:50:4c:e9:64:3f:d4:12:95:c4:cc:aa:1f:99:ab:74:
38:37:31:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 03:57:51 2024 by rpki-client on console-fra.rpki-client.org