Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.cer
File: UKcRa7nzaXvF4-Ii7wNfcDQs3aM.cer (raw, json)
Hash identifier: TbjWM6ZRfPGWo0b8Bai2RgzwxdGxNTglutJzBwjV+cg=
Subject key identifier: 50:A7:11:6B:B9:F3:69:7B:C5:E3:E2:22:EF:03:5F:70:34:2C:DD:A3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B3B2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 31 Jul 2023 22:58:52 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: IP: 103.139.228.0/23
IP: 2001:df0:9680::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 30 Apr 2024 21:54:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111538 (0x1b3b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 31 22:58:52 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91E5191/serialNumber=50A7116BB9F3697BC5E3E222EF035F70342CDDA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:db:50:1a:50:9f:a0:90:db:10:e9:15:e5:73:
f8:40:dd:b1:0a:a4:59:e8:1d:36:66:ff:61:c4:18:
af:5a:f0:13:83:fa:b3:4a:77:66:d7:51:24:32:28:
77:ea:18:ee:8e:e1:a3:29:23:07:de:68:75:1c:8c:
93:45:a2:dd:ad:af:96:3b:5d:f3:9e:82:c3:6d:85:
9d:73:ec:55:63:ce:a3:3f:9d:64:d8:14:66:da:e5:
fc:52:ab:e3:d9:03:8b:58:46:18:98:fa:a8:3e:1a:
b0:75:07:15:c7:d7:85:2e:de:4b:74:be:13:5a:c0:
d0:64:0c:58:8e:09:ca:14:5e:0a:ca:f1:e9:50:52:
6e:95:6b:b0:4a:66:91:3f:16:d1:42:15:20:c8:18:
ec:f3:18:e8:2f:04:5f:a9:ad:b1:b4:05:3d:7a:97:
56:7d:dd:29:be:bd:85:15:bb:e7:5d:d1:39:98:30:
0a:8f:02:06:74:93:52:39:eb:7a:0c:53:0b:f4:67:
77:ed:cc:cf:69:05:39:6d:de:8a:29:53:ec:72:ac:
c4:4a:62:89:42:d0:32:9a:ac:89:17:44:93:ca:61:
3d:40:73:bd:36:cd:7f:68:47:7f:b4:1d:5f:c2:94:
a6:40:a2:18:98:6b:6a:33:83:47:c4:ef:42:16:59:
ac:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:A7:11:6B:B9:F3:69:7B:C5:E3:E2:22:EF:03:5F:70:34:2C:DD:A3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.139.228.0/23
IPv6:
2001:df0:9680::/48
Signature Algorithm: sha256WithRSAEncryption
a3:69:55:29:8c:a2:49:d6:33:97:98:43:85:d6:8a:e6:95:80:
b6:45:1f:8b:84:e4:f2:68:06:71:54:df:6a:9b:b4:f7:bc:a3:
a0:f2:84:24:b2:2f:d1:7d:7a:42:49:1e:34:b2:cb:40:35:06:
ba:a8:11:1a:0b:4c:39:70:4b:ff:f1:31:f7:df:ba:89:e2:b3:
fa:a5:32:b4:96:25:65:ae:49:22:de:6f:d8:39:ff:31:70:a7:
e0:55:ba:fe:26:15:f4:9b:2c:4a:12:ad:78:4c:b9:30:20:5e:
be:8c:0c:b1:fa:5a:cb:27:be:56:c1:8d:ab:ed:05:f6:3a:c4:
03:15:ca:c4:44:49:f3:03:98:7a:99:51:ae:1a:83:3b:79:9d:
0e:19:de:34:4c:fb:8b:36:45:69:d1:66:38:6b:95:95:1d:4b:
f9:67:c5:96:ba:34:f2:90:cf:f0:c4:8c:ab:dd:93:86:75:40:
c1:28:ff:de:b9:48:8a:66:99:35:10:6f:f0:c6:d3:3d:96:18:
73:b7:d1:bb:c9:17:4b:80:ac:29:28:c5:e1:ff:0c:b5:bc:22:
ed:cc:68:72:01:3b:4b:2b:61:fb:03:f1:e4:82:41:51:dd:0b:
84:1b:a5:73:12:b8:f0:29:86:ec:52:ea:c1:1a:b6:7b:f4:74:
df:5a:9f:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 23 22:56:19 2024 by rpki-client on console-ams.rpki-client.org