Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.cer
File: UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.cer (raw, json)
Hash identifier: Qbovwhaj+aoZcPdHG1510jdixZxCV2eiZFkrXMRUGJ4=
Subject key identifier: 50:08:BE:04:1F:99:97:B2:59:D2:58:44:83:A5:3A:0D:FF:0B:17:8C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CF5A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 03 Dec 2023 04:51:45 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 132080
IP: 103.11.216.0/22
IP: 2400:fa60::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118618 (0x1cf5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 3 04:51:45 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91A3D65/serialNumber=5008BE041F9997B259D2584483A53A0DFF0B178C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d1:6c:1f:50:6e:e3:0d:eb:53:b4:29:c8:ae:
c7:2a:b8:b7:b1:c3:ff:80:d9:76:72:5d:3e:88:f9:
bd:12:38:e5:0a:91:85:67:67:63:8d:10:ff:4e:90:
b5:27:f8:0b:94:99:87:f4:d8:fd:5d:82:56:71:ec:
cb:71:ed:4e:a1:b0:44:8e:c0:98:0e:5d:61:6e:bd:
e1:89:5a:1a:54:3b:bf:c9:6c:af:1a:bf:04:da:fd:
3e:c1:4c:02:20:c0:84:20:aa:a5:29:25:37:1f:7e:
a6:6c:ca:71:29:fb:b4:39:ee:a0:07:06:b4:3b:a4:
b9:77:b1:2e:24:fd:48:e0:74:9a:90:34:42:3e:15:
70:3a:53:87:ca:ec:5a:9f:ed:ae:20:de:b6:af:50:
a2:d4:23:c8:29:4a:d2:fd:ab:cd:6e:e3:b7:90:3c:
ff:f3:98:3f:da:8d:8d:a1:a9:10:01:32:d2:a2:cd:
76:79:62:ab:b8:ec:ff:23:81:16:18:2c:f2:80:e9:
55:6c:73:d1:f9:a3:58:ce:1b:ad:1f:0e:d1:52:4b:
38:67:66:03:8e:2c:7b:d7:bf:e5:08:cc:59:55:50:
66:45:20:56:d0:11:06:31:40:bc:65:30:97:a0:f8:
b4:58:44:44:34:c2:71:ee:47:f5:d9:e4:bc:0f:29:
39:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:08:BE:04:1F:99:97:B2:59:D2:58:44:83:A5:3A:0D:FF:0B:17:8C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132080
sbgp-ipAddrBlock: critical
IPv4:
103.11.216.0/22
IPv6:
2400:fa60::/32
Signature Algorithm: sha256WithRSAEncryption
2d:74:b2:a0:ad:35:62:04:1b:d8:ef:80:53:04:67:9f:61:89:
f5:ff:c6:c7:f5:a4:e3:fe:83:23:f6:b3:0f:ed:38:7d:ca:9a:
d6:bc:ba:8f:f5:65:d3:58:ec:cf:72:e6:87:88:c5:fe:bd:94:
09:4a:22:a7:41:62:02:78:c9:21:9a:42:50:7c:86:45:1a:21:
b7:d7:fb:3a:52:e9:f7:03:66:4e:1b:56:6d:5b:cd:8b:05:c4:
52:fe:3f:7d:a0:0d:97:db:23:61:26:ce:8a:be:51:6f:f9:46:
63:a5:3b:37:32:19:24:d6:3b:2f:b1:35:2d:dd:d1:38:84:97:
1d:52:46:ea:c3:7e:cb:a4:71:13:fb:6a:05:90:9e:f7:fb:45:
ea:65:83:09:03:6f:c9:87:ed:90:42:8a:80:62:a2:96:ff:11:
fb:11:15:00:7f:57:d3:ac:2a:42:6b:fc:8b:6c:60:0c:15:3e:
90:46:7f:7d:b6:4b:23:89:10:4c:b9:30:eb:e9:24:6d:b0:81:
b6:63:1b:c2:b8:64:0b:16:45:cd:72:a3:9f:58:ca:ab:2b:58:
4d:03:8f:92:dc:24:0a:2e:47:09:27:ef:92:58:44:3d:47:ce:
25:6c:cd:89:89:9b:09:ea:b7:76:f4:6b:aa:3f:7b:88:0c:41:
76:3a:3b:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:32 2024 by rpki-client on console-fra.rpki-client.org