Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VELdytiYUdlLqsCrc5LOQZohisw.cer
File: VELdytiYUdlLqsCrc5LOQZohisw.cer (raw, json)
Hash identifier: 67YVHOXtMg+vR0+ETQqKFY7HEokAfwCz9bvbKck+6bk=
Subject key identifier: 54:42:DD:CA:D8:98:51:D9:4B:AA:C0:AB:73:92:CE:41:9A:21:8A:CC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C13C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BA0F9/FCAA2C001DA811E2B0E2CAA308B02CD2/VELdytiYUdlLqsCrc5LOQZohisw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BA0F9/FCAA2C001DA811E2B0E2CAA308B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 01 Oct 2023 21:12:24 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 58374
IP: 103.29.216.0/22
IP: 202.0.153.0/24
IP: 2402:9100::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 17:23:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115004 (0x1c13c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 1 21:12:24 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91BA0F9/serialNumber=5442DDCAD89851D94BAAC0AB7392CE419A218ACC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c0:bd:4a:d7:18:78:fe:17:8b:26:97:00:06:
a4:79:c2:6f:11:53:d5:65:4b:14:44:97:28:ed:e1:
b9:9a:c2:be:b7:94:c2:ad:f2:53:b3:09:5d:dd:df:
7f:84:25:26:40:01:20:57:4b:1e:f8:4f:af:9c:f4:
22:83:4d:a7:ce:7f:13:65:6d:d2:0e:c6:76:ed:16:
18:cd:06:7b:dc:34:fe:5b:f7:b8:57:b6:0d:64:1c:
3b:ab:d4:3e:4b:f0:d0:5f:3b:83:34:1f:09:11:a9:
b9:73:8a:e8:d3:5b:66:f7:fc:54:d9:b2:88:23:99:
c1:42:d6:29:c7:6b:73:4d:79:9e:e3:47:38:48:f2:
fc:b2:02:3a:ff:98:31:ed:6c:75:70:89:4d:b0:a4:
91:d8:34:d4:1c:84:0c:03:4a:b9:9b:e3:a7:94:0c:
8c:c3:47:90:a1:ea:12:b5:35:b0:59:8c:87:04:13:
42:dd:fb:33:db:7f:46:6d:19:2e:e3:8c:9f:72:3d:
44:65:ca:f0:a9:8d:81:87:90:46:43:a9:24:1e:07:
00:84:f6:56:8b:52:da:97:d6:68:a9:bc:aa:b3:4a:
41:8f:9b:0f:49:0e:7c:cc:eb:de:51:ed:91:d9:5c:
7b:e2:7c:b6:43:76:41:7c:90:24:7c:13:0a:58:52:
86:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:42:DD:CA:D8:98:51:D9:4B:AA:C0:AB:73:92:CE:41:9A:21:8A:CC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BA0F9/FCAA2C001DA811E2B0E2CAA308B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BA0F9/FCAA2C001DA811E2B0E2CAA308B02CD2/VELdytiYUdlLqsCrc5LOQZohisw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58374
sbgp-ipAddrBlock: critical
IPv4:
103.29.216.0/22
202.0.153.0/24
IPv6:
2402:9100::/32
Signature Algorithm: sha256WithRSAEncryption
c2:8c:08:8e:d8:cb:38:9e:e3:4a:53:98:05:75:f1:ea:d9:de:
ef:7d:97:e9:6b:f5:7a:32:3c:aa:02:64:c8:d0:08:a9:3b:29:
36:1f:09:1a:51:db:f7:36:d1:9e:52:4b:12:04:bd:4a:5a:6a:
29:e5:30:c7:fe:47:d4:6a:c2:0f:c7:ba:db:2a:a3:47:5f:00:
8e:c8:52:6d:9f:da:5b:51:4b:a3:c4:08:b9:6c:f7:68:70:33:
0a:97:18:e5:4e:6e:01:1e:67:54:6b:ef:53:f7:9d:8e:e9:29:
f6:0a:cf:aa:2c:15:26:81:da:b1:76:ee:6d:9b:eb:75:b2:0f:
8d:9e:69:1b:c8:9a:09:e1:60:aa:c6:45:81:b5:8d:e3:16:5b:
f1:ef:99:e9:ba:9a:85:ca:0b:ad:2b:02:ef:98:0b:d0:c8:52:
4c:df:9d:17:7b:fa:e6:c2:25:7a:a5:b5:2d:b4:0e:d8:67:7d:
6a:0c:19:11:c8:14:8f:5c:7b:57:b5:9d:51:ff:7b:97:55:7b:
e7:fb:c5:ba:c1:08:e6:66:95:6f:d1:11:f3:df:99:61:7f:ae:
ea:e1:d8:ac:b8:6f:4a:9b:3f:f0:53:a5:37:bd:fd:ca:5e:47:
af:5d:10:5a:af:95:fe:55:67:05:f9:ab:5e:c5:88:42:a2:52:
0d:f9:ca:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 18:37:13 2024 by rpki-client on console-ams.rpki-client.org