Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SzxpVrBEkAEAhYwN5Q65pGKwjMc.cer
File: SzxpVrBEkAEAhYwN5Q65pGKwjMc.cer (raw, json)
Hash identifier: 1CxAVcKPu0j3MRQIT791zsFsM3Padq512640iDlZsE0=
Subject key identifier: 4B:3C:69:56:B0:44:90:01:00:85:8C:0D:E5:0E:B9:A4:62:B0:8C:C7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A643
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/SzxpVrBEkAEAhYwN5Q65pGKwjMc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 30 May 2023 23:18:32 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 149832
IP: 103.187.136.0/24
IP: 2001:df0:c140::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Apr 2024 13:17:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108099 (0x1a643)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 30 23:18:32 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A91FB0D0/serialNumber=4B3C6956B044900100858C0DE50EB9A462B08CC7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:05:ae:5f:db:9f:c9:f7:64:e5:bd:07:50:af:
40:71:57:67:8a:52:c4:b0:07:15:ed:ec:f6:96:d2:
7d:90:73:bf:3f:59:5d:46:87:12:2b:ec:3f:38:bf:
3c:3d:37:1b:bd:62:e4:6f:21:93:7c:05:59:ac:19:
53:f4:19:24:4b:4f:7b:37:e0:fd:79:71:e3:a3:8d:
14:b8:d8:ef:ce:56:7c:0c:46:da:28:90:e1:80:09:
35:8c:50:b9:2a:84:cf:f8:4b:96:a1:64:4b:b1:fa:
9a:27:4d:b5:d3:47:ca:90:00:cf:a7:70:b2:8d:5f:
4a:21:c6:1d:1c:a9:dc:35:07:65:82:3e:7a:6c:95:
64:a6:2d:cf:9d:e9:d6:dc:e6:7f:d3:c3:0f:ae:1d:
40:6b:d0:8e:8d:01:91:77:88:3c:6b:d4:ed:e7:93:
55:5d:c4:eb:74:87:55:88:2c:9b:d7:b5:7f:8e:5b:
50:51:01:b0:d7:94:20:e1:7e:24:f1:7e:34:4a:0a:
ad:08:b2:0a:93:25:af:d3:7d:91:86:bc:4d:81:01:
90:7c:bc:b9:36:43:aa:72:c5:37:eb:67:f2:08:75:
d5:29:8d:6a:66:7e:18:39:a7:62:39:07:fa:40:d6:
1c:91:d7:4d:1c:2c:36:35:79:f9:41:2a:dc:15:89:
80:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:3C:69:56:B0:44:90:01:00:85:8C:0D:E5:0E:B9:A4:62:B0:8C:C7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/SzxpVrBEkAEAhYwN5Q65pGKwjMc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149832
sbgp-ipAddrBlock: critical
IPv4:
103.187.136.0/24
IPv6:
2001:df0:c140::/48
Signature Algorithm: sha256WithRSAEncryption
72:69:ba:ac:1b:12:ec:a3:dd:64:6e:7c:8d:a9:49:a1:2c:b3:
ae:59:df:0b:db:38:e5:50:db:0f:33:46:09:5f:14:48:55:1d:
5b:ab:f9:3f:17:7f:96:58:e1:18:0a:7a:13:b4:74:fd:27:61:
1d:61:20:fb:54:d0:32:ce:f8:c0:76:6b:59:eb:3c:c4:c0:61:
ec:60:16:17:d3:a9:e3:0c:12:19:b8:97:96:ab:78:8f:a5:fb:
20:db:6e:6d:a5:6b:6e:d5:dd:e8:7e:f2:4f:01:7d:75:41:3a:
1e:a0:87:28:1b:82:fb:9e:6f:f0:44:5b:69:f4:7a:1d:60:f7:
a4:2d:59:2c:42:5a:24:35:3c:72:03:8d:54:5f:21:48:01:04:
f7:ba:b0:be:d3:e2:e0:e0:b2:6a:2b:98:42:13:9b:9b:6f:12:
be:1b:f1:f3:5a:ab:a2:bd:fe:68:25:c2:ba:bb:bc:66:73:7a:
a0:99:80:67:6b:23:cb:46:21:15:37:23:90:7c:59:f3:a5:7d:
cb:37:8a:8f:4d:22:a5:ba:4b:52:9d:ea:5a:25:15:13:53:22:
c1:ca:b6:a1:0e:28:be:95:28:f2:c1:36:87:a1:26:a1:a6:8e:
c4:44:40:cd:38:6a:84:3b:14:c7:9e:45:93:ed:6f:c7:60:ca:
00:c2:31:a3
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Apr 18 14:08:19 2024 by rpki-client on console-ams.rpki-client.org