Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSPpAOai7I_ptdcDt5KA7yFAfIE.cer
File: QSPpAOai7I_ptdcDt5KA7yFAfIE.cer (raw, json)
Hash identifier: WKznNCtSnKvr8iRSD5yG1fQ2aj8QgGnpfDs3XhFkShs=
Subject key identifier: 41:23:E9:00:E6:A2:EC:8F:E9:B5:D7:03:B7:92:80:EF:21:40:7C:81
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D51C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 29 Dec 2023 22:38:56 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 149023
IP: 103.176.246.0/23
IP: 2001:df0:16c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120092 (0x1d51c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 29 22:38:56 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91F3B2E/serialNumber=4123E900E6A2EC8FE9B5D703B79280EF21407C81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:6e:f6:08:42:44:67:33:68:99:29:37:6f:0e:
a3:a2:bc:eb:04:4e:d3:a5:95:eb:73:30:3b:a6:52:
e3:ed:22:11:6d:36:3a:34:8b:83:a0:61:8a:b1:5a:
da:7a:62:e3:0d:c7:5f:11:6f:e1:5b:33:95:d5:a7:
82:fa:b1:2f:3f:61:59:0c:c0:cc:1b:93:36:f3:55:
97:11:c8:9c:fa:02:06:93:31:2e:38:02:18:f3:e6:
50:94:27:4d:81:91:4a:20:72:df:28:4e:a4:86:68:
46:3e:77:66:fa:e7:bc:53:43:cd:02:46:9a:f7:bb:
ba:c4:ef:f1:98:29:db:2f:63:b1:46:31:85:30:45:
57:40:b6:21:17:d3:d7:6e:5e:85:11:8a:36:04:03:
0c:25:3e:41:bd:4c:9f:f3:b5:48:b3:98:ef:ba:e9:
e9:6f:9c:d4:d5:e7:ea:1b:0e:32:69:cf:be:92:0e:
5e:e9:0b:86:48:db:12:14:62:b0:18:a2:1f:48:fb:
6e:3d:56:a2:6c:a4:61:12:e2:2b:34:7d:09:4c:1e:
b4:62:91:0b:cf:68:3b:bc:30:b1:0c:b1:9c:6e:ee:
13:80:a1:b2:34:85:54:bb:8b:5b:1b:26:f9:b1:8a:
cb:23:1e:50:1b:9e:fa:5a:e6:e9:05:e7:6a:ff:08:
6d:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:23:E9:00:E6:A2:EC:8F:E9:B5:D7:03:B7:92:80:EF:21:40:7C:81
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149023
sbgp-ipAddrBlock: critical
IPv4:
103.176.246.0/23
IPv6:
2001:df0:16c0::/48
Signature Algorithm: sha256WithRSAEncryption
1e:b7:6d:3b:c5:7f:5c:fe:1f:31:8d:9e:c1:21:d9:de:40:ff:
fe:15:5a:13:08:20:10:f1:2c:71:b1:18:b2:7a:c8:1a:3d:f7:
f1:f6:c8:14:b8:c7:ed:a2:fc:70:a8:5c:62:f6:8f:ab:f9:1b:
6f:54:27:19:a3:46:fe:07:8f:83:a9:7f:b4:7b:fb:b5:36:88:
8f:85:76:9c:b5:67:37:2a:e3:fa:43:79:7d:3c:cf:7f:db:ae:
69:ca:47:36:57:0d:ef:97:95:4f:a3:7a:16:06:e7:31:b3:f1:
cf:13:ba:a1:f1:70:ce:1f:42:63:15:22:38:ba:c6:dc:f0:23:
bb:44:e9:53:fe:24:66:0d:3d:9a:c8:22:91:cb:60:0f:64:19:
d9:93:71:4e:b6:d5:d9:f4:29:a4:ee:ab:88:63:90:78:b4:9f:
3a:b8:d1:84:58:1e:b7:cf:34:73:96:40:65:99:7b:57:20:3a:
a9:1f:98:48:37:9d:36:ec:98:b2:31:69:97:e2:fd:7a:e8:f6:
66:69:f1:62:a6:a1:7c:ff:9d:6a:46:cf:64:24:21:82:70:73:
6a:8d:23:bf:23:c3:6a:64:d1:c2:1b:56:4e:d7:4f:4c:a7:e4:
35:6d:f1:ba:26:d8:d1:11:b5:29:75:73:92:66:dd:79:e3:69:
98:86:51:fd
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 26 11:02:56 2024 by rpki-client on console-ams.rpki-client.org