Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC1I47aWHxIIwGcVJOCOkDOV9lk.cer
File: SC1I47aWHxIIwGcVJOCOkDOV9lk.cer (raw, json)
Hash identifier: KsisPEJZiIG6vS+4EjW+NF4uFtk44kOX8s20rBIH3nc=
Subject key identifier: 48:2D:48:E3:B6:96:1F:12:08:C0:67:15:24:E0:8E:90:33:95:F6:59
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D100
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 11 Dec 2023 01:54:03 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 135634
IP: 103.86.136.0/24
IP: 2001:df5:ce00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 03:13:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119040 (0x1d100)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 11 01:54:03 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A915BCE2/serialNumber=482D48E3B6961F1208C0671524E08E903395F659
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c8:3a:ff:b8:7b:c4:88:68:53:9b:59:1a:39:
2b:6a:71:dd:89:56:cb:37:1c:92:f5:6a:e7:81:0d:
98:0f:89:ec:76:dd:de:03:3a:a2:50:d2:c9:fa:73:
ce:57:df:35:8f:ae:87:ba:f5:39:3e:cf:78:c4:70:
0f:2b:e1:b6:34:50:05:ed:0b:a7:43:f2:9b:7c:bb:
33:15:08:55:bb:1d:e1:b7:03:31:9b:75:8f:7d:d1:
19:72:11:57:6d:d1:9e:ad:d1:b7:b8:f0:4a:6e:12:
82:40:ab:70:35:ac:f7:5e:be:d4:da:63:23:7a:5b:
ce:0c:96:18:5f:b7:8e:7e:7f:bb:4b:b9:56:48:e0:
6a:43:e3:41:8a:e4:e6:49:cf:7c:40:e6:1c:ee:13:
51:60:d9:e1:da:a4:04:62:8e:d2:61:a3:75:6c:65:
d7:aa:5e:03:df:df:28:2e:7d:66:4d:24:73:46:6c:
11:0d:63:4c:7e:53:8e:21:8c:46:86:a0:ff:0c:0e:
6c:df:3b:4d:7d:88:05:ab:8f:c4:ee:31:d1:42:0f:
5f:9f:55:a2:9c:68:26:a8:80:a5:d6:b8:91:96:a2:
eb:01:9c:e4:6e:6b:61:dd:fd:a2:84:df:2b:dc:34:
44:26:d8:59:51:2a:a6:d6:c6:d8:76:b5:e9:73:04:
1b:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:2D:48:E3:B6:96:1F:12:08:C0:67:15:24:E0:8E:90:33:95:F6:59
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915BCE2/24F7E27E97C811EE9102880AC4F9AE02/SC1I47aWHxIIwGcVJOCOkDOV9lk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135634
sbgp-ipAddrBlock: critical
IPv4:
103.86.136.0/24
IPv6:
2001:df5:ce00::/48
Signature Algorithm: sha256WithRSAEncryption
6c:84:68:8d:25:af:ea:10:df:44:60:fe:85:20:47:e4:91:8e:
bb:6d:1b:5c:1b:55:86:0d:6f:8f:17:f7:5b:a0:3b:5b:17:b7:
d9:af:b9:c7:9d:ba:f0:e4:51:f9:5e:96:4f:4c:eb:96:bd:07:
ad:aa:a7:81:26:09:c4:ec:9f:37:a2:81:ad:e9:be:83:85:e5:
b9:47:ab:65:fc:3d:85:ab:7a:03:6f:a9:14:15:a0:ea:50:28:
1f:d9:c4:34:ae:1d:57:79:f4:32:03:33:4a:f7:2c:19:07:13:
bf:08:dd:da:83:0c:dc:2f:5b:ff:ae:dd:e0:8f:78:de:64:d8:
8b:6a:e8:ad:d6:e4:f8:89:5d:30:ff:1c:5e:59:dc:87:18:bc:
e8:17:32:59:9a:7b:96:e2:be:93:38:77:72:df:50:17:df:61:
3d:5f:8d:bb:93:b4:bf:83:82:68:2f:d7:6d:30:5a:3b:51:8a:
9a:81:31:75:81:5a:a6:21:f2:9a:23:aa:4c:f9:65:dd:90:cd:
2a:ec:95:5d:fe:6b:aa:85:66:9f:e7:de:a9:65:53:86:b7:af:
82:24:b1:ec:9e:7a:3d:a6:d5:32:7f:b3:b1:a3:e4:d4:80:9c:
16:e2:f0:b2:67:2c:c0:70:d0:43:1c:b2:27:92:45:eb:4c:4f:
27:cc:6b:c9
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 2 04:05:00 2024 by rpki-client on console-fra.rpki-client.org