Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer
File: QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer (raw, json)
Hash identifier: 11xr+g8+E35Re2OlTIKwSrYMfaV7PWqY9u4zxNHYlHg=
Subject key identifier: 41:E3:80:A0:C9:FA:BC:C1:0F:8E:A3:29:63:52:E6:A7:87:8D:35:3B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C0D1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 29 Sep 2023 22:52:28 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 141032
IP: 103.155.22.0/23
IP: 2406:6240::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 22:31:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114897 (0x1c0d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 29 22:52:28 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91F4F4C/serialNumber=41E380A0C9FABCC10F8EA3296352E6A7878D353B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:49:0a:b6:3b:ad:60:c8:7c:4b:91:62:78:51:
45:86:b8:8e:92:63:83:99:a1:25:1f:b4:78:6f:ca:
20:d2:ae:c9:86:31:9a:84:bc:a1:f3:a2:2c:78:ea:
f7:4c:da:41:43:20:69:76:d7:68:a6:35:aa:c1:d9:
3b:32:d9:47:ca:af:ac:74:b8:80:91:38:aa:0c:85:
ad:4e:a6:11:0f:9f:06:43:60:bf:2b:b2:cc:85:d0:
11:12:7c:10:b0:9e:c8:41:f3:0e:87:08:2b:17:f0:
a7:06:02:78:52:7f:1b:93:96:75:49:4f:97:24:d7:
e6:6b:92:a9:e0:ed:20:75:5e:b8:5b:7c:be:cd:86:
bb:ea:31:80:9c:32:57:ee:e1:4e:31:1a:9b:4d:2d:
3e:df:d1:ad:f2:24:83:ee:f0:42:39:ad:4a:52:b6:
f4:30:2f:3a:c0:d1:75:f9:db:e7:9d:fa:ee:42:fd:
59:9b:fd:86:92:99:fd:dc:f0:ee:eb:36:b0:49:28:
3d:c8:5e:52:dd:7d:29:ba:64:35:4a:fd:a1:91:02:
00:77:81:95:75:72:ed:29:72:bf:ed:84:a8:ec:6d:
4a:52:4e:f2:69:de:7d:20:c5:ba:83:7f:ec:7b:2f:
13:d6:6f:53:78:7d:2c:ed:67:e4:00:f6:53:cc:ce:
cc:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:E3:80:A0:C9:FA:BC:C1:0F:8E:A3:29:63:52:E6:A7:87:8D:35:3B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
141032
sbgp-ipAddrBlock: critical
IPv4:
103.155.22.0/23
IPv6:
2406:6240::/32
Signature Algorithm: sha256WithRSAEncryption
b3:cf:cf:fd:4d:93:8a:4d:01:52:cf:7c:f1:d7:5f:f5:de:d4:
d6:37:e6:60:c4:fc:49:00:66:82:a0:d2:f2:ae:44:54:57:98:
0e:34:1d:76:fb:aa:64:62:fd:6c:ce:f8:44:08:65:09:d1:80:
e3:db:01:d0:fb:63:d9:4b:42:33:74:74:08:af:47:16:eb:e4:
05:c9:98:a6:c1:8c:f2:14:c9:53:b2:e3:44:b4:d5:26:61:ab:
b4:fa:cc:14:cf:4e:fa:1f:cb:82:57:79:09:5f:39:f4:bf:7a:
e5:4e:3d:a0:30:e1:9c:75:a3:ac:d1:8b:37:29:d4:d8:24:1c:
17:01:28:55:7c:3d:29:1b:83:93:ca:27:a5:a7:ec:8c:a9:f6:
9e:dc:e2:b1:e3:cc:82:02:24:4f:ec:2d:a6:a6:97:e0:ba:c7:
a1:a7:86:15:85:54:df:b4:cf:f2:0d:77:5b:bc:54:f0:b2:fa:
c5:78:28:71:7c:be:38:6e:e6:9c:6b:00:ba:c7:0e:ca:9d:51:
9c:15:34:37:ab:dc:c7:3c:17:53:4e:af:fe:0e:de:af:ea:91:
81:26:29:3b:20:62:8f:ec:20:77:06:ad:ba:95:0c:a7:e9:4f:
85:cb:e6:c4:0a:7d:6f:48:87:ab:20:c1:8d:aa:56:7a:36:41:
90:f8:30:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 23:30:36 2024 by rpki-client on console-ams.rpki-client.org