Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer
File: R2lFsh8liffnEnUf50f6IUOlI1s.cer (raw, json)
Hash identifier: CIsUj1J8xrCJmTuheaBPCoGQnHTUTCUIFB+JQ0U+Yi8=
Subject key identifier: 47:69:45:B2:1F:25:89:F7:E7:12:75:1F:E7:47:FA:21:43:A5:23:5B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B1E2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 25 Jul 2023 03:27:24 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 150002
IP: 103.190.130.0/23
IP: 2001:df0:ecc0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111074 (0x1b1e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 25 03:27:24 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A9132B1D/serialNumber=476945B21F2589F7E712751FE747FA2143A5235B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:8e:3e:34:be:69:b2:45:58:00:69:26:c6:bf:
c9:4f:2c:be:6a:63:ba:81:bb:a4:0a:e8:ee:f6:e9:
be:a6:d5:8a:4a:77:7f:4d:51:92:e3:fe:b2:1c:00:
5b:c7:40:3c:c7:86:58:98:05:ad:60:6f:b7:08:ae:
59:a4:d2:fc:61:27:9e:01:3b:9b:1b:62:3f:aa:1b:
94:b7:d6:55:5a:c5:58:72:de:27:bc:e7:26:c1:6c:
bc:16:1b:18:31:81:f8:d9:d0:ac:9d:1b:01:b6:1f:
4c:3e:cf:c7:18:21:f4:44:b0:f8:15:80:cc:12:7b:
48:e1:25:f2:4c:d4:52:bc:f0:74:54:76:0a:fb:7b:
6d:71:5d:e6:24:a2:70:74:30:ec:89:04:8d:0b:0b:
be:68:1d:e3:08:d6:46:70:eb:ec:94:1c:fd:46:2e:
9f:d4:23:ce:ea:3e:92:07:25:7c:a5:c6:14:da:3b:
3a:3e:e5:9f:37:72:98:3c:32:ea:95:59:0e:39:60:
41:00:36:24:ae:55:90:bd:cd:e5:40:05:45:01:24:
ba:8f:32:26:8a:dc:64:d6:c6:bf:9f:bf:70:d0:03:
d0:0c:b5:7a:76:26:48:66:cc:4a:a5:71:2f:65:0c:
f4:70:15:85:0a:58:63:4d:09:54:0e:18:cb:dc:f2:
13:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:69:45:B2:1F:25:89:F7:E7:12:75:1F:E7:47:FA:21:43:A5:23:5B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150002
sbgp-ipAddrBlock: critical
IPv4:
103.190.130.0/23
IPv6:
2001:df0:ecc0::/48
Signature Algorithm: sha256WithRSAEncryption
cc:ee:24:f0:44:60:16:93:cd:2c:21:39:e7:39:d0:c4:af:6a:
c1:2d:7d:fc:3c:5c:8b:82:a8:67:bb:ba:d7:d9:0e:37:99:0a:
47:ed:14:6c:1b:03:cc:3e:fd:c2:4c:b0:71:d8:24:e0:dd:b9:
81:15:87:2d:dc:f5:8f:d3:f3:74:44:d0:ec:ee:bf:56:ed:ca:
7e:31:53:57:89:13:b5:8d:6e:73:e7:96:a6:37:80:56:26:a7:
e1:58:4e:be:2d:06:bd:7c:33:d9:ef:4a:f1:c3:c7:3a:6c:ef:
15:ad:b0:67:a4:18:e8:fb:56:fc:5b:2c:23:66:a1:d9:cf:29:
1f:85:37:ba:d4:b6:6e:17:7d:53:90:ce:fc:b0:3f:14:56:15:
30:af:ef:f4:27:d5:8a:30:d9:23:6e:de:d7:88:68:1a:4c:d7:
48:a3:7c:aa:30:f0:1b:42:63:a6:89:6b:a5:bd:98:ba:81:33:
f0:30:78:ff:10:db:dd:0e:25:d8:1a:7b:0d:30:d8:75:b0:cd:
86:b7:c3:57:aa:b1:71:a3:22:73:8a:f6:ff:55:9b:6e:6f:2b:
53:13:e0:bb:fb:58:7f:2d:e2:c0:f5:8c:95:c0:fd:2b:7b:03:
39:4a:ba:47:31:6b:16:f5:61:ae:8d:24:5d:fc:6e:52:62:7c:
95:0b:22:97
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 20 03:57:52 2024 by rpki-client on console-fra.rpki-client.org