Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer
File: Qyo25tVwCwvKzOD0FXauaxPK08A.cer (raw, json)
Hash identifier: 0gxCXnLQK38PIbKIf6DyFfaVsGdOmqwFdRYQSu7Qlw0=
Subject key identifier: 43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CAAD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 14 Nov 2023 04:09:17 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 152097
IP: 203.99.150.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 10:14:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117421 (0x1caad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 14 04:09:17 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91627B1/serialNumber=432A36E6D5700B0BCACCE0F41576AE6B13CAD3C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:95:c3:7c:fc:bd:0b:53:63:91:ab:27:2b:40:
32:48:93:b1:fd:00:86:85:8d:4a:34:3f:cd:ec:7d:
4a:1b:2c:3b:9a:73:35:d4:d5:7f:8f:9b:67:12:80:
7b:1b:1f:0a:9e:49:51:0a:be:ce:02:b9:b4:4a:44:
8a:f8:c0:c8:1c:a7:63:c0:12:ff:0e:16:82:fa:c3:
52:35:a4:e3:de:8b:10:99:f4:88:b2:27:ad:57:81:
8e:8c:1a:ec:8f:36:03:14:0f:5c:1e:dd:73:08:4e:
b4:b6:cb:f3:36:09:4c:07:ce:53:74:cf:cd:0b:c6:
f1:3d:b3:f6:0c:6b:35:98:c1:ef:47:bc:96:dc:16:
ce:2a:fa:a6:f6:4a:57:7f:e7:ae:3d:fb:96:a9:b8:
9b:cd:4a:2e:f4:f4:d3:a6:fd:7e:0b:43:25:df:27:
ac:62:20:6d:8d:0b:60:b0:e6:f9:b4:8d:18:5c:61:
a9:0a:d6:a4:57:40:c8:8a:f4:99:d5:b0:4b:32:38:
84:b8:4e:23:1d:54:fc:b4:54:78:65:9c:fe:09:63:
17:f4:50:3c:22:4d:ba:67:1a:5d:6d:30:ae:41:65:
02:3c:4e:08:3b:35:a0:c8:a0:19:42:f1:d3:9b:f0:
c3:65:eb:e6:2d:0e:30:a8:ac:16:61:41:86:5c:64:
c1:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152097
sbgp-ipAddrBlock: critical
IPv4:
203.99.150.0/23
Signature Algorithm: sha256WithRSAEncryption
d5:7b:59:b0:a8:eb:dd:e2:f8:67:75:9d:b0:fe:85:23:ab:63:
61:a7:52:80:16:8f:9c:1c:2a:d0:5a:03:9a:98:93:4f:dd:c4:
90:fb:54:c1:81:39:d8:69:7e:fb:b6:b6:df:d7:1f:aa:c3:2a:
78:66:dd:d8:cf:66:83:db:2d:a4:df:98:93:95:f2:b4:3c:e4:
5c:e2:2e:ff:21:95:2f:38:29:17:51:69:98:8c:4e:b6:80:e3:
77:c2:3c:1f:ab:ce:84:87:8f:aa:53:bc:7a:ef:8c:68:09:9e:
51:4e:bc:c4:e9:45:5c:84:6c:cd:29:8c:50:11:2d:cd:21:c5:
2f:30:a0:52:5c:9d:3c:44:55:37:94:51:c3:69:69:04:82:80:
24:ad:7e:b2:92:b5:79:99:fd:19:cb:3f:b1:c6:51:6f:e0:c3:
c7:0c:c6:21:57:e8:fc:9d:89:3c:d1:d6:71:1a:00:a5:7c:1c:
ed:10:66:31:9f:14:d2:cf:d9:af:93:80:7b:f1:53:68:67:ae:
31:ae:a6:c2:3b:95:48:de:4d:ce:95:e5:ba:48:bb:7d:ef:97:
70:6f:8f:74:66:85:de:c4:d0:04:2e:62:66:13:38:91:9d:2a:
1a:c3:b7:e2:1d:7d:04:7c:ac:8b:e0:dd:19:c2:b8:60:99:59:
89:f7:c1:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 11:35:18 2024 by rpki-client on console-fra.rpki-client.org