Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QAHwzRnduZQstaOVZ-w2k74lxqA.cer
File: QAHwzRnduZQstaOVZ-w2k74lxqA.cer (raw, json)
Hash identifier: FLPJNSRZPWywOVry3llFilgUat3jQXyfOQuP6Rjl9G8=
Subject key identifier: 40:01:F0:CD:19:DD:B9:94:2C:B5:A3:95:67:EC:36:93:BE:25:C6:A0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E92F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F96DB/A864D0EA8E3D11ECA87ABF16C4F9AE02/QAHwzRnduZQstaOVZ-w2k74lxqA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F96DB/A864D0EA8E3D11ECA87ABF16C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 03 Apr 2024 03:29:20 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 132601
IP: 103.181.180.0/23
IP: 2001:df0:7140::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 18:17:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125231 (0x1e92f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 3 03:29:20 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91F96DB/serialNumber=4001F0CD19DDB9942CB5A39567EC3693BE25C6A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:0e:9c:9c:3e:a4:79:4d:87:37:ad:85:eb:2a:
7a:80:90:8b:8f:ec:52:ec:1f:ef:3d:75:93:ac:f8:
42:a7:14:78:90:1e:28:1a:8a:78:45:62:ce:c8:61:
c4:d9:3f:d5:14:bc:95:40:e8:60:d1:f5:42:d2:3c:
2d:fe:91:8b:05:0a:a4:5a:0a:31:32:08:07:26:28:
38:e5:a6:f7:43:ce:0e:e6:45:63:90:89:99:76:fe:
57:a0:c7:51:09:f1:db:74:06:5d:c1:89:af:f0:23:
9f:2c:32:eb:30:d0:81:ea:64:8a:4d:e3:89:04:fe:
c9:48:db:83:65:ae:48:4f:1f:a3:bb:46:69:3d:52:
26:d0:7f:c0:3e:ba:8a:c5:1e:f1:66:68:6f:3d:e4:
14:a7:b5:82:b7:66:be:31:42:af:8c:ac:24:af:d5:
48:9a:11:2b:07:d9:18:74:3d:ed:d6:bc:33:71:d0:
53:4a:56:6b:84:27:81:59:ea:11:4f:d5:bd:41:56:
09:0e:13:db:ee:86:f4:a2:5d:d9:ef:07:3b:8f:e4:
fe:bb:be:fb:ef:6b:c1:3b:23:cd:bf:65:19:e1:0d:
3d:8d:64:e8:14:6a:e5:67:28:4e:68:20:7f:91:e3:
ea:52:05:e5:8c:79:ec:19:56:8f:9c:ad:70:97:a8:
e4:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:01:F0:CD:19:DD:B9:94:2C:B5:A3:95:67:EC:36:93:BE:25:C6:A0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F96DB/A864D0EA8E3D11ECA87ABF16C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F96DB/A864D0EA8E3D11ECA87ABF16C4F9AE02/QAHwzRnduZQstaOVZ-w2k74lxqA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132601
sbgp-ipAddrBlock: critical
IPv4:
103.181.180.0/23
IPv6:
2001:df0:7140::/48
Signature Algorithm: sha256WithRSAEncryption
4f:8c:fd:57:b4:23:30:ec:ab:21:21:4a:bc:d5:0d:66:01:de:
0b:2e:e3:91:e1:88:00:a7:99:f0:2f:2d:ff:5e:35:56:c4:8e:
3c:2a:b8:45:44:61:9f:f3:ef:54:50:1d:23:10:e9:10:87:61:
94:c9:60:87:9d:11:2c:70:ee:a0:40:ab:d8:3c:5b:64:9a:80:
f9:88:2e:65:85:32:12:92:a9:21:f4:f7:73:62:c4:4e:de:d9:
d5:fb:42:4c:1d:3e:45:99:17:af:42:5d:22:81:76:c1:88:77:
33:cb:3d:bc:2e:13:8c:6b:8d:72:0d:4b:fb:3f:69:c4:38:48:
e9:af:43:7a:f1:b5:f9:eb:f7:91:b1:7b:d5:41:5a:4e:d7:2c:
0b:1c:1a:ca:2b:29:10:53:0c:27:99:ef:b1:ec:de:97:5c:68:
ac:ee:2b:b0:95:02:14:46:ad:e0:ea:10:e5:98:da:88:52:41:
d3:30:da:af:c6:dd:26:dd:a1:bb:b0:56:11:4f:c2:2d:83:3b:
0f:ee:54:09:63:c9:c0:37:9c:cd:92:f9:02:20:c6:27:b1:7d:
8e:35:b3:0f:f7:23:83:79:37:c5:54:d9:d4:96:3f:3b:84:e8:
a5:15:55:eb:48:a8:08:ee:a9:6c:67:70:b0:b2:11:27:f6:15:
4a:a2:57:d2
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Apr 25 19:10:55 2024 by rpki-client on console-ams.rpki-client.org