Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer
File: Ul6ia2phflqvwFQjzOWI3hnsWEc.cer (raw, json)
Hash identifier: 9iy9q0hRoH+08LKIbiwObCRGy+kIO6Op2vDlVbGTBq4=
Subject key identifier: 52:5E:A2:6B:6A:61:7E:5A:AF:C0:54:23:CC:E5:88:DE:19:EC:58:47
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 019DD6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 22 Apr 2023 12:33:09 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 149027
IP: 103.176.226.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 23 Apr 2024 13:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105942 (0x19dd6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 22 12:33:09 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91975F1/serialNumber=525EA26B6A617E5AAFC05423CCE588DE19EC5847
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:2a:f3:08:42:83:8d:69:9a:68:31:ba:c1:58:
56:69:f4:db:9c:44:d8:07:06:1a:99:f9:3f:76:6d:
64:43:97:c0:ac:ff:c4:c1:0f:4d:85:de:1c:36:d0:
eb:1d:21:fe:fc:af:6a:30:c4:a8:46:0d:1c:54:b2:
0d:dd:22:5c:a8:be:d2:6d:4f:8d:10:0d:dc:f0:52:
fc:88:f9:1a:e9:4e:a2:f3:80:56:9e:96:15:c6:92:
df:11:99:55:a8:4a:3f:bb:b6:80:af:6c:96:3c:6c:
b7:ff:3f:dd:a9:a7:f6:8a:9c:7a:63:c7:b9:f8:c5:
97:1f:de:3b:81:e6:3e:0f:0b:bd:5e:c3:39:1d:e5:
ed:a5:12:d6:50:67:ce:8f:90:ed:21:92:34:01:69:
19:38:69:0a:43:d4:78:00:bb:f4:b3:10:8d:6c:8e:
57:65:ff:1e:31:45:9d:72:45:a3:ea:74:3d:df:ef:
bf:5a:f1:05:cd:64:1b:36:0b:c2:d0:ad:97:87:a0:
b2:c7:0e:1c:27:bd:14:f6:70:62:fa:4e:ba:c5:8f:
fa:70:68:85:10:52:0e:0f:12:a6:a8:c0:f9:c6:99:
ca:e0:eb:db:2c:41:86:cb:50:63:21:90:1c:4f:8e:
0a:95:da:0a:1d:03:55:15:7a:e0:17:62:31:d3:a1:
54:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:5E:A2:6B:6A:61:7E:5A:AF:C0:54:23:CC:E5:88:DE:19:EC:58:47
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149027
sbgp-ipAddrBlock: critical
IPv4:
103.176.226.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:4f:f2:24:c9:ee:52:d6:bc:48:34:51:4a:54:fc:cf:5e:7b:
b0:38:8a:73:1c:f1:2f:f4:de:2a:bd:19:21:ca:a0:fd:de:a4:
3d:31:56:45:ab:8a:ea:16:9b:73:d5:46:d4:21:00:20:05:17:
e5:55:1a:2d:a2:5e:7b:65:82:c7:8c:d7:f9:cd:e1:c1:9b:a3:
41:c8:6d:fc:2d:d6:03:ae:2f:fa:8d:38:e7:d7:8f:41:15:28:
95:82:ff:5d:b8:4c:41:fe:a6:d8:26:43:6b:b9:9c:74:ba:b7:
86:34:2a:23:d2:7f:31:37:02:e6:17:7a:86:70:86:0c:a5:47:
07:dd:96:42:ef:96:d3:09:b3:12:7e:8d:75:f5:0f:c7:d0:59:
76:0b:08:13:af:59:f8:01:c5:4e:58:73:f9:ed:83:d4:81:2f:
52:45:3c:1e:d3:c3:63:ba:14:41:29:ee:2a:4b:10:a7:66:71:
38:dd:d2:28:99:b9:a0:aa:f3:d2:a4:a3:18:e5:6b:81:a0:71:
8f:0f:31:6e:16:8e:12:62:da:c3:03:d0:d8:a3:a6:b0:2d:f0:
77:31:a4:84:ed:94:56:1b:88:f9:23:47:03:f8:7e:b5:8b:d0:
2b:86:9c:f5:c6:54:8f:30:5b:55:b4:2e:54:c4:5c:17:4b:b1:
e8:53:91:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 16 14:22:26 2024 by rpki-client on console-fra.rpki-client.org