Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SU13HlEeEgBTuwmx8nS9j1nXOqg.cer
File: SU13HlEeEgBTuwmx8nS9j1nXOqg.cer (raw, json)
Hash identifier: knYByIncKmV0K5lc6qUQ/7mqvYkvXzSMD/28vB1t9jY=
Subject key identifier: 49:4D:77:1E:51:1E:12:00:53:BB:09:B1:F2:74:BD:8F:59:D7:3A:A8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A6BE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C4614/1C94899AF4F011E9AC202B1DC4F9AE02/SU13HlEeEgBTuwmx8nS9j1nXOqg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C4614/1C94899AF4F011E9AC202B1DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 31 May 2023 20:11:13 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 137842
IP: 103.115.156.0/22
IP: 2402:ea40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 06:28:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108222 (0x1a6be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 31 20:11:13 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A91C4614/serialNumber=494D771E511E120053BB09B1F274BD8F59D73AA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:bc:0f:fc:49:17:95:fd:eb:d0:a7:37:51:10:
15:95:f5:4a:db:13:b6:f2:ec:57:66:f6:27:93:d0:
3c:cf:12:39:06:d4:ae:53:dc:ac:33:07:9c:a7:ae:
3f:e0:c5:9c:3c:52:57:2d:4e:08:28:eb:75:31:aa:
da:5b:3d:e6:d4:50:57:4d:09:e9:63:83:66:c2:90:
cd:9c:df:bb:03:ee:b9:7b:53:8b:2f:4b:5b:72:8c:
91:7f:dc:0b:c9:59:b5:e0:40:6b:ef:7a:e4:d8:2d:
49:1a:ee:df:ad:0f:f5:ee:13:d4:7e:76:16:0d:26:
30:e7:6c:87:9d:fd:03:4a:38:cb:9f:18:b7:5a:d9:
0e:64:00:f8:f2:c0:b2:9f:8d:e0:03:46:11:d7:df:
9e:5c:8e:80:67:ac:a8:fa:f7:f1:cc:2e:b2:71:3c:
3c:96:9d:a5:e5:c0:1c:b4:9a:c8:29:68:66:1e:c3:
1e:5b:80:bc:a4:64:75:55:ef:d0:f1:62:3c:2d:d0:
ba:87:4b:eb:7a:a2:79:a3:df:4e:01:3e:b6:20:ac:
d2:50:7b:03:2e:2e:ea:19:d8:19:e6:70:a8:c0:b8:
f9:a3:7c:ee:dd:4b:47:72:7e:14:79:13:5e:98:b4:
ee:5d:69:a0:e8:ef:cd:2a:46:97:69:95:08:a1:c1:
ff:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:4D:77:1E:51:1E:12:00:53:BB:09:B1:F2:74:BD:8F:59:D7:3A:A8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C4614/1C94899AF4F011E9AC202B1DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C4614/1C94899AF4F011E9AC202B1DC4F9AE02/SU13HlEeEgBTuwmx8nS9j1nXOqg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137842
sbgp-ipAddrBlock: critical
IPv4:
103.115.156.0/22
IPv6:
2402:ea40::/32
Signature Algorithm: sha256WithRSAEncryption
6b:aa:d9:ef:7d:91:bf:d5:62:49:a5:0c:bc:6f:f4:60:1f:6a:
10:3f:c4:2b:a1:93:14:43:e3:9b:53:49:ef:51:53:4f:14:1a:
c4:aa:68:53:41:eb:80:68:a4:aa:93:36:83:c0:62:c0:79:94:
f5:ce:ab:0f:17:cb:f2:4d:29:2a:f6:aa:91:f2:43:45:ba:7c:
04:24:34:70:ca:6e:c5:1f:e0:d6:6e:02:5f:2f:8f:73:89:47:
ac:c9:be:cc:c0:98:fc:70:e1:8d:02:24:fc:a3:67:f3:aa:c1:
b0:52:57:f7:b3:50:bc:21:57:65:ea:0f:30:f1:c6:60:8b:b5:
b3:8d:d9:0e:ed:d5:1b:fc:4f:d9:e3:c8:d6:c6:77:e7:2e:00:
13:b1:ea:42:1e:35:da:c2:56:8f:81:5d:ec:56:7e:67:9e:e4:
63:30:c6:d4:34:1a:92:00:fb:90:24:6a:8f:d9:de:03:a6:f3:
98:b3:ed:41:25:51:b0:d0:be:0c:6f:59:a8:95:f9:45:63:65:
57:a7:81:a4:5d:aa:94:61:74:c4:6a:07:83:6f:c5:db:5f:e8:
1f:ac:bc:ed:20:1c:65:3d:05:9f:3b:40:5c:10:6b:70:9f:bd:
6f:0d:22:63:c9:41:05:7e:69:2d:7f:ad:ec:af:ee:5f:b6:f0:
bd:df:01:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 07:21:24 2024 by rpki-client on console-ams.rpki-client.org