Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RgDBjWLG9yTVyVUG9BuMlfw5DcA.cer
File: RgDBjWLG9yTVyVUG9BuMlfw5DcA.cer (raw, json)
Hash identifier: S3BUX4vk8UaFpjIfPj15O4D2XqK0coeTFVPRMoDIyj8=
Subject key identifier: 46:00:C1:8D:62:C6:F7:24:D5:C9:55:06:F4:1B:8C:95:FC:39:0D:C0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C9A6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DF31D/055AB5447DF711EE87B7D430C4F9AE02/RgDBjWLG9yTVyVUG9BuMlfw5DcA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DF31D/055AB5447DF711EE87B7D430C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 08 Nov 2023 05:24:06 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 151802
IP: 103.226.26.0/23
IP: 2401:ce0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 08 May 2024 20:59:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117158 (0x1c9a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 8 05:24:06 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91DF31D/serialNumber=4600C18D62C6F724D5C95506F41B8C95FC390DC0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:1c:8f:fa:be:60:34:13:9a:5b:96:32:28:e5:
b2:a1:c6:9e:66:37:20:3f:f2:16:c4:1c:72:02:b8:
73:37:44:a8:e9:f3:4c:1d:86:57:7c:5f:7a:00:89:
01:61:9e:76:a1:64:76:8e:4c:03:ec:f0:77:08:46:
c8:a3:ba:23:d6:7d:b1:ad:6d:64:ca:38:6d:5a:e9:
09:18:84:53:35:23:8b:fe:af:02:f7:03:5d:41:1f:
ca:44:c6:55:77:c0:bd:a0:f3:f3:72:69:8e:64:60:
be:fa:03:b2:d4:6c:33:b4:5e:f9:b0:4d:a3:44:79:
b5:47:cd:2a:57:ed:a4:a8:07:d8:a0:71:20:57:a4:
e6:c5:c8:22:05:53:e3:80:8a:7c:02:aa:fe:f3:2e:
aa:8a:65:df:e5:54:c5:16:84:67:95:cd:20:27:20:
45:ab:34:a3:de:ff:72:cd:be:92:9f:83:83:9a:d2:
35:a1:0d:c2:63:d3:7d:9e:4f:6f:4a:08:da:b8:9c:
a1:b1:90:df:88:a1:c6:89:e9:b7:bc:6f:af:5d:e9:
0b:5e:bc:4a:df:0e:a4:f9:03:cc:20:44:48:7d:00:
7f:87:20:82:dd:f1:a6:54:91:1d:c7:4b:d3:5d:29:
55:77:d0:1b:63:89:4e:84:72:7c:95:d1:fb:bd:00:
0c:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:00:C1:8D:62:C6:F7:24:D5:C9:55:06:F4:1B:8C:95:FC:39:0D:C0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DF31D/055AB5447DF711EE87B7D430C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DF31D/055AB5447DF711EE87B7D430C4F9AE02/RgDBjWLG9yTVyVUG9BuMlfw5DcA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151802
sbgp-ipAddrBlock: critical
IPv4:
103.226.26.0/23
IPv6:
2401:ce0::/32
Signature Algorithm: sha256WithRSAEncryption
00:47:7d:1e:c2:85:38:ee:b9:c3:d1:21:73:17:54:5a:fc:84:
81:d5:8c:37:99:dc:6f:13:2d:7c:c2:e5:50:20:7e:6f:ba:59:
ac:8f:03:4a:77:7b:2a:3c:2b:2e:2a:ac:63:68:bc:eb:dc:7f:
17:9a:9f:4d:dc:64:02:d4:e8:e2:6c:ac:f0:64:c1:17:35:66:
69:cf:0a:8d:8e:31:11:f1:7e:05:a8:17:0d:34:2d:6a:da:76:
3b:9f:93:03:f9:fe:d3:87:ce:8b:4f:73:65:1f:ca:2c:b5:d6:
94:03:32:28:e1:02:22:03:00:be:7a:d5:59:81:67:52:c0:5b:
ec:c2:80:0c:eb:df:c6:b2:e5:8b:63:6a:59:72:6c:83:a1:0b:
b8:5f:d2:9c:71:45:db:bb:e7:cf:47:df:dd:f2:07:d6:8c:ff:
2e:76:8f:63:8a:b8:47:6f:16:0f:15:67:76:5e:30:2d:84:2a:
b4:3f:6c:a1:c2:e0:f3:19:13:ce:a1:18:c3:7a:d9:c3:7c:0d:
09:60:55:02:0f:78:c4:ad:9c:65:69:b5:5a:70:01:06:92:01:
d1:ae:99:f5:fb:64:a3:62:d4:39:32:22:cc:e5:a6:e9:b8:63:
a9:cb:d9:73:00:b5:cc:5b:8b:97:83:75:b4:f2:53:f3:f5:bd:
dc:d6:78:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 22:08:13 2024 by rpki-client on console-fra.rpki-client.org